Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
File: ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft (raw, json)
Hash identifier: 7opL8OEeuN8oP/k+X3p+NrxUN7PF3uRkgbxwUgHXSVo=
Subject key identifier: F5:D7:41:2F:DA:DB:4B:3F:07:08:2F:F1:5C:5F:46:C9:C9:66:ED:99
Authority key identifier: 8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
Certificate issuer: /CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Certificate serial: 01968058D79ACC41CD054F7BAF2702768AC1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
Manifest number: 08FC
Signing time: Tue 29 Apr 2025 07:00:28 +0000
Manifest this update: Tue 29 Apr 2025 07:00:28 +0000
Manifest next update: Wed 30 Apr 2025 07:00:28 +0000
Files and hashes: 1: RZMmAomJrqs0yCU-Sl6pSFt5lLQ.roa (hash: mHTuz89sEZswLAvVyf4aCavMINMyLcZOi1mRW8tq0vE=)
2: ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl (hash: Ozq6qcJqU73diGCgkO9wOGzqnyOVQuVm3bN3ad7TGiU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:58:d7:9a:cc:41:cd:05:4f:7b:af:27:02:76:8a:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7f32d33f6646779a51fb23201c6442d1451ca
Validity
Not Before: Apr 29 07:00:28 2025 GMT
Not After : Apr 30 07:00:28 2025 GMT
Subject: CN=f5d7412fdadb4b3f07082ff15c5f46c9c966ed99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d4:56:20:93:44:df:6a:eb:8c:38:35:ac:b2:
1c:14:5d:c2:b8:ee:91:16:95:aa:ca:bf:d4:7f:2b:
6a:69:8e:88:6c:79:dd:96:85:34:27:f4:2b:57:1d:
b7:52:7e:c0:23:6b:c5:c0:b4:f0:ae:c8:81:94:42:
75:9f:31:f4:fe:7b:14:ca:3f:79:56:32:6b:c6:a2:
ab:72:78:e9:dc:72:f0:75:31:ea:db:e7:13:e2:22:
fb:a2:50:37:31:47:e5:60:cf:d8:03:c0:e7:c8:69:
77:22:d9:a5:05:c3:d7:9b:55:53:15:d9:0d:a5:47:
d7:a5:37:3c:fa:5f:cd:8c:07:93:18:20:4c:42:00:
be:23:6e:b9:33:bc:03:d0:4e:61:ae:6b:ec:8f:02:
2a:67:fc:d0:d4:c6:4c:e1:a8:96:f0:fc:a4:b8:77:
80:18:77:96:78:9f:18:ad:a7:9f:f4:8c:e6:f4:83:
22:50:b7:f9:cb:e2:97:ca:ee:47:a0:da:2e:e5:f4:
08:ff:bd:07:66:8a:6b:f2:8f:d2:5e:7b:ab:05:14:
1d:a3:92:cd:4b:03:72:23:fd:0e:17:63:28:92:ad:
e4:32:b0:be:2c:d1:14:c8:97:83:78:56:f9:20:b0:
a5:4b:16:6b:d5:21:0d:56:e9:6d:cc:a6:f6:10:e5:
f5:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:D7:41:2F:DA:DB:4B:3F:07:08:2F:F1:5C:5F:46:C9:C9:66:ED:99
X509v3 Authority Key Identifier:
keyid:8A:F7:F3:2D:33:F6:64:67:79:A5:1F:B2:32:01:C6:44:2D:14:51:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ivfzLTP2ZGd5pR-yMgHGRC0UUco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/affcbb-c1b3-444a-876c-5b72fb927d1c/1/ivfzLTP2ZGd5pR-yMgHGRC0UUco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:a8:f9:62:9e:5b:6f:fb:7e:00:a9:59:d5:49:14:59:4c:84:
50:45:2a:cb:81:71:34:cc:bb:ab:84:98:ec:0d:c1:c5:2f:b6:
b7:71:f8:94:3b:65:ee:0c:9e:cd:4c:86:0b:d4:5e:56:86:8e:
06:00:a1:90:4a:79:c6:a4:2d:70:62:4e:55:34:80:a0:10:29:
e8:47:2a:ec:ee:c8:fb:74:2e:d2:9f:1d:70:38:06:98:ad:bb:
88:d7:16:29:27:a3:b2:b3:13:7e:c0:ac:e9:9e:c8:1f:e2:6f:
d4:85:90:e5:77:11:12:c2:b1:2b:e7:2d:33:d0:57:5b:45:f1:
fc:62:37:31:88:d1:1d:3a:ab:3d:7d:c3:b4:e3:53:4f:0c:d5:
bd:bb:bc:d1:1a:1f:d5:96:71:80:9b:ef:88:1d:cf:c8:3e:ac:
c9:ec:46:3f:be:de:25:a5:e3:cd:f8:fb:ec:9b:0e:c7:aa:7d:
aa:c9:0b:a4:ae:d3:d3:45:71:b0:89:22:60:c3:58:d9:94:c8:
17:e2:17:f0:14:f2:1b:7b:b5:82:bd:d2:9d:3f:e8:37:18:4a:
e3:ab:0e:35:9c:1b:85:7a:fe:d0:37:ac:89:d9:aa:66:c8:ee:
96:d9:ff:92:a8:5c:7e:0a:54:36:10:bc:d4:2a:e8:d5:83:7c:
38:61:e9:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 09:19:33 2025 by rpki-client