Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
File: s7a21-XdDDKPbOr36enA0cuMHSI.mft (raw, json)
Hash identifier: J95QsdQjEjY8Jt9KfzuVxx7xw7hzBzKTfhpqCpXgiOM=
Subject key identifier: C3:A3:56:C4:2C:2D:47:8A:E2:F9:5B:AA:66:11:B3:C0:11:82:AD:51
Authority key identifier: B3:B6:B6:D7:E5:DD:0C:32:8F:6C:EA:F7:E9:E9:C0:D1:CB:8C:1D:22
Certificate issuer: /CN=b3b6b6d7e5dd0c328f6ceaf7e9e9c0d1cb8c1d22
Certificate serial: 01964F6D94523A2316EF799B2D1BF219AF9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
Manifest number: 12BE
Signing time: Sat 19 Apr 2025 19:01:43 +0000
Manifest this update: Sat 19 Apr 2025 19:01:43 +0000
Manifest next update: Sun 20 Apr 2025 19:01:43 +0000
Files and hashes: 1: hzoYOWaigOBhVgvLojtyU6Dx7N4.roa (hash: T/q+Lugm+i1exm5XgQ+QByz6sPtwXurIWQU3uySV9uU=)
2: s7a21-XdDDKPbOr36enA0cuMHSI.crl (hash: wU97Eavtpku8MsGVPonSJDIn+cyBg+l3sfhDPIFSHuY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:6d:94:52:3a:23:16:ef:79:9b:2d:1b:f2:19:af:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b6b6d7e5dd0c328f6ceaf7e9e9c0d1cb8c1d22
Validity
Not Before: Apr 19 19:01:43 2025 GMT
Not After : Apr 20 19:01:43 2025 GMT
Subject: CN=c3a356c42c2d478ae2f95baa6611b3c01182ad51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:04:6f:60:0e:58:d5:95:a4:d1:4d:c6:d5:cb:
a1:e1:a1:62:8f:54:ea:91:d4:fa:dd:eb:7b:04:3e:
2e:52:4a:82:ca:80:74:38:c6:f6:cd:12:ed:ac:ad:
53:96:42:48:62:09:c2:35:32:87:70:c4:50:ba:1e:
4b:8a:77:a5:07:8a:60:5a:b3:e1:27:5d:37:b9:87:
57:fc:23:7a:c4:21:21:ed:c4:52:59:e5:4a:42:c0:
b8:91:2c:09:ce:df:8d:7e:10:2a:b3:71:92:08:d8:
7d:c9:4b:21:d7:ea:d2:68:15:a4:af:0e:c1:ec:9d:
a3:d7:1f:fc:29:3b:1b:a2:64:c7:64:a5:42:f5:23:
2d:2a:da:85:ec:af:e3:59:53:1b:98:de:44:ad:7a:
c7:e8:62:9f:f1:02:ec:bf:12:c4:06:0e:6e:94:34:
f8:14:ad:5a:85:ab:dc:fb:59:b0:98:b6:0f:e9:1e:
3e:b9:08:24:67:c5:61:b8:f9:d4:05:a5:09:c6:a5:
20:aa:86:2d:60:9c:3a:43:05:df:1a:78:1a:a7:4f:
b3:77:aa:50:18:55:40:89:d4:b1:ac:66:8d:f2:48:
15:c2:d8:32:13:3d:60:65:a7:ea:b1:1a:d8:e2:a1:
f1:29:0f:e7:ab:b8:8b:41:11:4a:e4:0c:7b:d9:56:
0b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:A3:56:C4:2C:2D:47:8A:E2:F9:5B:AA:66:11:B3:C0:11:82:AD:51
X509v3 Authority Key Identifier:
keyid:B3:B6:B6:D7:E5:DD:0C:32:8F:6C:EA:F7:E9:E9:C0:D1:CB:8C:1D:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7a21-XdDDKPbOr36enA0cuMHSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2d7946-db8b-4a57-a70b-2071546b70f9/1/s7a21-XdDDKPbOr36enA0cuMHSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:5c:ca:8c:f1:59:6b:a4:7e:f8:f7:7a:50:00:af:e4:7b:c2:
3b:2f:4b:d3:e6:f4:3d:ab:b4:e7:44:24:ff:57:36:0d:59:25:
ee:b9:f6:94:e7:3e:d1:24:cb:f7:61:58:bf:06:b8:9c:fb:e7:
c6:38:c3:2a:e9:9a:fe:ba:d6:19:fe:d9:d3:e7:3d:61:d7:cb:
9d:f5:a3:eb:6c:eb:93:e8:59:dc:ac:60:d1:30:57:ec:28:91:
03:df:f8:86:27:d4:e5:c4:94:14:fe:3a:95:0b:de:f0:22:95:
f4:38:68:22:f8:08:a7:42:6b:50:c1:fa:d7:c6:89:1f:b1:b4:
e2:fa:89:69:e5:96:58:e0:f2:2d:91:61:38:2e:1e:6e:fb:12:
d8:99:cb:d6:a6:7f:ce:5e:19:5a:ba:d0:e7:a7:a6:8c:3b:ba:
65:47:b0:3b:61:21:af:f5:e8:ef:ea:94:f5:a7:36:a6:ab:89:
d6:be:d4:a5:ed:cb:44:b7:6b:9a:58:34:d0:83:bc:2d:ca:d3:
78:6b:72:af:6e:c1:66:7d:f6:c6:6c:45:55:6b:6f:04:19:31:
82:a3:62:65:53:9c:66:fb:74:11:a5:2e:bb:2e:2c:d4:28:92:
ba:84:8f:34:d4:da:6c:5e:db:4f:a6:62:22:0a:e9:df:cd:b7:
13:aa:bc:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:00:55 2025 by rpki-client