Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
File: 4oNEKXdeZVXldCSSKGJUsdqfGQM.mft (raw, json)
Hash identifier: TR3vK1kBRBFt1DzWB8LCQYFwkiaMJvBptUnfnXGOUf0=
Subject key identifier: 1F:B0:47:8C:E1:9F:C9:C5:23:43:68:94:BB:DC:C1:D3:AB:04:94:9E
Authority key identifier: E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03
Certificate issuer: /CN=e2834429775e6555e5742492286254b1da9f1903
Certificate serial: 019648FCB9BC4C3AC725B65CAFFE203515EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
Manifest number: 0DB2
Signing time: Fri 18 Apr 2025 13:00:44 +0000
Manifest this update: Fri 18 Apr 2025 13:00:44 +0000
Manifest next update: Sat 19 Apr 2025 13:00:44 +0000
Files and hashes: 1: 4oNEKXdeZVXldCSSKGJUsdqfGQM.crl (hash: jxHcufNUsEi2hS6WSvBBPYF+/Udmuw3POx1HT2KEPUQ=)
2: ZTmydTpXIXh_aFM6lIMP1nPGi4M.roa (hash: R6dO91YPQTwtwZipE8GfozYF7WvWuk+GMp9DghrSYmY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 13:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:48:fc:b9:bc:4c:3a:c7:25:b6:5c:af:fe:20:35:15:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2834429775e6555e5742492286254b1da9f1903
Validity
Not Before: Apr 18 13:00:44 2025 GMT
Not After : Apr 19 13:00:44 2025 GMT
Subject: CN=1fb0478ce19fc9c523436894bbdcc1d3ab04949e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:74:7c:f6:42:b7:bb:6c:dd:67:ce:cd:ba:7b:
9e:94:01:b5:9b:ad:28:83:6e:c0:de:cb:b0:3a:0a:
50:ab:89:27:a2:e6:3b:49:b1:2b:39:2c:d3:ba:f8:
8e:83:ad:44:c6:39:03:9a:64:35:2e:c1:e3:94:1e:
10:86:ed:4b:ae:3b:5a:33:91:4c:f4:8d:33:92:76:
b9:e0:da:f8:dc:f5:f2:63:06:9f:48:83:e6:62:a8:
63:fa:d8:34:68:d9:5e:f7:e0:33:9f:a6:e0:16:9d:
0c:59:fa:ec:07:bb:f2:9c:ca:a2:e3:e0:65:44:8b:
44:17:8a:ce:8d:95:65:1a:6e:d3:b9:bd:aa:36:93:
02:30:06:bd:b7:30:17:32:31:3e:63:78:6d:af:3c:
29:bd:da:d9:d8:b0:33:dc:17:57:98:a8:42:72:91:
10:40:fe:08:20:78:96:df:68:bf:ff:64:af:b3:94:
de:ad:37:5d:b0:88:75:98:42:47:d5:dd:2d:d6:84:
5b:ab:33:26:08:cf:24:be:68:b7:9d:7d:85:94:33:
7c:b2:f1:87:89:fc:78:b2:08:97:58:e7:d4:95:3f:
16:3f:59:c4:37:47:de:60:9f:3a:2d:9d:09:3d:a7:
29:84:15:b8:c7:5f:18:28:6e:5d:db:f0:29:7e:97:
0e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:B0:47:8C:E1:9F:C9:C5:23:43:68:94:BB:DC:C1:D3:AB:04:94:9E
X509v3 Authority Key Identifier:
keyid:E2:83:44:29:77:5E:65:55:E5:74:24:92:28:62:54:B1:DA:9F:19:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4oNEKXdeZVXldCSSKGJUsdqfGQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/b6468d-10ed-4d48-803c-ea97665c13df/1/4oNEKXdeZVXldCSSKGJUsdqfGQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:90:8d:1b:d0:85:da:c1:ee:7b:c1:2f:62:c5:25:51:a1:c5:
7e:d2:dc:d6:40:d4:7a:84:77:71:ab:c6:41:03:f3:cb:21:20:
e3:f7:48:15:37:84:13:73:d8:d5:25:42:79:12:aa:45:c9:10:
c1:57:1c:26:c7:ce:ad:f9:56:39:1f:cf:3e:80:e6:a2:ec:a3:
c8:84:72:dd:9b:eb:c8:3d:d1:38:8b:d2:53:d3:ef:34:b3:81:
a6:6e:05:69:68:02:89:c6:e2:d8:2f:3a:43:f1:3f:cc:a0:04:
f5:ca:41:d7:2e:2d:c5:ff:27:1d:df:59:56:98:35:40:28:4c:
96:d3:16:4e:58:84:40:03:33:25:4c:86:e1:90:b1:ee:48:e7:
21:2f:95:33:8e:cd:6e:5a:4b:14:7a:11:a8:ec:9e:a6:db:bd:
9b:59:bc:31:6b:87:25:8e:80:f7:4e:1e:de:2d:f7:af:50:31:
c4:68:4a:12:cd:c2:ba:96:07:7a:32:2b:d7:e2:d9:91:10:8c:
b2:ec:6a:0b:06:66:0b:0c:e8:32:87:d1:b6:b4:5a:e9:14:42:
02:15:cb:5f:65:7d:be:cb:ca:e0:97:91:9b:3d:05:42:e2:5f:
21:05:97:fb:4a:97:16:ed:32:14:4d:e6:ed:f0:eb:65:9d:bb:
39:2e:57:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 00:01:30 2025 by rpki-client