Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.mft
File: 05SToXmX0x6NWqbMyaa9dX8VwDA.mft (raw, json)
Hash identifier: wDGC/5RHdQaVYGqGS4+wYfNlB5r0JzEUkXqVuEfPDNQ=
Subject key identifier: E1:91:DA:D8:2D:B6:26:20:08:AA:7C:B0:B9:C7:F4:1B:73:2A:2C:56
Authority key identifier: D3:94:93:A1:79:97:D3:1E:8D:5A:A6:CC:C9:A6:BD:75:7F:15:C0:30
Certificate issuer: /CN=d39493a17997d31e8d5aa6ccc9a6bd757f15c030
Certificate serial: 0196545C84E837C644030F7CE0C66BD4A60B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/05SToXmX0x6NWqbMyaa9dX8VwDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.mft
Manifest number: 14FD
Signing time: Sun 20 Apr 2025 18:01:11 +0000
Manifest this update: Sun 20 Apr 2025 18:01:11 +0000
Manifest next update: Mon 21 Apr 2025 18:01:11 +0000
Files and hashes: 1: 05SToXmX0x6NWqbMyaa9dX8VwDA.crl (hash: rKl/UZvdAm2n0WlE5jek+871kzHMrtRBvfPHTbnfYX0=)
2: 0FFuSWeP_xnZLwOhaaaPqbHXLc4.roa (hash: R/kohk8zDnLTG4mp1rru94qAndg3iws6yZ+eZfkkPz4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.mft
rsync://rpki.ripe.net/repository/DEFAULT/05SToXmX0x6NWqbMyaa9dX8VwDA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 18:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:5c:84:e8:37:c6:44:03:0f:7c:e0:c6:6b:d4:a6:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d39493a17997d31e8d5aa6ccc9a6bd757f15c030
Validity
Not Before: Apr 20 18:01:11 2025 GMT
Not After : Apr 21 18:01:11 2025 GMT
Subject: CN=e191dad82db6262008aa7cb0b9c7f41b732a2c56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:26:94:92:ee:35:6f:b9:1f:69:1e:b4:07:12:
cd:16:50:fe:14:0d:dc:25:3a:ef:76:5b:49:a7:c5:
28:6d:22:6c:be:eb:62:cf:8d:b4:e2:5b:fa:e1:fd:
af:96:c3:15:a7:60:a3:5b:d4:76:6f:a6:36:f2:dd:
a6:cc:81:9e:d7:57:8e:98:39:0e:4e:4c:20:fb:73:
5b:f7:c0:11:c3:e4:ba:84:20:c7:98:88:66:5b:02:
97:6f:0a:a4:4c:b3:a9:50:60:dd:d6:ec:f6:03:22:
97:a1:ea:51:42:42:0d:3b:94:dc:22:2a:31:ff:27:
12:99:c6:7e:69:2b:28:00:71:8c:4e:ec:fe:88:e2:
7b:2a:95:8a:40:e8:17:b0:cb:22:7a:f0:25:c3:c1:
00:0e:85:a9:be:a8:18:1a:27:91:10:96:29:5b:3c:
ff:cd:70:d4:29:64:20:0c:76:da:ee:a1:b9:b1:f7:
a5:ea:04:c3:7d:47:dc:3d:c0:56:99:24:cc:ee:39:
bc:2e:92:81:7c:aa:00:60:fa:0d:b5:af:58:7f:e6:
4c:86:42:ce:43:81:31:3a:29:43:c9:ae:72:5c:02:
ba:93:ac:d6:22:a2:94:d5:77:03:8a:89:ee:70:2d:
4c:61:d2:92:31:96:1b:fa:4c:4c:98:b7:47:b0:8f:
0c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:91:DA:D8:2D:B6:26:20:08:AA:7C:B0:B9:C7:F4:1B:73:2A:2C:56
X509v3 Authority Key Identifier:
keyid:D3:94:93:A1:79:97:D3:1E:8D:5A:A6:CC:C9:A6:BD:75:7F:15:C0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/05SToXmX0x6NWqbMyaa9dX8VwDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/e804e4-7f30-4049-948b-97923297cda7/1/05SToXmX0x6NWqbMyaa9dX8VwDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:58:ca:17:f2:75:3c:10:8b:ec:f6:04:2b:90:c8:87:ba:46:
a2:42:29:6e:bc:74:bd:0a:4b:6a:b9:26:58:7c:ab:ec:7c:49:
c5:f6:0d:73:3c:ce:f0:ea:87:24:5c:18:e4:6c:d2:c7:a2:dd:
19:2d:40:85:57:4b:c1:6b:67:a4:87:0f:7c:fd:b2:e4:5a:ff:
ab:1c:be:ee:f2:a4:a0:e1:4c:be:92:f9:3d:58:33:ac:0f:0e:
d0:a6:f2:75:77:a6:b5:2e:6d:2f:3a:e5:81:e5:cd:4d:8b:a0:
d5:b3:73:9f:f6:cf:8a:e4:d6:ff:1b:33:bb:42:b5:2c:2f:87:
e7:25:8b:e3:e7:12:95:89:a5:17:f1:6d:5a:fa:fd:8c:f4:96:
22:da:a5:82:25:0b:0e:5a:68:1d:5a:a3:8d:e9:9b:b3:9d:1f:
8c:41:ef:cd:51:06:4c:60:75:e9:84:84:02:b6:c5:34:d1:05:
9f:a1:90:c9:d1:5b:40:47:b6:83:57:c6:6f:00:06:42:a1:d2:
a9:97:98:bf:b6:fb:d9:b8:70:ee:12:ea:ac:e7:7d:9b:22:87:
22:4f:ce:fe:fa:f6:63:b1:ab:5e:fc:9d:c5:cd:43:95:14:0f:
99:82:8d:65:85:a4:e0:b8:ba:f9:2f:08:ad:b6:d1:09:31:65:
71:4a:41:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:51:04 2025 by rpki-client