Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
File: 9a2pAdQIv39blDWSHkgAqPgtvas.mft (raw, json)
Hash identifier: qpWmNtlmCIAuQVuGv4Lhsk1apnLj56KIDrqIDFRdInc=
Subject key identifier: 31:08:37:E2:0F:64:FA:90:18:B5:00:56:E7:33:98:19:63:6C:1B:67
Authority key identifier: F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB
Certificate issuer: /CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab
Certificate serial: 01965725FF0D8ADE90DBB43D71433F868F93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
Manifest number: 1500
Signing time: Mon 21 Apr 2025 07:00:30 +0000
Manifest this update: Mon 21 Apr 2025 07:00:30 +0000
Manifest next update: Tue 22 Apr 2025 07:00:30 +0000
Files and hashes: 1: 9a2pAdQIv39blDWSHkgAqPgtvas.crl (hash: /gPEz59HuQ98sQFV3I4PRVcgnFS9y9PEK7bycM8sq1M=)
2: ExJyPjo5EWZQUpwxSS0T7A3Tclg.roa (hash: n7Rzh1zK0MckYzOS9a8lwv/AGXV+Jr0CvxhzGO4UHW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:25:ff:0d:8a:de:90:db:b4:3d:71:43:3f:86:8f:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab
Validity
Not Before: Apr 21 07:00:30 2025 GMT
Not After : Apr 22 07:00:30 2025 GMT
Subject: CN=310837e20f64fa9018b50056e7339819636c1b67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:bd:9f:c5:cd:06:46:91:3e:cb:92:b3:5e:72:
a3:dd:0a:7b:d5:9a:7a:80:c4:67:2b:0b:d5:e7:01:
cd:19:e6:9c:12:a6:1b:91:da:b8:e2:78:a6:79:51:
5a:b5:4e:d1:41:12:35:3b:85:d7:20:fd:a8:f9:3c:
4b:6d:0c:ae:3c:98:38:97:c6:40:c9:85:cd:76:18:
6e:32:25:a5:1c:e6:9c:4c:56:21:ce:88:85:e4:57:
92:08:0c:4c:ec:98:31:5f:3b:68:9b:d2:4b:49:5f:
a6:e6:de:32:f4:d0:7c:22:fa:3d:d5:19:26:16:00:
20:36:f3:49:22:b5:ff:49:14:31:00:d5:13:3f:ed:
8f:be:51:c0:f3:92:9a:c6:c0:8d:01:b0:f8:ae:1f:
53:7b:f6:d9:67:3b:13:1f:21:f4:da:15:a6:0f:d1:
c2:6c:d7:51:b0:dc:a9:a0:9e:19:21:88:69:4c:d8:
29:bb:78:26:9f:c7:76:3c:b8:21:e9:44:c0:09:cc:
5e:aa:f9:ac:ac:53:d6:c0:eb:54:10:8b:5e:59:79:
e2:92:b9:ec:43:15:bd:fe:1d:4d:1c:93:0c:b8:32:
4c:73:fa:b6:d6:a9:eb:3a:87:01:7a:fe:66:02:5d:
de:a6:68:a3:35:c6:08:39:be:d9:ed:af:06:97:30:
4c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:08:37:E2:0F:64:FA:90:18:B5:00:56:E7:33:98:19:63:6C:1B:67
X509v3 Authority Key Identifier:
keyid:F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:85:58:eb:bf:e5:aa:89:54:25:9e:05:d5:29:3b:f4:43:4d:
8b:06:bc:d3:36:ae:2e:de:1e:bf:9d:4d:77:c1:a4:f2:14:52:
04:64:17:b8:26:11:5a:67:67:a3:40:7c:99:0f:e0:55:88:fa:
73:05:1f:a3:35:26:bd:fb:c9:33:2d:85:8e:50:c0:31:09:ee:
8e:c2:30:6c:8e:cb:9f:54:5a:d8:96:53:a0:65:48:db:82:e6:
34:48:71:49:9d:4c:04:eb:47:96:9e:de:d0:db:17:fb:0c:a9:
8b:5c:53:2e:10:a7:91:be:e4:45:55:78:fb:e4:ec:54:49:21:
c6:97:f9:db:af:ac:ab:e1:cd:71:aa:64:63:0a:bb:13:51:a9:
c2:1a:52:c0:60:de:fa:b7:50:04:bc:b0:41:e0:ac:da:8b:f6:
13:39:6b:49:20:3c:98:1d:a7:35:ca:68:15:0c:e7:8f:f6:a9:
99:13:55:b6:9c:ce:1e:74:1c:fc:ed:5b:78:9a:34:ba:fb:16:
e1:62:c9:ea:e7:b4:09:88:1f:98:e6:6d:bc:84:d6:15:11:c8:
a1:f5:b0:43:0e:1c:17:89:37:09:fc:53:33:ec:2a:71:0b:09:
7f:01:88:2d:5d:69:40:85:72:d3:98:25:a9:d6:5b:78:2b:90:
ac:8d:43:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:37:46 2025 by rpki-client