Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
File: iveEdzfnSUKyvnS5P9AtkA0wmyA.mft (raw, json)
Hash identifier: dP+6LTL4YdCqEOwwWGBDcefdmlkksTh+TNdjP+41wgc=
Subject key identifier: 3F:50:CB:09:8B:49:BD:A9:B4:5A:5F:34:5E:74:2E:50:14:04:18:24
Authority key identifier: 8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20
Certificate issuer: /CN=8af7847737e74942b2be74b93fd02d900d309b20
Certificate serial: 01968F276A998DCBF019564AEADF150DC692
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
Manifest number: 151D
Signing time: Fri 02 May 2025 04:00:46 +0000
Manifest this update: Fri 02 May 2025 04:00:46 +0000
Manifest next update: Sat 03 May 2025 04:00:46 +0000
Files and hashes: 1: gl5jVkYAoBFN7cdrLnkDFxT9xzs.roa (hash: DKhlihYjJGtiikGfA1O1zHxswQCNAc4gtqIYH1Qddqc=)
2: iveEdzfnSUKyvnS5P9AtkA0wmyA.crl (hash: 7CWd4l9Wu0WZRwm+ujdlkS6edXMzEZOSBFZdcIPobwY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8f:27:6a:99:8d:cb:f0:19:56:4a:ea:df:15:0d:c6:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8af7847737e74942b2be74b93fd02d900d309b20
Validity
Not Before: May 2 04:00:46 2025 GMT
Not After : May 3 04:00:46 2025 GMT
Subject: CN=3f50cb098b49bda9b45a5f345e742e5014041824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c7:6d:b0:75:7f:ee:f3:bc:88:b1:82:7c:fd:
ba:2e:47:22:07:38:67:01:f5:d3:69:6a:9d:da:ed:
24:f0:ae:83:3c:84:bf:f9:a4:70:5d:f5:ae:e7:b4:
fe:e1:6e:55:74:35:2c:03:5f:c9:16:02:74:b7:df:
07:5a:99:33:ab:3d:65:df:51:e9:70:5b:96:68:7e:
4e:78:b7:90:b6:5d:07:33:95:1a:e4:c9:99:10:2c:
6d:d7:d1:fa:dc:d5:56:72:25:dc:3c:61:7d:2c:45:
a2:06:3e:2a:fa:23:8d:6d:39:88:9b:f7:e5:b4:39:
60:ea:b7:a7:ac:9c:60:31:ce:6a:a7:eb:12:2b:f8:
f3:0f:58:fb:b2:12:c9:4a:78:13:d1:df:55:7c:d1:
8a:9d:14:d8:87:ec:12:bc:1f:40:b0:43:81:ff:29:
7d:88:1b:6e:cd:00:ea:0f:67:07:20:f8:e2:bc:ad:
15:ab:5d:e8:39:23:d6:e2:47:25:29:4c:de:96:f1:
c4:0e:56:02:ca:16:41:79:ea:eb:a4:56:00:75:44:
fb:50:f1:1a:52:d4:54:76:bf:62:18:5a:b0:8d:9b:
5e:53:3f:20:7c:db:78:07:56:7c:82:d8:7d:b4:ef:
e7:b8:5c:f9:eb:0f:bc:da:5e:06:f7:0f:71:2f:3f:
f7:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:50:CB:09:8B:49:BD:A9:B4:5A:5F:34:5E:74:2E:50:14:04:18:24
X509v3 Authority Key Identifier:
keyid:8A:F7:84:77:37:E7:49:42:B2:BE:74:B9:3F:D0:2D:90:0D:30:9B:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iveEdzfnSUKyvnS5P9AtkA0wmyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/52384b-e7a4-4269-a0cc-7efc2808d125/1/iveEdzfnSUKyvnS5P9AtkA0wmyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:f9:b8:32:5c:8f:c7:d7:e5:c8:cf:8c:b4:b1:22:fb:87:67:
f1:b9:38:ae:29:ce:8a:db:34:f8:7d:d5:cb:2f:e8:9d:b9:64:
71:91:2f:c1:ad:ae:ac:8a:e0:80:71:06:2b:a7:99:79:c2:5f:
f0:80:38:2f:c5:41:9c:75:a7:dd:31:a9:d9:c3:f2:11:69:bb:
45:cc:5d:ab:26:61:ab:79:bb:14:a9:16:7c:e5:1b:73:88:c5:
59:7f:07:91:8e:4f:e7:40:8d:ad:d8:13:fa:75:71:6f:cb:65:
b2:82:33:aa:c4:7f:42:ff:1a:c7:da:ff:f0:f2:86:e7:6e:67:
03:f5:c0:03:8f:67:5a:ed:59:bf:af:b6:a8:d9:14:c2:a7:4f:
ff:eb:87:bf:65:db:34:f7:21:e4:e8:e3:15:9b:61:7e:a9:a0:
e7:a3:d3:ee:5f:cd:7d:48:a6:6a:c9:91:ab:b7:a0:0c:82:6d:
34:9b:5e:da:28:b6:fa:20:2f:70:57:f2:ba:e9:f9:68:6c:d2:
54:30:b7:eb:87:3e:bb:1f:f9:fb:18:de:ee:71:c0:e5:1e:5e:
91:c8:4c:1b:fa:9c:e5:02:ca:b8:bd:66:3f:4d:37:c2:49:d3:
84:d9:30:e1:70:ef:72:fa:7d:aa:1d:f4:37:39:0d:90:c6:ca:
66:00:71:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 10:53:46 2025 by rpki-client