Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
File: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft (raw, json)
Hash identifier: Of0WPuZITHY83HeyfBePaCXyG4XiCBctVMb3I5FWpNE=
Subject key identifier: 5C:F0:A5:63:B9:41:98:0B:F2:E4:85:D9:1C:25:BC:2C:7A:E0:D7:1F
Authority key identifier: B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
Certificate issuer: /CN=b043e621fe1009701f6366843c0abc41e180c144
Certificate serial: 0194C387F679EBB34A12ED91EFEE399EF372
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
Manifest number: 0B15
Signing time: Sat 01 Feb 2025 22:00:54 +0000
Manifest this update: Sat 01 Feb 2025 22:00:54 +0000
Manifest next update: Sun 02 Feb 2025 22:00:54 +0000
Files and hashes: 1: HyPwmwNvj6CdMpZdefHGIg4yDzE.roa (hash: OXYxYv21hsNNqtBtEPFKc2/1/qoxMz48zojYmP3J5L8=)
2: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl (hash: wiHPxwjgR8ynm52uPZ76xeAK62IH84BEvihyhhtVzp4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:f6:79:eb:b3:4a:12:ed:91:ef:ee:39:9e:f3:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b043e621fe1009701f6366843c0abc41e180c144
Validity
Not Before: Feb 1 22:00:54 2025 GMT
Not After : Feb 2 22:00:54 2025 GMT
Subject: CN=5cf0a563b941980bf2e485d91c25bc2c7ae0d71f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:84:35:f2:77:ad:54:3b:9c:30:a6:b8:04:f2:
fc:f8:2f:00:b2:97:a6:cf:04:bb:81:34:a3:a1:ed:
df:2e:a7:9c:1a:83:2c:90:be:71:5c:75:a1:6b:c6:
3c:ac:04:03:09:bb:5f:8f:90:82:db:c1:a9:63:91:
98:db:f7:b9:45:43:fc:93:2c:3f:3e:e6:a9:60:9e:
fd:2f:a8:23:bb:61:c5:69:92:61:c1:88:1d:9b:0e:
e4:73:d6:70:35:b3:1b:d6:c1:65:b4:f6:be:77:f5:
b9:72:a8:3e:be:01:83:04:62:a3:2a:06:eb:86:17:
e1:bc:60:62:e0:35:15:27:53:c7:1a:ce:4f:c2:34:
c5:62:42:04:af:aa:7f:3e:dc:76:35:9f:2b:18:57:
d8:d1:8a:a1:97:c0:04:2c:25:07:0b:d0:e7:72:94:
a3:92:08:56:df:e5:98:86:47:be:19:4e:02:f7:ab:
dc:7a:f1:8d:ab:d8:1e:54:9e:2f:40:13:9e:2c:0e:
ac:34:1e:97:59:b0:10:51:56:b0:f8:06:90:6a:3f:
7f:c0:84:6b:e7:6f:a0:c1:7e:40:e7:b8:41:91:f2:
50:a3:01:24:97:11:46:8c:6e:e7:24:56:a1:c8:79:
dc:07:a4:b5:b1:ee:fe:c7:85:dc:84:02:53:c4:8a:
6a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:F0:A5:63:B9:41:98:0B:F2:E4:85:D9:1C:25:BC:2C:7A:E0:D7:1F
X509v3 Authority Key Identifier:
keyid:B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:7f:25:47:84:22:2f:a4:f9:f4:58:47:67:45:bf:9b:0f:de:
16:69:7d:08:ea:4b:60:ad:59:8a:98:d7:e9:05:24:21:a3:fa:
f4:71:50:ad:33:6d:a2:80:c1:51:3b:1c:bb:17:7d:df:ed:52:
d0:a1:20:ae:e8:a3:db:80:64:f9:2d:b1:f0:d1:88:29:4a:7c:
1a:31:82:b2:e4:82:7c:8b:6d:81:92:6f:44:b6:8e:a5:a1:21:
22:3d:53:ca:0c:17:a3:22:0b:72:b8:ab:58:f6:cf:85:0e:ef:
e0:2a:bc:3d:ca:4c:77:dc:a1:ec:40:e8:cb:38:2e:be:48:0d:
98:d5:73:92:bd:28:7f:e1:30:82:a8:3e:79:24:a8:12:f2:74:
8e:26:f9:00:15:22:19:73:2e:50:9e:81:83:1e:ee:a7:cb:17:
20:78:3b:b8:14:28:55:a2:bf:8b:0b:47:64:59:1d:32:8b:39:
30:2a:90:22:5f:7a:bd:35:5d:de:40:28:ed:e8:7f:c7:83:0d:
e4:f5:fc:d6:d7:78:ab:19:aa:da:4a:da:90:18:a2:91:5a:f1:
7a:bb:65:e1:1a:2e:5d:94:fe:ae:fd:24:43:77:84:64:62:75:
49:31:b9:32:f0:fe:d5:93:70:e7:84:b8:6d:80:a2:82:64:de:
f1:97:63:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:53:42 2025 by rpki-client