Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
File: sG9AQEkaZW_3Um0vF2EbDWisvQw.mft (raw, json)
Hash identifier: +5d5Sn5orkFZxIYlTTwgDhztxbibiOwxColAEpAocxI=
Subject key identifier: F3:D9:30:7D:8D:7B:B0:3E:E7:A6:0E:F9:1F:26:D0:BC:E8:4F:0C:21
Authority key identifier: B0:6F:40:40:49:1A:65:6F:F7:52:6D:2F:17:61:1B:0D:68:AC:BD:0C
Certificate issuer: /CN=b06f4040491a656ff7526d2f17611b0d68acbd0c
Certificate serial: 01965B399F3015B840396D8EA823616E6C1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
Manifest number: 1502
Signing time: Tue 22 Apr 2025 02:00:25 +0000
Manifest this update: Tue 22 Apr 2025 02:00:25 +0000
Manifest next update: Wed 23 Apr 2025 02:00:25 +0000
Files and hashes: 1: 3oQgBF8b0SlPmJhLRByZqFye4Kg.roa (hash: kYRYhVl9nNIlfjRJmfhpqtBDhLtp2pSGg+NrF/eLIP0=)
2: sG9AQEkaZW_3Um0vF2EbDWisvQw.crl (hash: 6xmS1X5qkEvRBPBIgigW6pqLHkAkd2PRqbwJpgPlL68=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 02:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5b:39:9f:30:15:b8:40:39:6d:8e:a8:23:61:6e:6c:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b06f4040491a656ff7526d2f17611b0d68acbd0c
Validity
Not Before: Apr 22 02:00:25 2025 GMT
Not After : Apr 23 02:00:25 2025 GMT
Subject: CN=f3d9307d8d7bb03ee7a60ef91f26d0bce84f0c21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:43:4e:a0:1c:50:2d:fc:1d:9e:81:00:3b:b3:
56:34:03:64:0a:f6:70:ca:41:b1:dd:97:da:d4:43:
ef:f3:9a:95:26:8e:b8:d3:72:48:32:5e:ca:7a:c1:
35:4e:92:de:ac:85:16:29:62:d0:89:ca:c7:18:e7:
f8:2b:36:08:b4:38:0f:fd:1d:a5:ce:5f:28:31:6d:
a9:05:b5:51:f8:56:88:a2:d1:09:24:c7:9c:8a:79:
58:59:3a:f7:c5:12:b2:34:ce:95:3f:11:e7:a7:6c:
f0:3f:5c:0e:48:c5:ae:2f:52:81:24:0a:0a:f5:c5:
77:12:52:db:c3:98:be:fb:00:df:31:e8:ee:b0:56:
90:66:e4:79:e6:41:3c:6f:7f:5f:23:1c:a1:f0:50:
e2:67:5d:9f:68:9f:0d:84:85:fa:24:c4:31:a0:8a:
91:bc:7f:1e:0d:7e:16:53:b9:04:92:29:58:ef:27:
ab:61:60:f0:0e:57:57:56:5d:39:75:c3:87:93:1f:
f4:a4:1e:44:b7:70:9b:64:1a:ba:bc:c9:10:5f:6d:
cf:f3:6b:c0:f4:d3:48:37:6f:ca:11:14:ed:c5:9d:
eb:75:e6:e1:7c:57:96:51:62:da:cd:30:4b:b1:c6:
db:a1:4e:af:c1:69:ef:21:71:1d:5c:7f:5a:ff:20:
f1:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:D9:30:7D:8D:7B:B0:3E:E7:A6:0E:F9:1F:26:D0:BC:E8:4F:0C:21
X509v3 Authority Key Identifier:
keyid:B0:6F:40:40:49:1A:65:6F:F7:52:6D:2F:17:61:1B:0D:68:AC:BD:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:e5:83:9f:28:c5:d7:c2:4e:e0:1b:4b:bb:53:e8:ed:0e:82:
0c:72:d8:4a:36:62:ec:18:55:df:ae:86:0a:96:4d:2d:71:3c:
de:88:30:36:c0:cb:ca:eb:b8:cc:53:9a:e2:f8:3d:85:93:41:
54:e4:6b:07:d9:59:cc:1e:b3:a4:a2:d4:96:b3:ed:57:89:f1:
e6:0b:f0:5f:6b:95:8a:53:96:1f:52:61:a8:84:22:9f:ab:f9:
06:ae:e7:0f:39:1b:e5:08:5b:c5:91:d6:b2:b8:e7:3a:44:73:
19:db:12:45:66:e3:43:4f:5b:ab:d7:60:b3:5d:96:1a:f7:32:
9c:8e:ac:31:82:4f:f7:ac:be:2a:c9:93:79:84:23:00:84:fc:
b4:05:28:04:6c:58:70:83:e5:51:67:56:a2:e6:04:93:da:28:
58:b7:23:f1:38:f5:9f:ac:01:5d:cd:e7:02:b8:26:5e:1d:a0:
19:4c:2a:51:84:35:46:7b:7b:76:1e:54:2f:e0:94:2f:c9:a5:
5a:e5:d5:d2:03:d2:53:65:56:0c:9e:a0:19:f1:c0:f7:b0:23:
b0:59:52:27:43:a7:e6:90:f7:be:f2:b9:71:48:fe:f6:4b:a1:
ec:60:4c:0c:8f:5b:21:0a:97:ec:43:0b:d3:80:eb:1e:1a:26:
ee:6a:93:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 10:26:53 2025 by rpki-client