Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
File: i5HgoQS1s93x9dCOessreeDVZvk.mft (raw, json)
Hash identifier: TNuZyd4ONl0oxI9MNMTcBsM5CYZQ8gOa8itomgGp1zs=
Subject key identifier: AC:92:73:DF:0B:65:6F:52:E9:E7:58:3F:B4:01:04:5A:FD:E0:16:E7
Authority key identifier: 8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9
Certificate issuer: /CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9
Certificate serial: 019671F82C4F0CEA2EDB8B809356A6223D40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
Manifest number: 0F18
Signing time: Sat 26 Apr 2025 12:00:11 +0000
Manifest this update: Sat 26 Apr 2025 12:00:11 +0000
Manifest next update: Sun 27 Apr 2025 12:00:11 +0000
Files and hashes: 1: KwomHtAHnCM0D-yGdW_0Sf3mopc.roa (hash: nJuUP0j6H239g1R7GMJyKq0zviXnK+AhK7Q4U43dyg4=)
2: ZYlcf7X6lFUqPdlZgjx7h6pY7f0.roa (hash: Z91lhusvfId6xXTKVa6gm5qmkQJNcO8M7YoIqY37LFU=)
3: i5HgoQS1s93x9dCOessreeDVZvk.crl (hash: 7diuNLc6f1oXIVoTUSUtTUHHhPrZMbQDgyzE7re+lbA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 11:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:71:f8:2c:4f:0c:ea:2e:db:8b:80:93:56:a6:22:3d:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b91e0a104b5b3ddf1f5d08e7acb2b79e0d566f9
Validity
Not Before: Apr 26 12:00:11 2025 GMT
Not After : Apr 27 12:00:11 2025 GMT
Subject: CN=ac9273df0b656f52e9e7583fb401045afde016e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:94:ed:89:46:3d:84:ea:54:9f:99:63:42:8a:
08:b6:fb:81:12:ee:d7:92:b2:b8:aa:a2:49:39:f6:
3b:4c:ec:06:57:43:4b:a5:ed:69:bc:02:d5:08:31:
da:b2:6c:d3:b9:bc:a1:ab:98:e9:20:90:c3:b6:5e:
af:6b:18:c6:18:e9:a9:e5:35:95:60:12:b9:e8:94:
9e:f9:5b:76:c0:c8:b6:ad:70:85:61:2b:5b:27:2a:
9e:e0:5b:90:ad:93:8a:06:0c:81:a4:dc:5f:99:a4:
c3:ee:99:a8:80:42:09:1f:1f:a5:f6:aa:8b:2e:9d:
a0:b6:26:0c:25:9d:2b:02:44:23:16:bd:6f:2d:6f:
45:69:95:14:b4:3f:06:f6:5e:79:23:2b:8d:73:8f:
98:6e:db:d1:9d:a5:4e:2b:71:cc:27:16:2e:87:7f:
c6:91:01:db:c5:84:3f:0b:8f:77:33:b0:f9:88:95:
09:44:ae:54:e6:b8:1d:34:5f:29:1d:48:cf:96:a7:
ba:ef:43:40:4d:68:ba:95:79:3f:f1:ba:a8:36:6e:
96:35:7e:12:5e:eb:39:bb:79:2b:f1:3e:3a:c8:9d:
cb:57:17:ee:27:ef:ab:b8:17:2c:61:ab:3f:9c:93:
27:b6:45:2d:63:f7:94:75:37:38:f4:6c:75:9d:22:
19:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:92:73:DF:0B:65:6F:52:E9:E7:58:3F:B4:01:04:5A:FD:E0:16:E7
X509v3 Authority Key Identifier:
keyid:8B:91:E0:A1:04:B5:B3:DD:F1:F5:D0:8E:7A:CB:2B:79:E0:D5:66:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5HgoQS1s93x9dCOessreeDVZvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/dfbfc4-cc3f-477c-8d76-a8c576224ba2/1/i5HgoQS1s93x9dCOessreeDVZvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:3d:88:ac:47:a3:30:34:17:6a:f0:89:1d:59:c0:7f:14:17:
e5:89:c0:9c:ae:97:d3:35:6d:35:8c:5f:92:ad:16:a6:9c:ee:
dd:10:43:70:0f:75:d5:66:3f:29:b5:25:c9:77:32:0f:40:16:
aa:38:05:81:3d:f3:3b:a8:54:c4:d0:84:53:5d:7b:45:c6:83:
c2:d1:ec:e5:95:d9:c1:04:83:88:d0:a8:31:bd:d5:f8:50:17:
6f:8e:9f:2c:9f:41:56:d6:bd:17:f9:dd:c6:b6:ed:79:99:b7:
61:9e:d4:af:6a:fa:95:25:85:45:05:1b:d2:6a:5d:fd:11:b8:
1d:d4:78:fb:6d:42:75:43:47:51:fb:6c:80:b7:a9:77:79:71:
2f:dc:45:d3:a8:c7:57:e9:fa:15:ca:e4:fe:f6:0f:cd:e8:1d:
4b:f9:9f:9e:b9:7a:b7:7d:f0:e6:b3:af:3b:f0:af:09:32:57:
ab:40:71:74:ed:e4:d0:04:87:15:72:76:3a:3b:7f:46:9c:67:
78:e1:99:66:aa:6d:59:01:83:2b:94:05:1c:53:06:ab:b9:13:
64:33:ed:bc:31:03:49:73:bd:b6:7a:47:ef:1e:10:b6:dc:3e:
64:71:52:f4:6c:d5:b8:d4:e9:67:8c:44:96:5b:6a:85:c2:fd:
91:c9:d4:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 17:59:35 2025 by rpki-client