Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
File: i8EWjaFgICh-6h_eygVBkwqdNok.mft (raw, json)
Hash identifier: 4IPMR6QXxJNhgiez8s7CunPilzweeYpD14O4gsK7Tlc=
Subject key identifier: 0E:6D:38:9E:36:03:5D:F8:4F:61:BB:F1:B9:CB:AE:02:DC:25:28:2D
Authority key identifier: 8B:C1:16:8D:A1:60:20:28:7E:EA:1F:DE:CA:05:41:93:0A:9D:36:89
Certificate issuer: /CN=8bc1168da16020287eea1fdeca0541930a9d3689
Certificate serial: 01968C9469B05E5B4F28826EAF2F08E18579
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
Manifest number: 019E
Signing time: Thu 01 May 2025 16:00:58 +0000
Manifest this update: Thu 01 May 2025 16:00:58 +0000
Manifest next update: Fri 02 May 2025 16:00:58 +0000
Files and hashes: 1: M8dNAav4bGEdssIavf8xkWsYnhg.roa (hash: XQuy4W50mLmkvV791/MW+gWfWSh1bhqASgHVJ90pFyY=)
2: i8EWjaFgICh-6h_eygVBkwqdNok.crl (hash: nq/CBSQ45QnuV9NCPCo09+eXWvwoKl5x/PYMeM/3/vM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8c:94:69:b0:5e:5b:4f:28:82:6e:af:2f:08:e1:85:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bc1168da16020287eea1fdeca0541930a9d3689
Validity
Not Before: May 1 16:00:58 2025 GMT
Not After : May 2 16:00:58 2025 GMT
Subject: CN=0e6d389e36035df84f61bbf1b9cbae02dc25282d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b8:56:04:f3:ce:ae:28:2e:f8:dd:02:ef:04:
67:8c:f1:6d:11:e4:af:ef:66:92:c2:7d:39:df:43:
a9:d3:80:e6:ea:48:9a:f7:ea:9d:44:c0:53:b7:0c:
b6:20:9c:84:03:63:d8:45:81:9f:24:d6:73:64:e7:
1b:11:dd:e8:99:72:66:3a:14:87:42:a8:ba:4d:2d:
1d:9a:7f:19:40:9a:f0:be:66:7f:70:94:b2:ec:0b:
4f:96:9d:84:61:4c:3d:03:2f:68:10:cf:00:8c:79:
83:70:3c:79:29:64:76:90:d5:8c:45:6c:81:65:55:
88:bb:88:ea:73:cf:b9:61:a4:f8:21:90:b6:e9:fb:
a2:fb:db:34:d5:a5:7e:57:08:75:cf:54:8b:b7:e2:
46:dc:69:d7:84:a8:60:8c:fb:86:53:10:99:68:4f:
c1:e9:91:4b:70:5f:0b:55:30:83:96:39:2b:2f:6d:
26:2b:86:16:4a:d8:96:61:7a:f4:3a:a8:ef:92:f9:
27:9a:75:b4:cd:b8:d2:28:fc:9c:09:f5:d5:89:99:
32:65:07:b6:db:6d:2b:d6:eb:e3:41:24:eb:c9:4e:
42:d2:96:d4:ff:d8:7f:8d:5a:74:c5:f8:0f:4b:a4:
de:6a:b1:f1:2e:be:c9:8a:a7:64:e3:5f:a2:c9:cf:
16:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:6D:38:9E:36:03:5D:F8:4F:61:BB:F1:B9:CB:AE:02:DC:25:28:2D
X509v3 Authority Key Identifier:
keyid:8B:C1:16:8D:A1:60:20:28:7E:EA:1F:DE:CA:05:41:93:0A:9D:36:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8EWjaFgICh-6h_eygVBkwqdNok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/18bc60-eca6-48dd-ae99-26ce071b0c36/1/i8EWjaFgICh-6h_eygVBkwqdNok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:e7:80:7a:81:f5:b1:c1:64:d1:b0:0c:91:f8:7e:86:f7:25:
6c:b4:73:11:52:51:d0:3c:18:2c:1b:74:6e:04:8c:e6:f6:40:
86:45:fd:dc:3f:ef:5d:73:8b:f1:03:5a:0d:4a:88:32:c1:c7:
2b:62:a2:36:fe:63:7c:3d:5b:ad:92:bf:10:a5:02:f4:3f:34:
74:93:b5:b4:8c:21:aa:2d:e4:c9:e9:bb:46:6d:0e:ab:88:00:
63:6e:cd:c1:b7:bd:ed:41:c6:51:cf:f6:ac:a5:cb:3b:4b:bb:
75:a4:31:97:cf:80:50:7d:1b:eb:74:a5:8d:a2:ec:e9:5a:3f:
c8:dc:f6:da:b3:ad:81:8a:3d:e3:21:fb:1e:38:14:64:c3:b7:
01:7a:ea:a1:51:35:46:08:44:bc:30:96:52:88:66:a9:2a:3f:
4a:60:b9:9a:01:fb:c2:bf:63:55:0d:fe:11:7a:66:35:cf:7a:
df:cf:dc:f6:c7:0b:30:87:02:b4:89:f7:dd:86:5d:dc:92:25:
88:11:04:07:37:4e:d8:c1:0b:68:5a:7b:1c:fe:fa:61:c3:64:
ce:6b:9b:e0:64:bc:7e:d4:eb:75:fd:6f:21:67:72:ae:8e:a7:
98:06:8e:91:80:b5:2d:7f:bd:6f:d2:8a:58:78:f5:e3:2d:d3:
ad:81:45:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 21:39:58 2025 by rpki-client