Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/d8b7ZVRh1z_PIehhLDGHBqCJpcI.mft
File: d8b7ZVRh1z_PIehhLDGHBqCJpcI.mft (raw, json)
Hash identifier: 3ewUD33Rg9CzmemyUE1UDqX5jhmNlhbN4yc7OsxkyAA=
Subject key identifier: B2:F0:F5:79:18:E7:66:C4:42:2C:17:00:7A:8A:9B:B6:4E:41:B9:87
Authority key identifier: 77:C6:FB:65:54:61:D7:3F:CF:21:E8:61:2C:31:87:06:A0:89:A5:C2
Certificate issuer: /CN=77c6fb655461d73fcf21e8612c318706a089a5c2
Certificate serial: 0196575CF12F2BAC98EC7A4915D3FF9E8C63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8b7ZVRh1z_PIehhLDGHBqCJpcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/d8b7ZVRh1z_PIehhLDGHBqCJpcI.mft
Manifest number: 0FA3
Signing time: Mon 21 Apr 2025 08:00:30 +0000
Manifest this update: Mon 21 Apr 2025 08:00:30 +0000
Manifest next update: Tue 22 Apr 2025 08:00:30 +0000
Files and hashes: 1: KzHfiiDg2EcCwKAmppKJC7QdUFA.roa (hash: QZ0RWt1gfijBZB5RL8yUAfB/DWbprl5d1kxp7e8kc3g=)
2: d8b7ZVRh1z_PIehhLDGHBqCJpcI.crl (hash: HcX0carvXXdle51l4N/DJiG75WaOGHHzSopHyRg10Y0=)
3: kuAnd9NqWnoBzCTnx0XxXmRi7Z4.roa (hash: gmNwgm6wcIRoGUSbEH7MItCnGX2M/c/Toez7Z0Fqses=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/d8b7ZVRh1z_PIehhLDGHBqCJpcI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/d8b7ZVRh1z_PIehhLDGHBqCJpcI.mft
rsync://rpki.ripe.net/repository/DEFAULT/d8b7ZVRh1z_PIehhLDGHBqCJpcI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:5c:f1:2f:2b:ac:98:ec:7a:49:15:d3:ff:9e:8c:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c6fb655461d73fcf21e8612c318706a089a5c2
Validity
Not Before: Apr 21 08:00:30 2025 GMT
Not After : Apr 22 08:00:30 2025 GMT
Subject: CN=b2f0f57918e766c4422c17007a8a9bb64e41b987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e2:d1:62:33:ea:32:d7:4d:6c:20:5d:79:85:
9c:c7:b8:f6:28:2b:0a:6a:b5:05:0d:a7:6c:c2:7f:
8f:10:02:b4:ba:af:86:1c:16:01:f3:72:8b:1f:90:
51:d0:7f:33:6c:35:14:ed:77:bc:7a:98:16:96:ac:
09:0b:e1:ad:20:14:77:d3:b8:a2:6d:69:bf:11:e6:
b1:d4:8a:51:91:e8:5e:54:a4:18:b6:d5:70:14:5a:
9e:9f:8a:20:b4:33:74:84:51:b4:87:78:67:cc:15:
87:3a:ce:74:ff:80:76:35:0e:72:e2:6a:12:c1:d0:
39:dc:43:70:c1:77:cd:1f:c0:3a:1f:96:31:e1:2a:
b0:6c:ce:27:d3:7f:df:8f:b8:6f:18:db:1c:18:12:
0d:ca:ce:74:46:f8:f1:a8:82:e5:34:ce:13:7d:ff:
ad:ed:9a:d4:91:39:80:fa:40:78:d4:90:a0:d4:fd:
f2:b4:64:6e:63:e0:ff:ab:17:e8:00:b9:7e:64:3a:
ab:0f:02:c1:54:93:c6:b2:a9:64:94:d3:a4:d7:98:
fc:74:08:67:ed:a7:41:f5:a1:1a:f0:7e:28:79:23:
a8:8e:b5:72:6e:da:07:4a:3e:a6:a9:36:e3:e1:4c:
c5:5b:6e:89:2d:ef:1d:a5:b1:1e:cd:dd:9b:1c:a2:
0f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:F0:F5:79:18:E7:66:C4:42:2C:17:00:7A:8A:9B:B6:4E:41:B9:87
X509v3 Authority Key Identifier:
keyid:77:C6:FB:65:54:61:D7:3F:CF:21:E8:61:2C:31:87:06:A0:89:A5:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8b7ZVRh1z_PIehhLDGHBqCJpcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/d8b7ZVRh1z_PIehhLDGHBqCJpcI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/df0e11-593a-4ee4-8dcf-ab3081b2aba4/1/d8b7ZVRh1z_PIehhLDGHBqCJpcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:27:55:48:eb:1c:65:8a:89:06:7e:2c:b2:cd:56:cd:5f:5b:
07:0f:94:52:b0:1c:1c:4f:5b:fe:92:95:34:f0:09:81:46:fa:
a6:87:3f:9f:22:f4:b7:06:aa:7b:79:ca:c8:5b:17:4a:8e:e0:
01:ca:98:50:b2:23:da:83:2c:4f:0b:a1:fc:8d:7b:94:ce:df:
cb:c5:41:8f:a0:e8:f8:ea:aa:75:69:0f:69:c5:9c:2d:15:f2:
40:8a:2c:ce:f8:53:5e:40:0a:bd:12:a5:3f:97:e5:33:7e:0b:
04:7f:75:bc:57:c7:fa:47:48:f6:94:8b:9e:89:03:31:3a:89:
38:d7:5b:50:81:59:ee:72:3b:e0:c1:ff:ce:81:d2:81:b3:8b:
de:22:2d:70:3d:7f:b0:2d:b5:21:48:29:2d:ea:83:bf:cf:f4:
18:9d:42:29:01:b6:ed:28:16:90:21:7d:0c:18:03:f5:96:0b:
9c:80:30:a7:59:a8:35:98:51:0b:b0:03:f4:c1:e7:e1:b0:4e:
32:85:12:3a:8b:f6:18:76:54:73:70:f3:37:33:01:0f:f2:ed:
47:67:c7:90:04:c1:a1:27:ea:44:36:25:56:bf:26:99:7c:37:
b8:bc:da:ca:35:81:74:a8:fa:bc:8e:9a:18:e3:02:34:c7:48:
40:ad:6f:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:37:53 2025 by rpki-client