Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft
File: PI_isZvT639wpO7atha1MlABFSA.mft (raw, json)
Hash identifier: jophlfnLzDDXjspaI8XVbja7GB7nEs1RE6yX9V0UFfg=
Subject key identifier: D5:41:08:56:D0:8E:A4:6C:73:D2:B0:1A:49:24:FB:3B:15:9A:49:A2
Authority key identifier: 3C:8F:E2:B1:9B:D3:EB:7F:70:A4:EE:DA:B6:16:B5:32:50:01:15:20
Certificate issuer: /CN=3c8fe2b19bd3eb7f70a4eedab616b53250011520
Certificate serial: 019678D64D0F462346983D221F785631657E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PI_isZvT639wpO7atha1MlABFSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft
Manifest number: 01E3
Signing time: Sun 27 Apr 2025 20:00:32 +0000
Manifest this update: Sun 27 Apr 2025 20:00:32 +0000
Manifest next update: Mon 28 Apr 2025 20:00:32 +0000
Files and hashes: 1: PI_isZvT639wpO7atha1MlABFSA.crl (hash: 84XAVwESgmHtfsw2fWAxswYV76xVwseVCnQeqcwJBag=)
2: iTxg6a45pQs6yguLKNzKJpXtu1I.roa (hash: IbbuNrBXDC3r/NQaAU8s873gXp019KR8EegJpijUcwo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/PI_isZvT639wpO7atha1MlABFSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:d6:4d:0f:46:23:46:98:3d:22:1f:78:56:31:65:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c8fe2b19bd3eb7f70a4eedab616b53250011520
Validity
Not Before: Apr 27 20:00:32 2025 GMT
Not After : Apr 28 20:00:32 2025 GMT
Subject: CN=d5410856d08ea46c73d2b01a4924fb3b159a49a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8c:30:4e:cd:6b:fc:bf:13:59:0e:7f:8a:7f:
a9:18:64:c7:71:4c:35:bb:85:0a:94:ac:a0:00:84:
41:76:62:d4:e6:b7:90:f0:8c:bb:04:d6:04:8f:7d:
2e:c4:ed:c6:ac:98:79:c8:67:a7:95:14:c8:2f:15:
25:29:68:0b:8d:e0:55:75:ed:05:35:5c:46:51:66:
fe:42:62:1e:30:ed:68:2d:4f:f4:2a:40:05:e1:c2:
1d:7d:01:d7:a8:54:28:ef:87:8f:54:54:57:05:45:
b1:d7:10:63:bc:7e:56:b1:b2:f3:61:7c:71:03:42:
98:60:0d:05:0d:71:d7:e0:3d:97:8c:1a:35:45:d7:
b0:1c:64:a4:42:b1:18:c9:ee:2a:a1:03:c7:92:5c:
22:03:4b:1b:5c:6b:ae:0b:19:15:94:86:ca:28:2d:
af:ba:51:87:d8:d9:11:51:81:28:79:3d:18:a2:68:
96:25:36:d8:1b:b3:ed:fc:52:cd:06:b0:0d:55:b9:
5d:47:02:6d:7b:d2:b1:72:d7:c0:79:ad:0b:e9:a1:
45:92:77:57:c5:63:d7:e1:08:8f:1c:c6:54:69:5a:
f4:9c:52:46:3e:2e:14:8b:ba:83:2a:8b:70:89:5a:
bf:52:76:8f:31:f4:03:74:6e:b3:f3:4b:25:ff:b9:
95:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:41:08:56:D0:8E:A4:6C:73:D2:B0:1A:49:24:FB:3B:15:9A:49:A2
X509v3 Authority Key Identifier:
keyid:3C:8F:E2:B1:9B:D3:EB:7F:70:A4:EE:DA:B6:16:B5:32:50:01:15:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PI_isZvT639wpO7atha1MlABFSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e7edd1-c79f-4890-a175-12e6a6edd124/1/PI_isZvT639wpO7atha1MlABFSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:1c:b1:fb:3e:15:46:f4:7c:69:98:3a:01:dc:5b:8b:5d:b6:
70:fd:1f:88:91:b2:ad:47:3b:67:5a:12:fd:1c:1d:df:9e:ff:
dd:f4:f0:17:ab:13:2e:d5:61:de:a1:8b:33:9f:6d:e3:34:f6:
1b:e0:55:b9:dc:33:bf:b8:ae:3e:c0:53:be:c4:46:21:bf:21:
19:01:9d:f1:8b:83:ef:ca:4d:71:0e:31:fe:8e:f7:18:0f:cd:
20:48:a7:1b:b7:62:b0:d3:7c:c7:8b:45:5e:b5:d9:c8:c1:2f:
67:77:26:09:92:d8:b6:e0:5a:e2:1c:10:dd:79:30:df:f9:8d:
b9:6f:39:ad:6f:ec:82:4a:4b:72:64:f9:d9:15:84:47:38:56:
c3:90:dc:f3:de:68:93:5c:25:3a:10:f5:db:95:f2:49:b2:24:
1a:d3:1a:74:41:8e:cf:4a:db:21:29:35:1f:a6:85:95:c5:31:
d4:97:bd:f0:02:ab:95:dc:4f:bc:6a:69:92:7d:02:8f:fb:59:
4f:3f:e4:d1:3f:09:2d:da:9d:be:d3:0c:16:cc:9d:7b:c2:68:
c1:76:4d:c5:7e:8f:39:4b:59:8d:e2:31:47:94:b3:ab:76:4f:
2e:4a:e0:d2:11:84:03:4e:a7:00:b5:8d:7f:4a:01:c1:4c:f3:
4d:cb:63:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:18:19 2025 by rpki-client