Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
File: lQ8oTPXDnybd0jUufyrfeo3GD44.mft (raw, json)
Hash identifier: 9DHGme9Ic+hprzPBdq4tdYgdteI3GHS/MvecGSE9oT8=
Subject key identifier: 16:CC:70:1B:33:73:69:6B:29:45:FE:2D:B6:BE:B6:BE:52:D2:65:3F
Authority key identifier: 95:0F:28:4C:F5:C3:9F:26:DD:D2:35:2E:7F:2A:DF:7A:8D:C6:0F:8E
Certificate issuer: /CN=950f284cf5c39f26ddd2352e7f2adf7a8dc60f8e
Certificate serial: 019654931674BC166B2F000827030F31FC21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
Manifest number: 0AF9
Signing time: Sun 20 Apr 2025 19:00:47 +0000
Manifest this update: Sun 20 Apr 2025 19:00:47 +0000
Manifest next update: Mon 21 Apr 2025 19:00:47 +0000
Files and hashes: 1: CIXcSM8wlZUJc9_olM2z-Sxe_fI.roa (hash: mDiY7MPNQSCh1DaHA5s1SG/E+/9GUkWw11IjIEdP7WU=)
2: lQ8oTPXDnybd0jUufyrfeo3GD44.crl (hash: nrE3lQCsrlDnaIGndRuPtyGWBiXk6G65ISwk2Iwhbzs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:93:16:74:bc:16:6b:2f:00:08:27:03:0f:31:fc:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=950f284cf5c39f26ddd2352e7f2adf7a8dc60f8e
Validity
Not Before: Apr 20 19:00:47 2025 GMT
Not After : Apr 21 19:00:47 2025 GMT
Subject: CN=16cc701b3373696b2945fe2db6beb6be52d2653f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:45:92:39:a5:4f:b1:2a:8b:ea:66:43:1b:75:
ee:6e:9f:e4:12:08:58:d5:5d:2b:f6:1e:bd:1d:a7:
46:3e:a6:23:68:f4:35:cb:e4:92:87:bc:0c:db:8c:
df:20:ab:ef:5f:38:7c:e5:a0:32:a3:6c:78:8d:d2:
9a:06:49:2b:d3:0e:d4:a3:fa:29:1d:2f:2f:56:2a:
a2:7d:86:05:f8:58:5b:32:e6:f5:18:24:5c:37:09:
23:8d:58:02:43:51:dc:d7:4b:ac:8f:89:c4:b5:aa:
70:f9:60:38:52:f6:ce:f3:7c:b3:9c:8c:2b:71:9c:
20:c6:6f:ec:9b:1e:77:d5:60:d6:9b:ce:5e:1e:2d:
55:c0:50:07:b1:1f:17:3c:c1:cd:ef:fb:01:f9:ef:
6c:fa:82:d1:49:b3:e5:4a:6e:04:1a:02:c6:66:09:
76:6d:c8:fe:34:3d:34:9b:35:2a:e0:84:68:39:1f:
50:37:af:a7:0a:d7:aa:d1:95:bc:b7:b0:29:96:06:
b0:c9:fc:62:52:b6:bf:23:f4:66:bf:1e:ae:f7:f9:
70:99:0b:53:13:d0:5b:f9:ad:64:6d:4c:15:21:7a:
9e:94:50:59:36:71:fc:cc:c3:e1:ca:ae:5f:83:d4:
bb:a5:36:50:c1:d4:15:67:3a:59:08:4d:a5:0f:df:
63:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:CC:70:1B:33:73:69:6B:29:45:FE:2D:B6:BE:B6:BE:52:D2:65:3F
X509v3 Authority Key Identifier:
keyid:95:0F:28:4C:F5:C3:9F:26:DD:D2:35:2E:7F:2A:DF:7A:8D:C6:0F:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lQ8oTPXDnybd0jUufyrfeo3GD44.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/1974ee-408f-4120-8f19-fa2f0d54b1d1/1/lQ8oTPXDnybd0jUufyrfeo3GD44.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:cb:88:79:ed:a2:73:74:92:13:9c:bf:84:c1:1d:9d:b2:50:
99:76:15:02:57:97:be:8e:9b:f4:45:b3:a3:6b:ee:85:19:40:
77:e2:4f:2c:9f:5e:19:ca:c7:8b:22:be:43:4d:cf:ca:d6:7b:
90:d2:15:75:68:ef:b3:16:21:73:33:99:98:d3:c5:a4:73:d5:
ba:d1:58:36:52:2e:42:56:d9:77:3a:65:9e:6f:b5:2e:8c:36:
ca:e6:00:db:77:ba:d9:69:45:03:96:f4:e5:27:30:7d:17:b9:
ce:0f:d6:34:cd:a2:ca:b6:58:11:7c:56:34:51:e3:50:40:eb:
a8:73:bd:ed:1d:43:13:a1:63:3e:26:0b:28:94:f8:c5:c8:11:
bf:84:42:88:b4:19:81:40:d7:b3:9d:cd:42:85:35:ab:d2:41:
ff:8f:9c:3f:fa:e4:ee:6a:5e:9e:44:0b:1a:6b:ba:93:67:0a:
81:56:38:f7:81:49:34:cf:2a:af:9e:87:7a:4f:9c:c0:85:13:
89:22:de:d2:8f:04:1f:65:99:f2:8c:70:50:e2:58:79:ed:6c:
e2:f6:82:26:eb:30:c4:f4:c5:ae:56:c8:6b:ae:ad:26:c6:b2:
d1:fd:97:fa:4e:e2:d2:28:c9:fb:37:b2:38:b5:12:17:c0:e9:
57:14:ca:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:59:39 2025 by rpki-client