Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
File: D6j7U5miekMK5yfFMs0iSZnohk8.mft (raw, json)
Hash identifier: o4XaOtrw0G3ljmFnr15gIqhLBhGs0yYssmgSBZLVfpQ=
Subject key identifier: AA:A3:7F:8D:6B:95:C2:54:7B:FB:A9:1F:22:0D:58:22:F3:98:90:18
Authority key identifier: 0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
Certificate issuer: /CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Certificate serial: 01963952C98C9E2B0A44DCE1B6A039BED23E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
Manifest number: 0179
Signing time: Tue 15 Apr 2025 12:00:48 +0000
Manifest this update: Tue 15 Apr 2025 12:00:48 +0000
Manifest next update: Wed 16 Apr 2025 12:00:48 +0000
Files and hashes: 1: 5jBhyCclhjBWCSh1O-0WT6aKzvs.roa (hash: MRjgNDdW46vQb+SgK5+muMmigtF72q9wmhV3HqxuIuc=)
2: D6j7U5miekMK5yfFMs0iSZnohk8.crl (hash: wO9gC4OikVAvoPNwrmbjv0BfPxf6uCTKvq9kb6CNSgM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:39:52:c9:8c:9e:2b:0a:44:dc:e1:b6:a0:39:be:d2:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Validity
Not Before: Apr 15 12:00:48 2025 GMT
Not After : Apr 16 12:00:48 2025 GMT
Subject: CN=aaa37f8d6b95c2547bfba91f220d5822f3989018
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d0:f8:aa:08:bb:bc:d5:d7:61:11:da:27:a1:
10:cf:89:ef:86:b3:28:7a:96:36:68:d9:97:8f:0d:
2a:b8:ec:42:ef:56:f9:94:e0:81:44:58:06:68:ce:
19:f9:94:08:36:21:a2:bb:9d:fd:d0:a9:a6:90:d0:
0c:59:fd:57:f8:e0:41:ab:7b:f4:e1:7c:54:de:fb:
09:84:21:7e:11:72:34:15:5d:df:cc:c8:db:9a:1c:
7f:d2:5a:3e:2b:90:f2:4b:f6:5f:75:54:7f:fb:1e:
d1:b0:28:f0:2a:ce:6c:1b:32:f6:32:2a:d5:ac:15:
ce:95:a3:05:7c:3f:4f:da:7e:2d:26:7d:05:59:76:
d6:20:6b:53:f7:78:3c:df:fe:28:94:16:42:5a:58:
8d:2c:d2:b2:f3:1c:fc:c4:e8:02:06:7f:7e:3c:df:
c7:ea:4e:f8:7b:ed:da:db:71:c8:67:ee:b0:69:46:
1a:ca:ed:eb:35:df:e3:0e:97:fc:23:b4:9f:94:0d:
71:91:73:29:c1:c3:71:b1:50:8a:be:bc:f4:af:cc:
fd:52:7d:be:7a:09:4b:98:af:e3:4b:bd:6c:78:a9:
57:de:f6:04:2c:a7:77:62:6c:86:04:9b:03:cb:43:
73:ef:cc:28:66:95:78:c7:f4:39:1d:74:c9:6e:39:
ea:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:A3:7F:8D:6B:95:C2:54:7B:FB:A9:1F:22:0D:58:22:F3:98:90:18
X509v3 Authority Key Identifier:
keyid:0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:29:38:77:fd:ca:26:2d:ad:57:9f:3e:34:48:1a:12:c4:77:
0f:67:f2:4c:ac:ce:c1:57:2c:1b:ce:f9:cb:3c:88:bb:f0:9c:
e9:2a:2f:af:84:70:a0:77:66:e9:98:94:dd:4f:06:5d:ea:65:
03:7f:52:cb:0c:64:f2:a2:92:fd:b3:a9:05:c2:c7:81:3e:32:
3f:71:13:b6:47:67:8e:72:0e:a1:e6:f2:e3:77:b5:8c:4e:7f:
e8:3d:a9:1c:47:f3:f4:82:a6:99:60:15:88:54:a0:86:b5:e9:
9f:7c:5b:f6:22:1f:79:f4:f7:f2:17:36:5f:c4:ab:8d:b0:72:
c6:1b:36:14:ff:7a:be:8f:79:61:55:64:bf:3d:1d:99:8c:9b:
a1:72:17:63:98:34:4b:b0:86:06:92:39:fa:24:e0:df:91:c5:
23:6a:c0:b3:11:76:54:e6:83:d0:ad:7c:21:06:16:49:dd:ea:
88:7f:fa:0c:df:2c:26:b1:74:f2:25:76:8d:a2:5c:64:ea:43:
d8:b2:00:4a:e1:b3:7a:e0:1a:1b:db:a0:bb:23:93:3f:8d:1f:
0c:4e:2d:83:44:d5:ca:87:78:d0:d9:f0:9c:eb:51:0e:c9:0a:
df:5a:da:3f:8c:b1:fb:cc:b5:93:c1:9d:27:d2:97:e3:22:dc:
56:6e:9c:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 14:03:12 2025 by rpki-client