Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/1e06be-4511-45fc-8949-7431d689a8e8/1/dlchH4pmVhtXcP8ZtHGu9RHoN3g.mft
File: dlchH4pmVhtXcP8ZtHGu9RHoN3g.mft (raw, json)
Hash identifier: R5YJyjRp65KkI7EwhvZ4w0EY0H/GCE+Ne3N93To7aPg=
Subject key identifier: 54:36:68:DE:09:09:8A:F5:28:0A:FD:3D:6F:B1:FB:4E:18:B6:43:17
Authority key identifier: 76:57:21:1F:8A:66:56:1B:57:70:FF:19:B4:71:AE:F5:11:E8:37:78
Certificate issuer: /CN=7657211f8a66561b5770ff19b471aef511e83778
Certificate serial: 0196556E4FFF8188E329907D654A42C22BA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dlchH4pmVhtXcP8ZtHGu9RHoN3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/1e06be-4511-45fc-8949-7431d689a8e8/1/dlchH4pmVhtXcP8ZtHGu9RHoN3g.mft
Manifest number: 03B9
Signing time: Sun 20 Apr 2025 23:00:14 +0000
Manifest this update: Sun 20 Apr 2025 23:00:14 +0000
Manifest next update: Mon 21 Apr 2025 23:00:14 +0000
Files and hashes: 1: FpqX8EZQIVTXkUnqlp9grlBeNrw.roa (hash: P8KxRj81qpEt5Z2QrlNREQ2v0IAaxfxV7ZOlUfOnKHA=)
2: dlchH4pmVhtXcP8ZtHGu9RHoN3g.crl (hash: AhGh+GQvrqMq6Uwd8Z/tLHgXcC5xWNdNHwdNNAt7h5w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/1e06be-4511-45fc-8949-7431d689a8e8/1/dlchH4pmVhtXcP8ZtHGu9RHoN3g.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/1e06be-4511-45fc-8949-7431d689a8e8/1/dlchH4pmVhtXcP8ZtHGu9RHoN3g.mft
rsync://rpki.ripe.net/repository/DEFAULT/dlchH4pmVhtXcP8ZtHGu9RHoN3g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 23:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:6e:4f:ff:81:88:e3:29:90:7d:65:4a:42:c2:2b:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7657211f8a66561b5770ff19b471aef511e83778
Validity
Not Before: Apr 20 23:00:14 2025 GMT
Not After : Apr 21 23:00:14 2025 GMT
Subject: CN=543668de09098af5280afd3d6fb1fb4e18b64317
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:5b:55:14:0d:e6:a4:ad:c5:9c:f9:1d:a6:66:
3f:a7:21:10:b7:c4:cc:67:55:40:3f:12:8a:cf:1a:
7c:c8:05:71:4e:31:3f:88:5e:a5:ef:72:3a:01:34:
5b:c0:e6:64:51:4e:3f:d2:68:92:16:e6:20:52:39:
a2:12:68:8d:91:52:92:3c:a1:5b:15:30:c4:27:fc:
e3:24:c4:35:a3:f7:e6:28:49:90:38:ad:dd:bb:c6:
2c:2c:05:ee:86:66:75:2c:f9:e0:95:8f:15:a4:4e:
27:f2:f8:ec:c2:bd:40:ac:95:d3:52:9f:cd:e2:bc:
af:23:f9:d4:fc:2f:5f:df:78:d0:54:86:da:c2:a1:
e9:f8:48:c4:70:1c:3e:ee:46:a1:21:94:3c:51:dd:
2a:fd:76:c6:8a:94:d8:7c:4c:b2:7b:6c:39:18:a6:
ac:7a:9c:4f:89:46:6e:05:91:7c:cd:3b:23:7a:8d:
86:c4:c3:b6:bd:6d:7c:a5:1e:55:cc:e2:57:7a:a1:
26:e4:c6:e5:40:e3:c3:44:9a:52:7f:97:e8:e4:28:
c1:dd:92:6f:59:51:63:77:7e:45:de:22:8c:9d:e8:
24:6b:bc:20:c5:a1:25:86:b3:0d:cb:9e:8a:3b:c1:
39:dd:c3:47:d9:92:a7:6f:1c:02:e7:3f:f9:e4:f5:
41:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:36:68:DE:09:09:8A:F5:28:0A:FD:3D:6F:B1:FB:4E:18:B6:43:17
X509v3 Authority Key Identifier:
keyid:76:57:21:1F:8A:66:56:1B:57:70:FF:19:B4:71:AE:F5:11:E8:37:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dlchH4pmVhtXcP8ZtHGu9RHoN3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/1e06be-4511-45fc-8949-7431d689a8e8/1/dlchH4pmVhtXcP8ZtHGu9RHoN3g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/1e06be-4511-45fc-8949-7431d689a8e8/1/dlchH4pmVhtXcP8ZtHGu9RHoN3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:7f:2e:7b:b6:73:71:61:99:dc:49:56:1f:91:76:f4:38:1b:
4e:68:2a:ba:01:eb:a4:d2:30:8a:c2:d2:4f:d8:ae:ff:3a:a4:
6c:4b:e8:3b:54:5e:83:ee:c9:31:b0:2f:f9:15:c5:d8:3e:70:
34:b4:4b:d2:ed:ab:27:ed:99:63:00:1a:d8:84:43:85:48:2c:
df:72:76:2e:bf:5a:f3:84:06:81:19:35:f2:2f:9d:2a:76:9c:
d1:c5:27:49:81:53:8d:62:ab:b6:e1:7b:50:67:7f:23:6a:16:
11:bb:80:48:d4:b5:0a:37:da:5f:cc:a3:29:5c:c6:46:bd:30:
43:02:9c:61:35:8d:47:31:c6:e0:1f:ac:33:6b:a1:3f:63:6c:
13:6a:04:6d:72:c4:35:c2:65:a3:a1:7b:43:1d:af:7a:81:78:
29:24:00:6f:ab:4d:f2:b1:97:83:80:da:40:71:7c:d6:f0:bf:
d9:02:81:d5:62:f3:af:cb:61:93:9c:8e:8b:18:c6:59:c5:90:
54:2b:48:82:f8:1c:e8:a8:c8:be:b5:e1:e5:3d:f8:98:c4:c4:
19:fa:95:da:23:87:28:d9:71:1c:94:db:13:c8:b5:f4:a0:75:
59:6c:11:7f:db:dd:69:75:48:72:29:ce:54:41:5c:22:98:25:
db:4d:52:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:06:35 2025 by rpki-client