Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
File: t72OrhZp3rOj-kGGSR4FyzLOCSo.mft (raw, json)
Hash identifier: jbFXmW+uvFEgNXX4aVCStzuOxoqDayeYUaL+ltn2eWs=
Subject key identifier: D0:2B:ED:1D:E9:A0:5A:1A:C1:33:97:68:C6:37:41:5D:DC:00:F0:97
Authority key identifier: B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
Certificate issuer: /CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Certificate serial: 0196553773CB3F086558E355F68966F911A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
Manifest number: 0FBC
Signing time: Sun 20 Apr 2025 22:00:19 +0000
Manifest this update: Sun 20 Apr 2025 22:00:19 +0000
Manifest next update: Mon 21 Apr 2025 22:00:19 +0000
Files and hashes: 1: 0CceuujOUN7fI6SJWiU4I3JvZeo.roa (hash: ReNIag9nA9bjr82rfcj5JjzPGdjpj3RK7GRwiAamY6Q=)
2: t72OrhZp3rOj-kGGSR4FyzLOCSo.crl (hash: kAtbScHNQ79l/Gu1hRWcapsiA+8u0MG3AOiBqxNIwuo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:73:cb:3f:08:65:58:e3:55:f6:89:66:f9:11:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7bd8eae1669deb3a3fa4186491e05cb32ce092a
Validity
Not Before: Apr 20 22:00:19 2025 GMT
Not After : Apr 21 22:00:19 2025 GMT
Subject: CN=d02bed1de9a05a1ac1339768c637415ddc00f097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:c4:1f:a0:67:a7:8b:42:2e:84:69:a3:f1:ec:
8d:72:62:1a:a4:5e:f7:5a:4f:75:85:ba:2f:3c:e7:
05:34:66:2d:c0:1f:57:65:a7:97:52:2e:37:f0:12:
c2:aa:55:52:48:5a:73:56:c2:59:51:39:44:ce:f4:
a4:71:0f:95:0b:67:7e:2a:28:cd:90:39:cc:2d:23:
69:24:d0:42:f5:7c:e0:67:49:8d:80:e4:f1:a1:84:
3c:ea:04:17:c4:8c:69:b2:3d:3a:d4:ae:d2:78:10:
92:36:5f:2f:91:ba:7f:cb:5f:ed:0e:18:5e:80:da:
59:5e:79:8d:be:26:21:32:2e:7f:16:ce:59:e3:f0:
b6:14:bc:a1:01:b7:44:64:b6:2b:b8:c9:01:e3:65:
9d:35:9a:fc:00:51:54:50:67:64:31:54:80:c3:d6:
ed:d9:e8:92:a0:d6:c0:bb:34:34:ff:41:d3:f8:89:
82:33:55:89:29:9b:12:23:60:e5:48:25:b6:c3:f5:
63:07:6d:2d:e7:63:27:c5:77:e2:12:fc:7f:c9:36:
a0:a2:53:95:3a:2a:a8:2e:25:0a:d2:45:83:c6:20:
74:3b:8b:ac:7b:0a:f3:98:4c:f4:98:22:b9:1f:ed:
6d:f1:9f:28:04:71:4d:1a:c0:e1:14:81:9b:98:92:
df:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:2B:ED:1D:E9:A0:5A:1A:C1:33:97:68:C6:37:41:5D:DC:00:F0:97
X509v3 Authority Key Identifier:
keyid:B7:BD:8E:AE:16:69:DE:B3:A3:FA:41:86:49:1E:05:CB:32:CE:09:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t72OrhZp3rOj-kGGSR4FyzLOCSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/b0bdbd-801c-4b0b-9fbe-ae15d507590e/1/t72OrhZp3rOj-kGGSR4FyzLOCSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:d0:c7:e2:20:d4:2d:28:55:cc:17:ec:97:70:46:41:01:a7:
af:f7:f5:21:a5:3f:c4:57:f8:27:ff:d9:d7:91:6e:b0:a9:42:
48:22:0a:da:dd:b7:ac:2e:f0:df:a3:98:f0:f8:64:82:c1:58:
d0:15:6f:e6:08:aa:04:59:41:dc:12:24:3d:55:4b:38:38:b2:
69:0d:cb:9a:4b:d5:22:18:0c:c1:d2:fa:f5:2f:01:dc:a5:0d:
8d:1b:96:e0:d2:03:25:ca:b2:37:ea:18:1e:c6:74:2e:9b:56:
35:f6:0f:15:d8:a5:ec:70:4b:72:90:e4:28:cb:de:a9:34:9a:
5f:b1:9c:1e:5b:9e:f0:29:19:8a:45:21:7e:a8:90:9c:14:89:
50:f3:df:36:77:51:5e:c6:9d:3e:b5:67:33:a1:be:d2:b3:e3:
48:61:75:6e:85:33:7d:7e:33:e4:fa:2f:3b:39:26:6a:a8:0f:
d8:27:ce:59:5f:b2:16:20:81:ac:23:a7:25:85:6b:58:8a:d7:
3b:02:d6:d4:81:73:8e:8d:ad:92:63:a8:ae:b1:05:39:ac:30:
89:c5:ac:24:fd:41:87:04:76:fc:b2:08:59:ff:c9:d6:af:b4:
13:0e:c2:33:cc:01:8f:57:51:d6:9b:b2:16:e8:d0:60:7f:3c:
e9:8a:c8:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:04:06 2025 by rpki-client