Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
File: RDTtvhtBAbKKviMvK88qAUiXglo.mft (raw, json)
Hash identifier: A9lWykyVdwubOXAi59fgGL2yHos442mvJqhf2ydZNgQ=
Subject key identifier: 4E:17:3D:41:DF:3B:58:24:6E:AE:54:B5:17:F9:A1:2F:E9:9A:50:19
Authority key identifier: 44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
Certificate issuer: /CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Certificate serial: 019510FE2AAB03004C41F69DC59807C560D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
Manifest number: 0E41
Signing time: Sun 16 Feb 2025 23:00:47 +0000
Manifest this update: Sun 16 Feb 2025 23:00:47 +0000
Manifest next update: Mon 17 Feb 2025 23:00:47 +0000
Files and hashes: 1: MBnjR0q6eR7PujQYuvXc6EY3kbo.roa (hash: HNqzyjDd+TtlMN5tniTDAwjj1tssNX0++6C4Wyg438o=)
2: RDTtvhtBAbKKviMvK88qAUiXglo.crl (hash: vrdE8o7yCndKSK08RIRV276E1y1SKiOaDTdZ1GrqAEY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:fe:2a:ab:03:00:4c:41:f6:9d:c5:98:07:c5:60:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Validity
Not Before: Feb 16 23:00:47 2025 GMT
Not After : Feb 17 23:00:47 2025 GMT
Subject: CN=4e173d41df3b58246eae54b517f9a12fe99a5019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:48:f3:90:ca:69:ab:76:51:b5:58:78:7d:8d:
d6:5f:95:ee:28:ec:0e:f8:c8:c9:f8:4f:c2:37:d4:
04:c6:e5:e3:50:7a:9c:bb:ec:04:fc:cb:ef:5b:8e:
42:f8:3b:96:25:db:4d:26:70:ef:1e:c7:b0:c0:e5:
b3:55:6c:bc:0f:19:ea:59:a7:1e:6a:ab:69:c5:57:
7c:5b:53:3f:8b:87:ca:f9:4b:ef:f7:74:21:c2:f0:
f7:c0:fb:13:e8:21:53:dd:4d:e9:9c:e4:ba:62:ea:
ab:22:27:eb:2e:d3:39:e0:c8:96:e4:a6:dc:19:92:
af:e4:da:96:af:f7:e7:c1:6f:57:46:c6:d7:b1:08:
9f:64:71:a0:8b:4b:87:1e:f5:89:ba:bf:58:e5:be:
d8:cc:91:7d:01:2b:ec:87:7f:1b:9e:a0:58:55:99:
1a:d6:11:f9:02:f1:90:dd:81:bc:66:2d:c4:b0:67:
9e:c8:0b:f2:0f:3c:12:c3:ec:61:36:70:c7:1d:82:
48:9f:1c:f0:a2:1d:16:20:a4:e9:ae:13:1a:dd:bd:
46:bf:60:e0:9d:d1:cb:d1:66:e4:e6:0c:4d:a0:24:
c5:ff:c0:ef:64:9e:3d:b5:3c:9b:69:d4:ee:f4:d4:
9f:cf:5f:a7:5c:e5:86:0d:55:12:dd:e5:98:dd:8a:
55:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:17:3D:41:DF:3B:58:24:6E:AE:54:B5:17:F9:A1:2F:E9:9A:50:19
X509v3 Authority Key Identifier:
keyid:44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:8e:ad:11:82:14:14:e2:0a:f4:6d:9e:0b:39:b2:5e:45:9d:
dd:4c:b9:76:53:cd:ef:ca:c4:50:5a:81:99:ea:67:de:20:73:
3f:65:6d:6e:51:9b:2a:59:4f:ad:4e:a9:5b:ce:76:59:8d:fb:
cb:d7:db:7b:b7:77:b6:11:d6:01:25:3b:78:d7:87:35:30:3e:
27:3a:ca:4c:4c:0f:bf:95:f4:ed:85:5f:0c:27:c6:52:ba:11:
f9:27:a5:6d:d1:87:10:92:51:a9:ac:52:a3:85:1f:0b:cc:7f:
ed:a1:23:ea:74:bb:64:5e:a4:35:ba:01:a1:7f:a0:4d:3d:aa:
bb:30:65:f5:9e:2a:a1:c7:20:b3:3d:01:17:ab:2c:54:e5:00:
10:35:a7:2c:7a:2c:d9:d3:8b:3b:7e:70:7a:c9:93:c4:a4:b3:
a4:92:b3:bf:dc:83:1c:80:4b:12:f1:89:05:ae:fa:aa:46:51:
af:97:f8:a6:9a:51:0e:9c:7c:68:eb:a0:6c:ba:42:ea:d2:ab:
4e:30:34:08:3f:65:ca:bc:95:6b:b8:5f:60:44:69:e6:29:ac:
fa:50:16:bd:9f:2a:73:b1:22:44:32:f7:99:e2:21:3a:4a:4d:
dd:2a:2b:89:f2:d6:61:10:32:77:f8:26:71:ea:b5:7c:2c:f1:
f4:57:f5:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:35 2025 by rpki-client