Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/3af153-ed0d-49c0-99df-0cdefbfc787a/1/F3AFF3Um1mjoRLKnpaWaxkpJVlI.mft
File: F3AFF3Um1mjoRLKnpaWaxkpJVlI.mft (raw, json)
Hash identifier: g3xsn++UTZcdVSSNdaxR/JRZud2X6OCKkoi1C12PgP8=
Subject key identifier: 07:4A:08:E6:65:0D:E5:4B:DE:09:B9:02:A3:53:E7:7D:27:A1:E1:B0
Authority key identifier: 17:70:05:17:75:26:D6:68:E8:44:B2:A7:A5:A5:9A:C6:4A:49:56:52
Certificate issuer: /CN=177005177526d668e844b2a7a5a59ac64a495652
Certificate serial: 01964CD94BE230C1141895081F1B9B2FF6AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3AFF3Um1mjoRLKnpaWaxkpJVlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/3af153-ed0d-49c0-99df-0cdefbfc787a/1/F3AFF3Um1mjoRLKnpaWaxkpJVlI.mft
Manifest number: 0455
Signing time: Sat 19 Apr 2025 07:00:31 +0000
Manifest this update: Sat 19 Apr 2025 07:00:31 +0000
Manifest next update: Sun 20 Apr 2025 07:00:31 +0000
Files and hashes: 1: F3AFF3Um1mjoRLKnpaWaxkpJVlI.crl (hash: Zm5Exq3Exw8VsqsgJvzlOtNCDw+LdaWr9YNj4AOhO04=)
2: mF32KrmR7qkPWXVgQfXewbxtOHE.roa (hash: iXEGOcbHzPC+9l+k6XZzUAzgZY6fYnZW9+XlT/82/iA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/3af153-ed0d-49c0-99df-0cdefbfc787a/1/F3AFF3Um1mjoRLKnpaWaxkpJVlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/3af153-ed0d-49c0-99df-0cdefbfc787a/1/F3AFF3Um1mjoRLKnpaWaxkpJVlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/F3AFF3Um1mjoRLKnpaWaxkpJVlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:d9:4b:e2:30:c1:14:18:95:08:1f:1b:9b:2f:f6:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=177005177526d668e844b2a7a5a59ac64a495652
Validity
Not Before: Apr 19 07:00:31 2025 GMT
Not After : Apr 20 07:00:31 2025 GMT
Subject: CN=074a08e6650de54bde09b902a353e77d27a1e1b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5c:8f:e0:e3:c7:13:91:c1:f4:1e:68:f0:3c:
09:89:83:e8:4f:2f:cf:ed:5c:08:90:9b:c1:68:b5:
3b:42:75:fc:97:21:9f:6a:5f:20:b7:eb:bf:15:28:
67:3e:7c:2f:ea:24:a4:bb:91:b4:36:f6:e4:8d:1f:
ca:a9:73:12:3f:4a:0c:d0:2f:01:a1:3f:6e:01:22:
1f:e7:54:48:bf:0e:99:19:8e:53:2b:a3:79:de:bc:
f8:91:a6:57:30:1d:f8:8a:cf:16:c7:52:48:db:75:
55:5d:83:4c:3a:e3:24:87:86:cf:ac:aa:6e:a4:64:
b2:88:e9:ea:4d:c7:78:84:3a:33:91:cf:7a:dc:e9:
8d:79:e4:fe:55:38:bf:43:95:1d:df:eb:ca:82:a8:
68:6a:f5:b1:ff:2c:00:c9:d8:3e:b1:ca:8f:d8:52:
49:e9:8d:48:36:cf:71:77:41:e6:81:e4:46:e7:e9:
57:de:c7:04:ef:6c:26:4b:72:ce:88:8c:26:04:0a:
1a:8c:79:29:22:e3:ca:d6:ad:1b:4d:d5:d6:4b:15:
85:bf:e1:95:96:75:34:c7:cd:a5:df:de:64:fd:3a:
29:85:f3:e1:8b:d1:59:07:1a:fc:bd:87:ab:a4:93:
d3:16:f2:18:1d:b6:72:16:27:5d:49:c9:1a:da:45:
78:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:4A:08:E6:65:0D:E5:4B:DE:09:B9:02:A3:53:E7:7D:27:A1:E1:B0
X509v3 Authority Key Identifier:
keyid:17:70:05:17:75:26:D6:68:E8:44:B2:A7:A5:A5:9A:C6:4A:49:56:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3AFF3Um1mjoRLKnpaWaxkpJVlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/3af153-ed0d-49c0-99df-0cdefbfc787a/1/F3AFF3Um1mjoRLKnpaWaxkpJVlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/3af153-ed0d-49c0-99df-0cdefbfc787a/1/F3AFF3Um1mjoRLKnpaWaxkpJVlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:16:ab:a1:f0:4a:67:d2:dd:2b:6e:14:e2:29:11:be:dd:77:
16:61:c7:34:69:06:37:40:b1:22:42:76:a1:f2:ea:8c:90:09:
cc:80:fa:fe:56:d1:f6:f7:49:05:b2:1f:f0:5c:53:ab:2d:5b:
3b:fe:23:d0:de:4a:98:93:98:6e:b4:b6:2e:c1:9a:6b:f2:86:
be:0a:c4:88:50:75:d9:e8:7b:eb:f8:77:69:0a:18:7e:38:49:
1b:ca:96:ce:c1:35:64:f1:59:4a:7b:42:e5:e5:8b:6b:aa:68:
4d:c5:21:88:d5:e1:ba:ab:40:74:70:81:18:f3:4a:d9:98:21:
ce:f5:ec:80:42:fd:f6:af:bb:f2:23:d3:13:3f:e0:c8:55:ed:
ff:6b:fb:92:d5:a8:99:a7:71:9d:6c:f8:6d:49:db:64:d9:a1:
4f:ff:7c:60:b1:82:e8:0e:e8:8d:ac:d5:f0:30:b4:51:8f:96:
e9:ce:07:00:4b:28:8c:16:93:8a:8a:c2:7a:ae:c1:ab:62:ce:
54:6a:3f:e5:de:39:d9:da:37:0e:0b:be:c4:89:98:a1:f0:a5:
5f:70:a9:56:9d:66:67:b5:87:13:11:f9:4a:7c:9a:08:c5:b6:
2f:a0:fd:c9:a7:76:37:ec:ca:8b:6e:bb:8b:75:cf:9c:c0:6b:
2c:8a:b3:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 10:29:27 2025 by rpki-client