Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
File: iBLpJPysuGLPO2T1bnZ7wybyf8o.mft (raw, json)
Hash identifier: 3sfz1Zcz1BO+bOjCQ57SZBzEU4sH9TTProUPqwwB5XU=
Subject key identifier: 12:E7:8F:CD:B9:D1:EC:95:BC:18:CB:FD:D4:83:14:7C:5E:8D:CD:28
Authority key identifier: 88:12:E9:24:FC:AC:B8:62:CF:3B:64:F5:6E:76:7B:C3:26:F2:7F:CA
Certificate issuer: /CN=8812e924fcacb862cf3b64f56e767bc326f27fca
Certificate serial: 01967F0F954E53C3C69A3AB84728CD5319F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
Manifest number: 1511
Signing time: Tue 29 Apr 2025 01:00:49 +0000
Manifest this update: Tue 29 Apr 2025 01:00:49 +0000
Manifest next update: Wed 30 Apr 2025 01:00:49 +0000
Files and hashes: 1: QKCpBgruuyz3i6ikVFdg6qQ3F0Y.roa (hash: G88p/gWLQ6tFindRbDEI4oT0jR5gYy6dY2FWfseB5AQ=)
2: iBLpJPysuGLPO2T1bnZ7wybyf8o.crl (hash: veMl1LbzlSQ7DNkkInWmrB8cmm3pygLOZEVD5es49xY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:0f:95:4e:53:c3:c6:9a:3a:b8:47:28:cd:53:19:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8812e924fcacb862cf3b64f56e767bc326f27fca
Validity
Not Before: Apr 29 01:00:49 2025 GMT
Not After : Apr 30 01:00:49 2025 GMT
Subject: CN=12e78fcdb9d1ec95bc18cbfdd483147c5e8dcd28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:19:f0:94:f5:fe:4f:8e:77:db:23:44:2d:24:
19:25:1b:05:3a:d4:a4:1b:1e:64:79:c8:06:68:48:
ab:78:f3:85:47:6a:ae:9f:a4:34:b4:4a:14:f0:6a:
e0:1a:92:b1:3d:16:9c:7b:63:16:45:63:57:e6:4a:
45:4c:b7:b8:aa:59:b8:2d:43:6e:33:72:42:1b:60:
73:c6:7d:d5:53:dd:07:62:be:d8:92:6f:2c:af:62:
b6:4b:33:5e:87:68:97:74:68:86:d6:bf:9b:ba:ee:
e6:e7:47:0a:2b:65:f9:3d:01:8e:f1:2f:90:0f:17:
1f:d9:99:d4:92:ec:47:78:38:0f:f3:4f:f7:1a:dc:
af:9f:f7:7e:f5:5d:cf:a8:58:e3:5f:a1:b7:39:0d:
6f:27:fd:82:9f:db:f1:f0:24:7c:f7:4e:fb:d7:00:
05:ae:39:a9:bc:93:79:a1:8f:1e:3a:75:e6:79:87:
ce:ee:a8:cb:f7:4d:8c:06:c6:d8:0e:6d:1e:15:40:
39:74:3b:1f:11:f5:80:ca:fb:d4:a3:6b:e8:41:4d:
28:44:9e:e6:d0:13:58:08:17:a7:b0:0b:ac:8c:6b:
05:4e:26:16:15:72:ad:b0:a9:14:32:ea:33:02:4f:
df:9c:87:ca:be:e8:fe:bd:a4:4b:57:ca:c8:c2:ba:
94:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:E7:8F:CD:B9:D1:EC:95:BC:18:CB:FD:D4:83:14:7C:5E:8D:CD:28
X509v3 Authority Key Identifier:
keyid:88:12:E9:24:FC:AC:B8:62:CF:3B:64:F5:6E:76:7B:C3:26:F2:7F:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBLpJPysuGLPO2T1bnZ7wybyf8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3a98e2-8ae8-4723-8959-ce2d8e3fc804/1/iBLpJPysuGLPO2T1bnZ7wybyf8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:6e:29:71:e2:fd:2e:6e:b5:63:c8:d3:65:f7:45:d2:4c:f2:
58:ac:a5:f7:1c:c7:67:bb:f9:6c:93:88:e8:b2:1a:be:d5:0a:
de:38:5f:52:20:36:17:f8:bd:16:50:f6:c8:8c:b2:74:38:91:
24:c3:9a:b3:08:86:c7:4c:77:64:15:c5:e3:7f:f2:5d:b1:67:
86:5f:2b:eb:16:d9:4e:c8:ed:02:18:1e:5c:b3:e7:00:c2:5e:
91:19:5a:c7:01:57:07:0f:b7:a5:05:0b:98:d4:c2:fe:fd:cd:
57:47:23:bd:4c:c0:a5:af:53:0a:28:7d:b8:57:7d:be:29:8e:
72:f2:8d:26:3d:55:5a:54:6a:ef:2b:6c:28:02:60:ff:23:97:
af:56:21:d6:c8:c9:ab:c5:ea:30:17:e0:47:e0:11:99:a7:e3:
93:e1:00:04:ed:ce:6d:d5:00:6d:41:f6:bb:ed:8e:2e:62:a5:
69:f4:02:81:a1:e4:ae:43:46:62:e9:5c:67:a8:9b:56:e4:84:
9b:b3:8a:15:98:69:73:c5:d9:f5:af:ef:47:aa:7d:b0:51:65:
7a:f7:58:e3:90:eb:e7:71:45:40:27:a5:73:8f:41:b6:66:25:
8e:a5:61:7a:a7:32:5d:ed:6a:cd:5b:9b:44:90:66:77:60:e3:
27:3b:b4:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 07:51:52 2025 by rpki-client