Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/3b2bfd-60eb-4cbf-9f7f-136257e3076e/1/S_xaKUEPH_z03ipacFj1FiCzC3k.mft
File: S_xaKUEPH_z03ipacFj1FiCzC3k.mft (raw, json)
Hash identifier: UEjZ6bA1TeQEYC/Wo1sYKeU3JjHpBNKektPwj7Fwy4Q=
Subject key identifier: 32:8F:32:14:CD:56:71:1A:74:4C:D8:CB:B6:92:0E:74:19:E3:39:13
Authority key identifier: 4B:FC:5A:29:41:0F:1F:FC:F4:DE:2A:5A:70:58:F5:16:20:B3:0B:79
Certificate issuer: /CN=4bfc5a29410f1ffcf4de2a5a7058f51620b30b79
Certificate serial: 0196564A45D81005D0CF0D98BDF71432E450
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S_xaKUEPH_z03ipacFj1FiCzC3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/3b2bfd-60eb-4cbf-9f7f-136257e3076e/1/S_xaKUEPH_z03ipacFj1FiCzC3k.mft
Manifest number: 0CB1
Signing time: Mon 21 Apr 2025 03:00:30 +0000
Manifest this update: Mon 21 Apr 2025 03:00:30 +0000
Manifest next update: Tue 22 Apr 2025 03:00:30 +0000
Files and hashes: 1: S_xaKUEPH_z03ipacFj1FiCzC3k.crl (hash: 0dIhT3blht5h1zwI0x/McrDIC3zDOcqq9RrR2VCqUMI=)
2: bgx026u65bEUIofoNprJyhzn_S4.roa (hash: mkA02/DFrwmq5MSNIOugSkJaE1Y0Xy5Utto0dixWmsQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/3b2bfd-60eb-4cbf-9f7f-136257e3076e/1/S_xaKUEPH_z03ipacFj1FiCzC3k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/3b2bfd-60eb-4cbf-9f7f-136257e3076e/1/S_xaKUEPH_z03ipacFj1FiCzC3k.mft
rsync://rpki.ripe.net/repository/DEFAULT/S_xaKUEPH_z03ipacFj1FiCzC3k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:4a:45:d8:10:05:d0:cf:0d:98:bd:f7:14:32:e4:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bfc5a29410f1ffcf4de2a5a7058f51620b30b79
Validity
Not Before: Apr 21 03:00:30 2025 GMT
Not After : Apr 22 03:00:30 2025 GMT
Subject: CN=328f3214cd56711a744cd8cbb6920e7419e33913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:93:57:c7:1f:33:1c:25:d7:92:95:90:7a:2b:
c7:bb:4c:5c:bf:4d:02:98:69:7a:79:01:fa:75:52:
53:2a:b2:ad:3f:e4:db:44:26:3b:bc:45:ef:ff:1a:
24:fc:60:cb:22:b6:89:d1:09:f7:f3:b2:63:26:83:
ce:a1:4f:c1:92:dd:74:de:d3:43:72:e5:c4:66:6c:
b3:8d:cb:aa:44:a8:b8:3e:27:16:df:d7:92:69:fb:
e1:72:c1:be:74:6d:11:e5:19:d6:0c:c6:04:f1:df:
81:4a:c8:e3:8f:07:ec:1e:35:37:a4:3d:cb:ff:6d:
c2:c3:24:10:e1:c7:7d:47:2e:c7:8e:55:f7:4d:b4:
78:b4:e3:81:37:69:8a:f3:e6:3f:26:ee:39:f2:28:
cc:a8:42:ee:a4:d8:72:79:06:5a:db:c9:0c:6a:f3:
89:b0:66:02:18:df:c4:0a:4a:f7:ed:69:43:95:fa:
93:fb:10:a6:38:26:88:b8:53:bf:0f:2d:fa:1e:30:
09:84:59:a8:c6:e3:81:e9:06:72:09:8a:17:be:7d:
00:db:dd:50:09:27:07:0c:3d:5e:c9:f5:b5:1d:5d:
98:77:0f:bb:43:7b:72:99:d7:79:a7:09:59:a7:40:
2d:33:c6:75:b4:26:ad:5b:97:78:f3:b5:24:96:98:
05:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:8F:32:14:CD:56:71:1A:74:4C:D8:CB:B6:92:0E:74:19:E3:39:13
X509v3 Authority Key Identifier:
keyid:4B:FC:5A:29:41:0F:1F:FC:F4:DE:2A:5A:70:58:F5:16:20:B3:0B:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S_xaKUEPH_z03ipacFj1FiCzC3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/3b2bfd-60eb-4cbf-9f7f-136257e3076e/1/S_xaKUEPH_z03ipacFj1FiCzC3k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/3b2bfd-60eb-4cbf-9f7f-136257e3076e/1/S_xaKUEPH_z03ipacFj1FiCzC3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:f4:5a:26:48:98:82:7b:d5:e7:8e:f1:3a:64:4d:00:5b:72:
6d:4c:5c:eb:c2:ea:80:39:f0:88:80:6d:bf:d8:36:ff:a4:fa:
fa:61:c4:25:14:35:e1:6f:ea:26:d5:0d:67:b7:14:04:cf:eb:
5d:59:e6:30:b8:ec:b6:ac:c7:08:37:b0:84:dd:60:4a:fb:94:
f7:6c:90:c7:ca:d5:dc:62:f3:f2:c6:00:7b:f7:f5:82:13:7a:
79:00:38:cd:4c:79:4d:1d:ef:90:07:b9:0b:b5:3a:b1:ee:3d:
6f:31:ba:0b:54:cd:0c:b9:08:73:c3:cc:0a:23:1f:2e:29:b9:
e8:10:03:38:bd:1a:34:b6:25:91:10:3d:6e:b3:c6:4a:17:86:
a6:25:d4:5f:de:08:50:28:5e:f0:ab:b1:98:59:57:f2:e9:cf:
72:f2:fc:3f:0b:70:94:f1:52:27:c3:99:16:a1:d8:13:8d:fa:
5e:5a:38:d7:2f:9a:82:5a:50:4d:7d:9d:01:af:d0:a0:c7:93:
93:cf:43:14:07:eb:d5:b1:b4:49:3c:ff:85:27:be:d9:a6:12:
81:0f:ba:81:40:34:7a:68:0f:b9:26:1a:17:bf:de:47:95:70:
a5:5e:fc:81:a1:48:1f:23:25:64:ff:8e:f4:83:32:12:8b:e1:
65:d8:0c:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:34:33 2025 by rpki-client