Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.mft
File: i6gkldaDsIyIGoGM0B-kL_9v9tE.mft (raw, json)
Hash identifier: OdhYvMU3derjgrsmbscG64G7EVCHYR13M5MV2O0DgcM=
Subject key identifier: 70:5C:E1:DC:50:FF:DE:65:0F:97:3D:86:EA:14:A5:ED:6D:BC:9A:AB
Authority key identifier: 8B:A8:24:95:D6:83:B0:8C:88:1A:81:8C:D0:1F:A4:2F:FF:6F:F6:D1
Certificate issuer: /CN=8ba82495d683b08c881a818cd01fa42fff6ff6d1
Certificate serial: 019684DA8D8D9D94E586407367ACA0C920C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6gkldaDsIyIGoGM0B-kL_9v9tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.mft
Manifest number: 010C
Signing time: Wed 30 Apr 2025 04:00:37 +0000
Manifest this update: Wed 30 Apr 2025 04:00:37 +0000
Manifest next update: Thu 01 May 2025 04:00:37 +0000
Files and hashes: 1: i6gkldaDsIyIGoGM0B-kL_9v9tE.crl (hash: ZJWIPTMmoqYSMsdosy6ySy+KxqTHWNs18kl1Utg7PVk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.mft
rsync://rpki.ripe.net/repository/DEFAULT/i6gkldaDsIyIGoGM0B-kL_9v9tE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:84:da:8d:8d:9d:94:e5:86:40:73:67:ac:a0:c9:20:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ba82495d683b08c881a818cd01fa42fff6ff6d1
Validity
Not Before: Apr 30 04:00:37 2025 GMT
Not After : May 1 04:00:37 2025 GMT
Subject: CN=705ce1dc50ffde650f973d86ea14a5ed6dbc9aab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:68:d7:16:c1:29:96:38:df:24:d5:74:b5:82:
0a:a9:3a:c3:e1:3c:d2:37:50:3a:cd:9c:55:12:fa:
7d:b2:5b:56:f3:c6:83:e2:a5:09:e5:d1:c6:86:3d:
f5:04:b4:43:ee:f2:cb:a9:4e:42:07:ee:a4:78:18:
d2:9d:9e:32:27:7d:4f:f2:d3:be:8e:2c:60:87:be:
d0:af:c3:37:5e:93:06:9a:26:eb:c7:22:3f:5c:f5:
2c:66:2e:61:77:d0:34:ca:51:39:00:5e:09:b4:fd:
14:9a:55:7e:aa:04:37:1d:00:ec:d0:7b:fa:73:3c:
ec:af:7c:a0:21:8c:06:74:61:fe:b9:0b:34:0e:7f:
9a:ad:17:9f:97:fe:47:0a:bf:9a:12:8b:2e:f8:38:
69:44:00:05:5e:7c:90:d8:7d:42:8e:23:38:a4:fa:
b4:39:6a:00:a9:ea:17:16:4d:02:49:9f:38:78:e0:
da:87:44:56:f4:8a:77:7c:db:98:48:8a:df:1a:29:
c8:85:fb:c7:cd:53:1b:d8:c6:85:d7:61:8c:fa:ce:
c6:f2:c5:c9:5b:89:cb:05:fe:bb:63:ea:5e:05:2f:
72:99:ef:ad:d8:32:ec:4b:2a:97:d0:b4:10:29:d1:
88:0e:00:0e:38:21:91:5b:c4:f7:46:20:3a:4d:8e:
3a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:5C:E1:DC:50:FF:DE:65:0F:97:3D:86:EA:14:A5:ED:6D:BC:9A:AB
X509v3 Authority Key Identifier:
keyid:8B:A8:24:95:D6:83:B0:8C:88:1A:81:8C:D0:1F:A4:2F:FF:6F:F6:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6gkldaDsIyIGoGM0B-kL_9v9tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:66:0f:54:db:17:be:ff:cc:dd:5e:13:51:be:da:3a:a3:4c:
2f:4c:59:3f:a4:f4:58:e4:a5:68:07:4c:c9:c7:42:89:c8:ab:
61:a2:71:86:a2:c8:ac:70:83:e9:04:10:21:0c:24:a9:54:aa:
93:8e:ce:d5:c6:f1:bb:b4:e0:b7:3c:3b:b4:61:ec:88:af:5c:
0b:14:a2:81:22:98:cd:6b:cb:8d:30:1a:3d:98:99:48:37:fe:
2e:52:aa:c4:7c:48:37:48:78:a3:cc:3f:31:43:bf:03:76:1c:
4e:ce:9a:ec:3c:69:c2:6c:34:4c:38:1f:87:24:1a:9a:a3:c7:
4d:c9:b2:60:e4:43:91:cd:53:77:10:bb:7d:d3:dd:9d:7b:4f:
1a:91:ef:00:d5:be:29:a1:d4:dc:0d:89:a4:51:dd:e5:5f:5c:
32:ad:f1:5f:b6:46:77:00:e1:9b:f3:0c:dd:92:3f:7b:f0:98:
c2:13:00:0f:46:fe:8e:1a:e8:b2:93:bb:5b:b7:8e:a4:98:8f:
9d:9d:09:09:11:6b:6e:8d:bc:3e:9b:a6:8e:65:8a:83:47:39:
26:18:3c:ca:a9:0c:08:a8:30:bf:98:68:ae:1b:44:83:18:02:
4c:e9:46:45:50:5b:7a:23:fa:0e:d1:18:e0:a1:de:45:b7:fb:
eb:3c:87:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 10:20:38 2025 by rpki-client