Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8ae579-000c-4e73-9f68-3ada352652b4/1/4dNi5IrL4ASOnRJaYrjZsUDL_dQ.mft
File: 4dNi5IrL4ASOnRJaYrjZsUDL_dQ.mft (raw, json)
Hash identifier: ppLnwj2TJ4XYQl5uLOU9fitMZ+Xx7KNQXIgZ4aCGDw8=
Subject key identifier: BA:C1:51:43:6D:2C:75:39:6A:96:47:ED:18:AE:4D:09:2E:3F:42:77
Authority key identifier: E1:D3:62:E4:8A:CB:E0:04:8E:9D:12:5A:62:B8:D9:B1:40:CB:FD:D4
Certificate issuer: /CN=e1d362e48acbe0048e9d125a62b8d9b140cbfdd4
Certificate serial: 019659F060371B0C1A42C41CD65040AEB38F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4dNi5IrL4ASOnRJaYrjZsUDL_dQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8ae579-000c-4e73-9f68-3ada352652b4/1/4dNi5IrL4ASOnRJaYrjZsUDL_dQ.mft
Manifest number: 021B
Signing time: Mon 21 Apr 2025 20:00:47 +0000
Manifest this update: Mon 21 Apr 2025 20:00:47 +0000
Manifest next update: Tue 22 Apr 2025 20:00:47 +0000
Files and hashes: 1: 4dNi5IrL4ASOnRJaYrjZsUDL_dQ.crl (hash: tklNLK5ztb75p9nvIstSwSMCZ7Ab7Tz2uN3ro66zRFA=)
2: MVPwNZ1sWh_qT3u_yevkatHjGzM.roa (hash: C2EFQTV5AK3R2J2AxwzeI6jL/kPjrl3mk/7AjDMYss0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/8ae579-000c-4e73-9f68-3ada352652b4/1/4dNi5IrL4ASOnRJaYrjZsUDL_dQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/8ae579-000c-4e73-9f68-3ada352652b4/1/4dNi5IrL4ASOnRJaYrjZsUDL_dQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/4dNi5IrL4ASOnRJaYrjZsUDL_dQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:f0:60:37:1b:0c:1a:42:c4:1c:d6:50:40:ae:b3:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1d362e48acbe0048e9d125a62b8d9b140cbfdd4
Validity
Not Before: Apr 21 20:00:47 2025 GMT
Not After : Apr 22 20:00:47 2025 GMT
Subject: CN=bac151436d2c75396a9647ed18ae4d092e3f4277
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f5:9d:18:97:e7:97:66:e0:65:35:ad:82:c0:
c8:73:ff:17:ea:0a:2c:13:3d:3a:96:52:78:d1:49:
5f:58:fe:8e:fa:db:44:e0:cd:6c:b2:ac:75:af:3c:
c7:24:63:ba:08:b6:ef:b8:08:98:7a:fc:87:73:f4:
c7:5f:9d:47:38:c1:5a:35:6b:79:ff:76:40:ae:bb:
d2:84:d9:52:be:7a:e5:0c:0b:99:23:5b:a3:ec:89:
5a:3d:30:fc:1e:29:35:82:8f:cf:89:4b:21:1c:42:
bb:06:b8:2c:75:ed:56:fa:36:b5:33:6e:30:96:f4:
7b:36:9d:5d:d8:00:c9:88:54:33:ec:28:65:7e:56:
db:8b:f1:a1:d2:96:5c:a5:8f:62:fe:8a:26:9b:89:
30:41:e7:00:d3:be:4d:2c:d4:c7:8d:ef:49:0f:ce:
b2:47:d9:52:9f:ed:dc:18:9a:89:54:70:b1:88:0f:
b5:3c:c3:16:e6:7b:9a:59:ef:69:67:00:4c:45:31:
f2:87:10:ab:a1:53:f8:e3:41:0c:58:4d:1c:f4:01:
2c:62:81:8b:c4:25:93:c6:68:dd:70:2c:13:18:5c:
a1:09:45:84:08:ee:fa:ad:70:f2:82:89:7b:3f:be:
28:56:f4:f6:3e:e7:19:cd:99:0e:c5:c3:03:a3:b4:
9b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:C1:51:43:6D:2C:75:39:6A:96:47:ED:18:AE:4D:09:2E:3F:42:77
X509v3 Authority Key Identifier:
keyid:E1:D3:62:E4:8A:CB:E0:04:8E:9D:12:5A:62:B8:D9:B1:40:CB:FD:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4dNi5IrL4ASOnRJaYrjZsUDL_dQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8ae579-000c-4e73-9f68-3ada352652b4/1/4dNi5IrL4ASOnRJaYrjZsUDL_dQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8ae579-000c-4e73-9f68-3ada352652b4/1/4dNi5IrL4ASOnRJaYrjZsUDL_dQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:50:d5:21:d5:ec:e7:d5:57:5c:52:dd:f6:0d:06:a7:06:0f:
a4:92:f3:a5:dc:40:22:6c:94:e4:97:68:25:a3:08:7f:a9:ee:
e9:b3:4a:47:b9:d2:0b:0b:08:47:ca:4a:75:8d:c3:31:8a:26:
c1:40:70:3c:40:4d:5a:c6:39:d1:4d:e9:28:3c:fb:3f:6d:ba:
26:4e:9c:3c:2e:65:89:3a:d3:f3:d2:92:98:09:5e:0e:5c:b4:
44:67:4d:85:bf:1f:b3:d6:3e:6a:8a:43:c2:21:c3:77:16:f6:
99:d2:fa:b6:e4:96:39:ca:d5:54:cd:ea:5e:0c:aa:f8:a6:4b:
4b:05:1f:9b:29:3f:9d:a1:9c:8f:e1:9a:2d:e1:10:06:38:67:
87:27:db:ad:86:bf:57:9e:0e:51:99:45:95:32:60:21:03:a5:
39:a0:c8:64:e4:72:e0:6a:6a:96:4c:21:0b:4b:99:16:9a:e5:
8c:59:6f:91:7b:b3:8a:76:01:1e:46:ff:85:29:b9:87:6e:f6:
ac:b8:30:e3:ee:61:48:ba:c5:93:86:6f:0e:12:85:9e:83:43:
14:73:0a:c1:bf:83:69:d8:f2:03:b1:a3:73:c1:0b:44:36:fc:
68:4e:11:d8:1d:60:fb:85:35:e6:d4:6c:fb:6d:55:ab:82:c7:
24:3b:33:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 02:19:48 2025 by rpki-client