Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
File: tD1On-OlSH0g8QABkWKRUPYo86E.mft (raw, json)
Hash identifier: M8YmlltGWl+sIXXakMnAypMkXPpI7sOW2JRGbMRADpk=
Subject key identifier: 79:02:5E:92:23:64:3C:00:60:C4:C4:2F:60:25:B4:07:35:7E:27:29
Authority key identifier: B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
Certificate issuer: /CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Certificate serial: 01964C6BC686F46A9D0C15F87C0E3CAD4B54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
Manifest number: 09CA
Signing time: Sat 19 Apr 2025 05:00:53 +0000
Manifest this update: Sat 19 Apr 2025 05:00:53 +0000
Manifest next update: Sun 20 Apr 2025 05:00:53 +0000
Files and hashes: 1: WJX8pUUgztAx5ziEUO7pdOPaYpY.roa (hash: Zv2hcAwndmbcI8AgNFSDMAAPE42QlNQ0rd+YTdhMpog=)
2: tD1On-OlSH0g8QABkWKRUPYo86E.crl (hash: SP1b4Fkq1CQn4fcgN3GHpnIMEuRPZTxPt1SxZnp04j8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:6b:c6:86:f4:6a:9d:0c:15:f8:7c:0e:3c:ad:4b:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Validity
Not Before: Apr 19 05:00:53 2025 GMT
Not After : Apr 20 05:00:53 2025 GMT
Subject: CN=79025e9223643c0060c4c42f6025b407357e2729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:8b:b8:54:06:1f:a6:82:17:c9:71:50:24:bd:
f2:01:3e:d8:14:3a:f5:a7:ee:1a:95:be:d4:6e:4b:
9c:46:31:1d:84:10:f2:89:24:36:d4:83:0d:9c:7c:
0f:60:ba:e7:36:39:02:0f:d7:a6:a6:69:92:fb:2e:
ff:22:f9:4f:73:63:7d:43:3e:91:df:29:59:42:16:
c4:1e:d4:ef:dd:46:e2:40:10:d7:bf:bc:e2:b5:c0:
f7:41:18:9e:ad:2e:38:9c:cb:1b:9b:0e:f3:2b:40:
d8:0c:ae:fd:e0:4f:bf:c8:51:6b:d5:2a:f5:c0:fb:
22:a0:02:4a:45:aa:4a:17:24:4e:b2:31:1c:b1:98:
8d:5d:6f:94:c4:dc:8a:ab:6b:d8:48:da:d7:67:78:
e1:50:69:b3:54:7e:68:c3:c5:aa:b4:48:8a:b5:3d:
00:c0:97:8e:19:e2:1a:1d:fc:f4:f2:62:0f:75:1f:
41:bf:85:55:56:8c:85:ad:00:14:68:a6:2f:13:ad:
c9:5a:34:e5:7c:d5:f1:9a:0b:bf:d8:de:3d:a8:19:
a1:c9:b0:e2:d5:db:82:eb:ad:a0:ae:48:8c:be:4f:
4b:c9:b6:96:ea:97:13:a7:71:fe:d1:d2:f4:7c:c7:
a0:fa:19:b2:9d:3b:67:5b:93:fa:15:76:46:1e:67:
ae:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:02:5E:92:23:64:3C:00:60:C4:C4:2F:60:25:B4:07:35:7E:27:29
X509v3 Authority Key Identifier:
keyid:B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:ff:8f:0a:29:22:46:ea:63:6d:47:32:6a:70:d0:2b:cf:18:
07:97:f8:a1:49:03:7a:05:7e:a6:27:df:f3:c3:41:97:a3:eb:
41:04:cd:83:eb:c8:85:e6:e6:20:62:43:af:9d:ac:ff:d7:40:
ae:63:59:6f:2a:79:45:44:41:46:16:37:42:19:7b:cc:2e:d1:
b3:9c:27:0e:63:dd:67:fc:3b:6b:18:bb:25:af:5c:d0:bb:94:
cf:10:25:f5:17:7f:9d:f2:c6:42:62:00:be:ae:4f:85:0f:7d:
9b:bc:62:7a:d1:81:74:76:47:46:67:ed:a7:c0:4f:a6:aa:73:
17:1a:5d:c6:4f:8e:87:5b:c5:f5:15:46:45:b7:50:5d:93:71:
0f:f0:d7:19:a5:5e:8a:ae:03:bf:92:46:a0:a4:fd:44:89:da:
ea:e2:d4:ef:50:71:63:73:18:1d:87:38:8d:43:16:e3:bd:37:
95:ad:ca:85:af:9d:b8:84:e8:3f:dd:47:5f:b9:04:0b:7e:39:
e0:fb:d4:fd:84:10:2e:ac:47:9b:df:29:9e:45:a6:d3:f1:30:
1b:5e:3a:67:5d:cf:a4:fc:38:07:d7:d0:2c:2b:7b:8c:4d:d6:
84:f5:b9:f3:b7:9a:e7:f6:23:2f:a9:e1:ca:c0:a5:b7:2e:ee:
07:2f:e5:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:47:09 2025 by rpki-client