Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
File: ij_gucYwoz4XGgpceT80C0NEaTI.mft (raw, json)
Hash identifier: vMOYITvwqPGgiptQz6bM1Rm0bmQFDIMegD7KEUf3nZc=
Subject key identifier: 85:3F:B0:87:E0:C4:10:D4:A0:42:3D:98:4E:CF:C9:4A:E1:82:56:F5
Authority key identifier: 8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
Certificate issuer: /CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Certificate serial: 01967AFBD534C155EB78F6CD1072939E7326
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
Manifest number: 14EC
Signing time: Mon 28 Apr 2025 06:00:46 +0000
Manifest this update: Mon 28 Apr 2025 06:00:46 +0000
Manifest next update: Tue 29 Apr 2025 06:00:46 +0000
Files and hashes: 1: 2ttxDr4pGnjxuFL3h06WTGhjE60.roa (hash: gb8hbvNo/pcY/swamzsbRwiOgi4eH7YRN51AtOhEfsU=)
2: ij_gucYwoz4XGgpceT80C0NEaTI.crl (hash: b2ZcUbBa3/VTY0HdUrwI4yJvLZQ3TBBA9Px81N7sGXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 06:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7a:fb:d5:34:c1:55:eb:78:f6:cd:10:72:93:9e:73:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a3fe0b9c630a33e171a0a5c793f340b43446932
Validity
Not Before: Apr 28 06:00:46 2025 GMT
Not After : Apr 29 06:00:46 2025 GMT
Subject: CN=853fb087e0c410d4a0423d984ecfc94ae18256f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:98:3b:d0:8c:58:58:b1:8c:c6:63:df:8e:3c:
ae:42:45:51:5e:45:4a:58:b3:51:60:b6:16:d6:86:
60:1a:f4:1b:ca:45:19:40:2e:40:8a:a2:3d:e6:c6:
a7:43:ab:4f:f6:bf:cf:85:a7:66:0e:4e:1d:06:10:
5f:cb:62:78:77:78:22:5b:e7:05:fe:ff:3c:df:43:
2e:e5:de:83:00:f3:0f:40:01:c7:f5:fa:6b:32:99:
c2:74:06:08:94:bf:de:11:c7:3c:c1:b7:85:10:8a:
db:db:46:53:05:6d:fb:86:1e:aa:92:b3:50:cc:df:
e3:ea:5b:f2:b0:ce:2d:21:6d:78:5a:1e:20:01:87:
4e:51:e6:17:93:8c:0a:c0:af:34:6a:3a:86:14:df:
fd:1f:8b:7e:20:1c:98:99:88:28:9e:85:32:ec:33:
37:6a:63:00:81:11:81:27:ee:e8:7b:10:92:c4:45:
a2:34:50:e8:23:5d:4a:f9:cc:c1:a4:d9:9d:d0:c7:
7e:ae:01:43:05:09:9d:23:b5:d1:6e:bc:b9:52:16:
64:e1:36:12:0c:8b:e0:93:6d:64:46:21:6e:16:bc:
eb:40:bc:d1:61:a0:27:63:4d:d1:fe:fe:9d:c2:b7:
ef:8d:3d:19:15:af:c2:a3:39:69:3e:e0:96:81:a1:
1b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:3F:B0:87:E0:C4:10:D4:A0:42:3D:98:4E:CF:C9:4A:E1:82:56:F5
X509v3 Authority Key Identifier:
keyid:8A:3F:E0:B9:C6:30:A3:3E:17:1A:0A:5C:79:3F:34:0B:43:44:69:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ij_gucYwoz4XGgpceT80C0NEaTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/f39a49-59ea-4c4f-98fc-53aab42f476e/1/ij_gucYwoz4XGgpceT80C0NEaTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:6c:6d:62:ad:50:ff:c4:88:d9:15:45:04:0b:bc:66:f3:a7:
8f:53:78:c8:ec:7a:1a:d6:76:93:86:6b:86:2b:84:f6:3e:c4:
10:30:23:b0:f5:dd:9f:43:ca:a4:43:3e:46:40:f2:91:4e:26:
8c:ac:4a:1e:6c:a5:4c:46:f2:6b:61:d6:d2:7b:67:7f:fe:4b:
f1:97:f6:69:c6:7b:be:b9:f8:dc:ac:25:99:eb:29:7c:90:2e:
7a:cf:13:bc:a5:06:7c:33:d4:fb:10:bd:b0:cd:30:56:90:69:
0b:b4:48:9c:90:b1:36:fb:59:b4:18:fd:87:40:02:f1:77:0d:
11:d0:ed:64:49:62:7b:d0:83:c5:2d:ec:67:7d:b9:75:82:65:
c3:cc:df:5a:79:f6:f5:38:50:8c:e7:5e:1e:76:a1:5e:39:a2:
4a:db:9f:ff:98:51:8c:ee:f1:a5:61:c8:b5:00:7d:3e:b4:db:
4e:a2:d8:b7:a3:27:18:3f:b2:aa:d4:ba:41:30:d0:f3:dc:f1:
0d:0d:f6:a0:f1:49:61:4f:9e:02:f5:18:b6:ca:6f:23:b1:ea:
8a:8e:5b:2d:22:f9:cf:28:18:10:b6:55:03:87:d5:f3:2f:e2:
bd:43:f0:81:1f:ed:4d:22:42:b5:99:18:e3:83:97:12:94:25:
01:02:d6:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 15:00:38 2025 by rpki-client