Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
File: koDT5GcpaPhuiVXbYgy3ZdudcUI.mft (raw, json)
Hash identifier: i4xjcvSaUD2DKTi5qJ1MQMTaPIBTUXHD3c4XGhJsKFQ=
Subject key identifier: C6:D8:A6:7F:4B:DC:90:98:B2:03:BC:B2:6A:A3:74:B8:6B:6E:5E:B0
Authority key identifier: 92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42
Certificate issuer: /CN=9280d3e4672968f86e8955db620cb765db9d7142
Certificate serial: 01964030702FB417957C3D2225418B0011F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
Manifest number: 0922
Signing time: Wed 16 Apr 2025 20:00:38 +0000
Manifest this update: Wed 16 Apr 2025 20:00:38 +0000
Manifest next update: Thu 17 Apr 2025 20:00:38 +0000
Files and hashes: 1: HJG2LfZbcdQILd5mjrG6JouJjB8.roa (hash: AJsKTbmetLnV+AkJjtEMj7IQPl7myVO7TWx6kpWmD6s=)
2: koDT5GcpaPhuiVXbYgy3ZdudcUI.crl (hash: Lbx4DCPaU44N4YhKNmc2VfGzy7pp0/ObolANdOczWGU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:40:30:70:2f:b4:17:95:7c:3d:22:25:41:8b:00:11:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9280d3e4672968f86e8955db620cb765db9d7142
Validity
Not Before: Apr 16 20:00:38 2025 GMT
Not After : Apr 17 20:00:38 2025 GMT
Subject: CN=c6d8a67f4bdc9098b203bcb26aa374b86b6e5eb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:f2:ef:a1:4f:90:a9:e7:63:ad:29:f7:0d:9d:
88:77:60:e9:c0:0c:79:e4:fe:49:5d:95:9d:05:d9:
ea:7f:94:35:07:25:d2:8a:9d:7c:96:99:11:d2:0a:
a5:ac:1d:5c:1d:47:ce:ff:13:a7:2f:dd:10:02:e6:
bd:b5:02:07:97:ed:7a:e0:42:37:7c:2a:28:67:2e:
f8:c4:73:eb:8d:bf:63:77:78:b1:0d:80:61:d1:35:
ae:e1:af:6f:44:1f:37:f3:b4:ea:1c:67:08:21:47:
5e:f8:7c:15:c4:ec:ea:45:79:4c:c1:ec:a4:8e:59:
6a:22:ca:ff:53:e8:e6:cf:8e:86:fb:19:b0:20:db:
d3:45:5f:07:50:d2:5e:7b:f4:36:45:30:79:3f:f6:
6e:8b:3c:04:b9:a6:e1:64:aa:b4:fb:eb:7a:95:40:
ca:a3:ac:dd:18:98:65:82:23:d0:6a:d5:c3:3b:74:
e8:c2:5c:2b:d9:3f:7d:83:e5:33:86:e6:35:91:ab:
73:02:dd:3b:ce:f7:46:6c:50:7e:47:52:75:e3:a1:
8c:5c:12:a4:49:27:20:c4:60:dc:de:51:24:75:09:
bd:1f:4e:61:69:03:14:56:40:fd:84:64:88:27:4e:
07:76:9d:0a:03:d8:b7:54:71:60:34:8c:f3:52:bb:
b0:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:D8:A6:7F:4B:DC:90:98:B2:03:BC:B2:6A:A3:74:B8:6B:6E:5E:B0
X509v3 Authority Key Identifier:
keyid:92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:8f:24:b9:f7:b2:8c:54:da:eb:ff:08:f4:05:52:08:e9:96:
3b:94:7a:60:e0:6b:19:9a:63:bf:5b:59:b9:d4:57:ce:47:a3:
73:e2:0e:14:0b:6a:c8:7f:a4:24:21:c9:3e:fd:58:58:17:a2:
75:c8:c1:95:b2:cf:a7:fb:c7:a1:ba:c4:61:e0:1c:d0:19:7d:
ec:8a:71:04:8b:9e:a3:a5:1a:28:6d:93:19:72:98:ea:79:69:
f4:17:77:01:19:96:49:66:37:06:12:0f:9d:07:6a:4b:36:c2:
50:97:e1:21:f9:c6:bf:43:dc:0c:fc:d0:26:6b:b7:cb:8a:44:
6f:1f:be:c3:5a:91:fa:27:00:e5:1f:57:86:17:f6:51:f8:0e:
22:37:98:86:8c:1e:2b:cc:00:94:54:37:a9:c0:9d:d4:90:56:
1f:5e:ce:2e:90:b3:4a:a3:3f:6e:81:6b:85:aa:84:5a:a7:56:
41:c2:7f:8f:ea:63:9d:12:60:9a:32:af:03:b8:b2:1d:68:0f:
3c:13:14:2f:dd:89:0d:ff:a6:5d:8c:dd:4d:2a:18:e5:51:e7:
87:c8:5a:e7:91:e0:11:aa:f8:e0:7e:f3:68:0c:ec:16:53:c9:
c6:f4:65:ad:6e:f5:3a:7c:4d:ae:22:4e:7a:51:07:02:06:91:
68:b8:04:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 09:37:20 2025 by rpki-client