Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
File: iQCNpBkicovFvtu9cIhwHFKbme0.mft (raw, json)
Hash identifier: RxP0YIvriLW+pjsoJpB1XsEYgGL0chsFHhzzSpL41PM=
Subject key identifier: C9:20:A3:EC:D7:D2:56:09:72:41:A2:A0:E3:1B:19:5A:41:4E:95:E2
Authority key identifier: 89:00:8D:A4:19:22:72:8B:C5:BE:DB:BD:70:88:70:1C:52:9B:99:ED
Certificate issuer: /CN=89008da41922728bc5bedbbd7088701c529b99ed
Certificate serial: 01967F7CE63506FC752E989600B9E5AA7617
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
Manifest number: B7
Signing time: Tue 29 Apr 2025 03:00:13 +0000
Manifest this update: Tue 29 Apr 2025 03:00:13 +0000
Manifest next update: Wed 30 Apr 2025 03:00:13 +0000
Files and hashes: 1: 9WCM-NfBtEzVC0bLgcXxGw_dKs0.roa (hash: +AotBLTXOYZ2qqQz68W39gfX7TdnqXgGz673AR3fS9c=)
2: iQCNpBkicovFvtu9cIhwHFKbme0.crl (hash: uYUuiRJUyO7+e0lEd8E4F0nCQqxf09otYPZPWxc/RHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:7c:e6:35:06:fc:75:2e:98:96:00:b9:e5:aa:76:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89008da41922728bc5bedbbd7088701c529b99ed
Validity
Not Before: Apr 29 03:00:13 2025 GMT
Not After : Apr 30 03:00:13 2025 GMT
Subject: CN=c920a3ecd7d256097241a2a0e31b195a414e95e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3a:cc:aa:5e:af:bd:e5:6b:ef:84:7f:e5:ae:
2f:8e:8a:f3:c4:b9:5d:22:1f:0b:c8:5f:6e:47:46:
92:d1:0f:cb:f3:bd:59:17:00:fc:95:a0:78:87:3a:
95:c0:43:63:93:5d:5c:56:8b:5c:04:cd:8e:33:13:
8e:b4:14:00:c7:ec:5c:ef:c7:55:7d:53:c4:e5:69:
4b:e4:07:c0:dd:d9:8b:01:61:37:35:80:47:7d:ff:
c8:a3:f5:53:4a:cc:e4:a3:c6:26:fc:73:64:bf:88:
48:42:33:72:f3:88:1e:0d:eb:a0:cc:0d:93:0d:60:
e3:30:d1:ef:c7:cf:2e:49:d8:1e:fe:f3:58:4d:80:
0a:f7:46:15:f8:b2:8b:3d:72:15:12:c9:68:0e:52:
83:79:44:75:6e:85:f0:66:3f:4f:01:bc:ee:0a:9f:
64:ad:b3:92:a9:54:2a:24:1e:5f:21:14:cc:82:ac:
b8:a1:5d:d8:e4:05:1f:ca:4f:06:a7:2d:5e:16:1a:
8f:21:ce:a7:16:2e:0c:05:8f:89:97:d0:45:23:57:
90:55:e3:88:7a:6d:ca:9d:c4:24:76:2c:60:90:41:
9c:a5:eb:18:f5:fc:ef:65:db:d0:c2:9a:96:ef:a9:
fc:d0:b8:e2:eb:2f:cf:c1:68:19:88:30:48:3c:ed:
04:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:20:A3:EC:D7:D2:56:09:72:41:A2:A0:E3:1B:19:5A:41:4E:95:E2
X509v3 Authority Key Identifier:
keyid:89:00:8D:A4:19:22:72:8B:C5:BE:DB:BD:70:88:70:1C:52:9B:99:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iQCNpBkicovFvtu9cIhwHFKbme0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/e5b14b-9d5b-4346-8e85-63729fe588a2/1/iQCNpBkicovFvtu9cIhwHFKbme0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:ae:22:77:38:0a:5e:95:68:42:24:65:03:64:8e:16:39:2d:
67:a9:9c:08:5d:33:50:12:d5:cc:84:9e:fc:31:d8:04:74:fe:
ea:96:cc:44:48:b7:75:83:a5:42:ae:33:ce:fa:58:96:b2:d7:
71:9f:7d:7f:91:e4:cd:13:9b:ac:11:da:b7:27:74:84:93:c6:
af:9f:86:08:41:64:07:56:06:cd:e2:10:d2:85:f6:a7:d5:f1:
93:09:4e:d9:dc:82:9e:8e:23:3b:69:fb:96:e5:c8:b4:57:63:
7a:df:db:14:0c:b1:12:21:19:15:c0:a2:f2:05:63:f3:3d:28:
3b:d4:c3:15:ab:20:d9:c5:d9:f8:1a:69:92:3d:86:37:e3:cc:
26:29:2f:9c:92:e2:f0:72:74:a7:94:87:f4:62:fa:89:47:85:
b1:71:ec:ef:3b:07:e2:43:64:bd:39:8f:9e:f3:f1:d7:5a:96:
d2:75:cf:a8:a9:8a:fb:0d:d0:7c:5a:3b:a9:e4:0e:11:1f:4a:
b3:ab:37:c6:a2:f2:79:6f:cb:7c:13:7b:65:2a:b7:3a:41:e2:
e7:a3:71:bd:76:bd:77:08:12:08:9a:a0:db:2b:72:c1:26:32:
1c:e0:f8:73:be:1e:0b:71:f6:88:2a:21:9e:be:68:39:7e:4a:
be:ba:f7:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 09:38:19 2025 by rpki-client