Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
File: CtBt0nvZOjgNpMddGovwdoKP1ko.mft (raw, json)
Hash identifier: 4M2hfEUTsqvZpD6zxjde5df6w/gpvhh2fjmv9ozbGQI=
Subject key identifier: DD:94:34:C8:B2:7B:1A:FF:33:F9:BC:41:8D:F3:A6:C6:FC:EF:B0:DD
Authority key identifier: 0A:D0:6D:D2:7B:D9:3A:38:0D:A4:C7:5D:1A:8B:F0:76:82:8F:D6:4A
Certificate issuer: /CN=0ad06dd27bd93a380da4c75d1a8bf076828fd64a
Certificate serial: 01964CD951BBC728B7383EF8B88E01580C90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
Manifest number: 07F2
Signing time: Sat 19 Apr 2025 07:00:32 +0000
Manifest this update: Sat 19 Apr 2025 07:00:32 +0000
Manifest next update: Sun 20 Apr 2025 07:00:32 +0000
Files and hashes: 1: 24PmMpD-bHbUV8mxF_RlzuSRjLU.roa (hash: ohLVMvfqoqKO1xPsU0QfK7dKJZtv+ZBmQ14II/YiXms=)
2: CtBt0nvZOjgNpMddGovwdoKP1ko.crl (hash: DiCJtMjUSDkqoUr6OHkIHTdlC7LWoNrzm/8Lr/8VNfo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:d9:51:bb:c7:28:b7:38:3e:f8:b8:8e:01:58:0c:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ad06dd27bd93a380da4c75d1a8bf076828fd64a
Validity
Not Before: Apr 19 07:00:32 2025 GMT
Not After : Apr 20 07:00:32 2025 GMT
Subject: CN=dd9434c8b27b1aff33f9bc418df3a6c6fcefb0dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:44:87:ee:e6:14:d4:24:55:cb:12:e0:6b:85:
6c:2e:25:d4:0b:87:84:62:5e:75:a7:68:0e:ec:5d:
d4:c0:95:ab:77:6c:77:45:65:81:55:7c:ec:82:6d:
b5:2f:30:ee:11:b9:88:b5:92:11:3e:2c:c1:fd:06:
5e:bd:49:5a:28:51:cb:89:9f:02:37:27:b6:73:9a:
55:95:a7:8e:c2:5c:6f:55:af:cb:31:86:c2:07:1f:
17:ef:8c:74:12:a4:5d:a6:c1:ca:e4:25:97:05:b8:
03:57:07:cb:ed:7f:33:e8:61:5a:92:9e:f7:f6:79:
3b:e2:fc:4a:66:9b:8a:7d:3c:a9:0b:58:e9:96:cc:
80:1b:5b:83:1e:71:64:23:68:46:4d:44:26:52:aa:
bf:e5:f9:db:dd:3d:62:ef:5c:ee:b7:78:67:17:ef:
de:78:46:f4:4d:4e:08:80:89:3e:d0:75:af:56:35:
d4:a2:6a:1f:0a:54:5a:a0:fd:b0:ed:2a:ff:4d:08:
43:ed:26:35:27:9b:e0:ce:42:20:07:8c:eb:1a:ce:
6e:98:56:25:ae:64:52:b1:5c:c6:1b:77:23:d2:a7:
d8:ef:c8:eb:92:99:27:14:90:f6:e1:3b:13:93:a8:
41:04:03:16:c1:0d:49:78:ee:22:3a:17:92:54:a0:
f4:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:94:34:C8:B2:7B:1A:FF:33:F9:BC:41:8D:F3:A6:C6:FC:EF:B0:DD
X509v3 Authority Key Identifier:
keyid:0A:D0:6D:D2:7B:D9:3A:38:0D:A4:C7:5D:1A:8B:F0:76:82:8F:D6:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:ff:7f:0a:d2:58:f3:b5:d4:80:50:d7:f5:40:c1:fa:7b:59:
87:34:51:44:a9:7c:0b:b1:be:33:8b:9c:e9:d3:a2:47:ee:96:
34:64:c9:4c:e4:03:ff:32:fa:d2:7a:00:b8:b2:5c:df:51:79:
77:e0:4f:47:da:6e:94:61:77:fa:a5:b1:b9:8d:fb:06:b0:c1:
67:e5:11:44:d4:fa:78:6e:c9:47:30:dd:6a:d7:bd:2f:8f:c6:
17:ef:12:50:41:ad:37:7d:24:01:8b:60:dd:e8:4b:01:a8:0d:
f0:93:46:7e:ee:cf:b5:ea:e2:83:a6:80:6c:4c:c0:41:69:4d:
fb:53:a3:fb:e9:18:52:1a:fc:b4:75:94:7f:c0:78:12:45:ac:
65:ca:9f:2b:de:9e:36:ec:c3:df:b2:d9:2d:4d:42:c5:a2:62:
49:8c:02:fb:0a:37:3f:c7:2f:c9:67:4d:1c:f6:e5:b4:e5:22:
b3:52:b3:47:a5:97:19:7f:3c:5b:64:75:03:02:7c:37:0f:29:
d4:63:4f:36:3c:a4:a2:84:07:f1:16:05:32:b7:06:22:92:41:
48:92:87:95:a4:ad:47:de:38:c2:03:ad:5d:78:dc:67:0c:5b:
59:4d:c7:9a:24:4f:11:a0:f9:ad:7a:7b:be:9b:56:cd:eb:ae:
86:86:c6:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:51:59 2025 by rpki-client