Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/8a845a-2669-4045-8d83-52b230ecacae/1/mTFQMIBh3NrF2EZc-ITGejuxkVk.mft
File: mTFQMIBh3NrF2EZc-ITGejuxkVk.mft (raw, json)
Hash identifier: VnqQs8opyxdnrTqs2CE0IKsBRzKsfeWveDmygV2SMVw=
Subject key identifier: FC:40:E1:18:0E:3A:62:3B:D5:2F:4E:2A:A6:88:BC:35:1C:64:67:82
Authority key identifier: 99:31:50:30:80:61:DC:DA:C5:D8:46:5C:F8:84:C6:7A:3B:B1:91:59
Certificate issuer: /CN=993150308061dcdac5d8465cf884c67a3bb19159
Certificate serial: 01958F9873D1DAC551D5705ED2E09716843B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mTFQMIBh3NrF2EZc-ITGejuxkVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/8a845a-2669-4045-8d83-52b230ecacae/1/mTFQMIBh3NrF2EZc-ITGejuxkVk.mft
Manifest number: 058C
Signing time: Thu 13 Mar 2025 13:01:27 +0000
Manifest this update: Thu 13 Mar 2025 13:01:27 +0000
Manifest next update: Fri 14 Mar 2025 13:01:27 +0000
Files and hashes: 1: mTFQMIBh3NrF2EZc-ITGejuxkVk.crl (hash: I41PPhoRWABaGQFzjAb5guxgWT+xyfN+EyOD3IxfWhE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/8a845a-2669-4045-8d83-52b230ecacae/1/mTFQMIBh3NrF2EZc-ITGejuxkVk.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/8a845a-2669-4045-8d83-52b230ecacae/1/mTFQMIBh3NrF2EZc-ITGejuxkVk.mft
rsync://rpki.ripe.net/repository/DEFAULT/mTFQMIBh3NrF2EZc-ITGejuxkVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8f:98:73:d1:da:c5:51:d5:70:5e:d2:e0:97:16:84:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=993150308061dcdac5d8465cf884c67a3bb19159
Validity
Not Before: Mar 13 13:01:27 2025 GMT
Not After : Mar 14 13:01:27 2025 GMT
Subject: CN=fc40e1180e3a623bd52f4e2aa688bc351c646782
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:68:86:13:8c:a6:26:d3:d4:ee:b8:90:0c:6f:
4d:2d:87:a0:e6:1f:3f:2b:d9:22:d0:45:89:fa:9f:
5c:f3:6a:0e:6e:b9:75:eb:bb:bf:70:e2:76:37:83:
ac:33:2b:c1:0c:00:80:5d:da:5d:bd:a7:13:33:37:
cb:86:4f:00:f2:35:de:aa:d7:44:54:ec:a7:db:d1:
4f:8a:46:c9:0f:ae:4b:b6:80:07:72:05:b6:47:4f:
8e:17:be:cc:57:99:4a:cc:41:22:fa:94:9c:64:de:
f1:f0:95:44:45:ff:77:91:b6:4a:de:28:62:51:b1:
62:5a:f1:48:3c:ed:e5:96:fb:8c:52:ec:ed:44:00:
00:e7:0e:b0:f9:8c:36:de:78:98:83:fe:a9:93:31:
5e:30:6e:37:45:ee:aa:e4:2f:f1:82:d6:1d:4b:e7:
4e:c3:1e:93:99:d1:da:d5:4b:fb:fb:1b:e6:30:fc:
8e:e5:40:66:9d:b7:07:b2:e0:99:41:03:f9:f9:ff:
57:d6:d3:93:f4:0b:78:38:cb:5e:16:ca:6c:c8:b0:
10:ae:2e:df:68:44:a1:fe:19:96:38:05:9c:50:92:
dd:8b:1a:4c:5f:24:95:ac:0f:39:7c:7b:9b:5c:dc:
7a:7c:57:bd:10:17:43:a3:62:80:e4:94:ee:3a:95:
a4:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:40:E1:18:0E:3A:62:3B:D5:2F:4E:2A:A6:88:BC:35:1C:64:67:82
X509v3 Authority Key Identifier:
keyid:99:31:50:30:80:61:DC:DA:C5:D8:46:5C:F8:84:C6:7A:3B:B1:91:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mTFQMIBh3NrF2EZc-ITGejuxkVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/8a845a-2669-4045-8d83-52b230ecacae/1/mTFQMIBh3NrF2EZc-ITGejuxkVk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/8a845a-2669-4045-8d83-52b230ecacae/1/mTFQMIBh3NrF2EZc-ITGejuxkVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:70:d9:ee:38:f6:9f:73:7c:7d:b9:ce:8c:5b:77:60:94:19:
d8:fd:8d:1c:30:58:ee:fe:5c:16:07:5c:c6:7f:ea:6e:f7:eb:
be:a4:2b:17:46:52:90:91:dd:d5:b9:90:08:3e:e1:c3:56:c5:
72:49:31:4c:15:4b:86:73:84:fc:ea:82:27:86:aa:e2:73:fe:
5b:c0:d6:cc:02:e8:ab:c2:54:96:c2:28:f0:b5:e1:c0:b3:49:
c1:d6:81:03:33:3f:32:77:85:cc:9b:05:03:2b:02:aa:b1:c0:
bc:d0:88:47:de:2e:fc:aa:60:77:cb:8e:10:1a:98:2b:e6:49:
2e:82:fa:e6:17:5f:67:f3:54:0c:a8:1f:a6:e6:af:dc:fc:51:
e9:7a:de:41:84:37:c0:24:ff:69:89:fd:fb:7e:08:bf:c1:37:
b0:53:24:75:26:73:8b:a5:7b:a1:dc:58:27:24:47:e3:af:5b:
ff:cb:40:d2:3b:ae:97:8d:87:f2:16:bb:57:95:31:09:c2:c2:
ab:8b:43:da:39:07:ad:ef:db:ce:f7:0c:15:23:9e:81:13:0f:
f1:81:4f:72:4d:cb:52:54:f0:51:81:3c:c0:fd:cf:4a:31:26:
25:68:6c:4e:74:38:40:28:a8:6c:e4:bc:8c:fa:1a:a6:b6:c1:
fd:06:73:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:11:18 2025 by rpki-client