Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8fc30c-c1b1-47fb-85b8-417f53f1a4a0/1/DqVGOTFvXNUof4Qdf4z_FlIdBXY.mft
File: DqVGOTFvXNUof4Qdf4z_FlIdBXY.mft (raw, json)
Hash identifier: 04Spm57PdJokv0aVcndwt4LTQB052hhdhy2GObaw17Y=
Subject key identifier: E5:1C:85:D9:E5:FB:7C:64:F2:A6:13:7F:89:A7:AA:1B:38:B3:55:9D
Authority key identifier: 0E:A5:46:39:31:6F:5C:D5:28:7F:84:1D:7F:8C:FF:16:52:1D:05:76
Certificate issuer: /CN=0ea54639316f5cd5287f841d7f8cff16521d0576
Certificate serial: 01965613E5AF365A08554A7445B51F4B82A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DqVGOTFvXNUof4Qdf4z_FlIdBXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8fc30c-c1b1-47fb-85b8-417f53f1a4a0/1/DqVGOTFvXNUof4Qdf4z_FlIdBXY.mft
Manifest number: 0232
Signing time: Mon 21 Apr 2025 02:01:06 +0000
Manifest this update: Mon 21 Apr 2025 02:01:06 +0000
Manifest next update: Tue 22 Apr 2025 02:01:06 +0000
Files and hashes: 1: DqVGOTFvXNUof4Qdf4z_FlIdBXY.crl (hash: dL/QQs6oMTVl1RrQz+vnsaw0kxp4whO5TF7sODELhfU=)
2: abGEnkiRCC-QdoOIOJ74wLOfNK4.roa (hash: xQuRCd3BN/tXelIZ1CEEcNjDIYPDQbZRMsaEZajsFYM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/8fc30c-c1b1-47fb-85b8-417f53f1a4a0/1/DqVGOTFvXNUof4Qdf4z_FlIdBXY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/8fc30c-c1b1-47fb-85b8-417f53f1a4a0/1/DqVGOTFvXNUof4Qdf4z_FlIdBXY.mft
rsync://rpki.ripe.net/repository/DEFAULT/DqVGOTFvXNUof4Qdf4z_FlIdBXY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:13:e5:af:36:5a:08:55:4a:74:45:b5:1f:4b:82:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ea54639316f5cd5287f841d7f8cff16521d0576
Validity
Not Before: Apr 21 02:01:06 2025 GMT
Not After : Apr 22 02:01:06 2025 GMT
Subject: CN=e51c85d9e5fb7c64f2a6137f89a7aa1b38b3559d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:39:52:43:cf:34:aa:38:ba:48:c6:49:b5:e1:
86:d7:bc:9b:85:fb:a4:3f:6d:7b:9a:fc:d2:b1:d7:
25:a5:e6:3e:2c:81:3d:2c:1b:99:d8:e0:e1:d0:50:
fd:bd:0e:04:93:04:76:61:09:ae:0d:71:3b:84:ce:
f4:47:89:11:5a:b1:20:de:ee:cd:07:da:cd:92:e1:
3c:6f:96:42:d1:54:ea:c2:26:c9:dc:6f:9c:63:26:
df:63:69:ab:85:2b:95:ab:19:cc:2e:de:a4:7c:34:
4b:09:1f:80:7d:2e:8e:4d:b5:e6:c1:4b:49:5d:a5:
bf:19:98:c5:57:00:39:ea:9c:ac:89:10:23:a3:b9:
ab:20:c4:d9:88:63:51:ff:03:a9:13:ef:9b:b5:be:
b5:03:77:4a:bd:1c:ec:94:fb:48:25:6d:1f:94:94:
b0:ef:b8:8e:c7:38:43:76:df:e6:7c:1c:d7:0c:9f:
5e:eb:e5:0c:29:77:37:bc:4e:3c:9c:fd:c1:8a:6a:
7e:25:ff:78:c9:89:74:55:66:ae:30:40:28:54:00:
bb:bd:c1:80:e1:b2:07:8f:8e:ca:b8:2b:1c:bc:5b:
53:7f:6e:9b:21:e4:09:2d:2e:49:f2:25:6e:09:5b:
7a:24:21:ce:ac:8b:79:be:cb:16:f9:e7:f0:b8:8e:
70:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:1C:85:D9:E5:FB:7C:64:F2:A6:13:7F:89:A7:AA:1B:38:B3:55:9D
X509v3 Authority Key Identifier:
keyid:0E:A5:46:39:31:6F:5C:D5:28:7F:84:1D:7F:8C:FF:16:52:1D:05:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DqVGOTFvXNUof4Qdf4z_FlIdBXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8fc30c-c1b1-47fb-85b8-417f53f1a4a0/1/DqVGOTFvXNUof4Qdf4z_FlIdBXY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8fc30c-c1b1-47fb-85b8-417f53f1a4a0/1/DqVGOTFvXNUof4Qdf4z_FlIdBXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:32:38:b1:ad:0c:f0:02:af:74:8b:4a:de:96:14:57:c3:c3:
ca:55:0b:28:ec:33:e9:5e:cd:61:e0:d1:4c:36:57:3e:da:42:
6a:86:bb:0c:0c:2c:9e:7a:d9:0e:f0:4a:0f:46:91:6f:3c:92:
01:d7:ad:46:c5:56:c4:57:06:41:21:19:f3:11:0f:e3:3e:78:
48:95:e9:48:6c:d7:45:a8:76:ec:20:ad:76:b0:b4:c8:ae:c9:
3a:fd:81:7c:e1:78:fd:4d:8f:f4:5d:5b:9b:48:88:ff:c5:c9:
18:5d:31:72:ef:77:c0:cf:5b:1b:6f:c0:d8:ee:56:4f:0b:8a:
02:ec:d8:74:b8:6d:ef:f4:60:9b:5d:41:03:47:a7:72:5b:ee:
e7:a7:86:25:cd:93:5b:3d:0d:87:f8:a9:af:18:16:69:13:84:
39:dd:14:7d:f6:76:f3:17:74:d5:70:65:ae:72:43:d5:a9:b5:
a4:bd:60:74:7c:05:5b:cd:55:c1:b5:79:ad:d1:bc:d5:a4:3f:
2f:80:cc:51:f7:5c:b6:c0:30:62:8f:f6:58:1c:6f:3e:a2:5d:
04:06:3a:6f:f5:92:f8:e8:39:ec:81:52:c3:4e:c8:7d:4d:f4:
fd:85:68:cc:71:33:7e:b4:98:0d:d4:74:5f:8b:10:fd:9f:51:
ba:8c:86:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:38:21 2025 by rpki-client