Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
File: I--d4hUq7xsqYqMfsvNehZCzrYQ.mft (raw, json)
Hash identifier: edAtEkQEMqt2JfsTdnBJD2PgmfIJJ4FZfQnPjIQP2GM=
Subject key identifier: C0:DC:C2:91:9D:02:8A:5C:48:D9:42:F2:96:39:A5:FF:D0:96:44:58
Authority key identifier: 23:EF:9D:E2:15:2A:EF:1B:2A:62:A3:1F:B2:F3:5E:85:90:B3:AD:84
Certificate issuer: /CN=23ef9de2152aef1b2a62a31fb2f35e8590b3ad84
Certificate serial: 0196507EFEFEB89768F4657F7F4D0B3F7833
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
Manifest number: 054C
Signing time: Sun 20 Apr 2025 00:00:22 +0000
Manifest this update: Sun 20 Apr 2025 00:00:22 +0000
Manifest next update: Mon 21 Apr 2025 00:00:22 +0000
Files and hashes: 1: H78piGDM9XMhN9ttfDQLjflrGw0.roa (hash: A/U1yMrz8Q8LYte4PciQEyU7L3zVOHn5gKWczBZWelo=)
2: I--d4hUq7xsqYqMfsvNehZCzrYQ.crl (hash: 40KImh4QcKUneJR1uHZEMI31bi1cpbI/tTJtvMMx/+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:7e:fe:fe:b8:97:68:f4:65:7f:7f:4d:0b:3f:78:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23ef9de2152aef1b2a62a31fb2f35e8590b3ad84
Validity
Not Before: Apr 20 00:00:22 2025 GMT
Not After : Apr 21 00:00:22 2025 GMT
Subject: CN=c0dcc2919d028a5c48d942f29639a5ffd0964458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5a:7c:c4:0a:8e:df:f7:31:f0:e4:f8:41:a6:
5e:eb:2e:8a:39:53:e3:71:b7:88:07:78:6c:a7:88:
1a:43:3a:32:7a:49:6a:82:45:a5:48:39:e3:7e:cf:
6d:8a:ac:09:9f:fa:71:2c:c9:83:c0:cb:a3:52:98:
eb:40:b8:ae:9b:95:d2:85:df:06:e1:e5:4e:26:0a:
3e:68:62:dc:1f:2c:dc:6f:2c:d9:23:29:50:9d:39:
97:f7:6a:c4:91:d7:91:08:dc:77:ca:ac:fb:64:73:
84:94:fb:39:de:fd:15:af:d4:75:17:a1:3a:98:0a:
35:b8:b4:d7:80:03:a6:3d:6d:be:7c:22:7e:95:fa:
b9:bd:bb:27:61:5a:02:38:10:79:f0:00:83:69:49:
20:d4:5b:43:1d:34:c5:cd:ae:1e:9e:3e:6b:12:2d:
92:13:2e:39:02:7f:ce:eb:0c:1f:66:5b:cb:ca:17:
a9:43:33:0f:64:25:b2:50:4c:ad:d3:4e:2c:e5:63:
9d:29:17:ae:73:a8:f7:61:8f:24:6c:c6:84:cb:3e:
d8:2a:96:df:a9:06:b2:36:4b:02:c7:54:de:b1:03:
be:90:a1:ac:1d:4b:47:f0:f4:c4:ba:17:41:e8:45:
7c:17:4a:f3:57:ab:05:f5:67:00:15:ce:c8:3e:7e:
16:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:DC:C2:91:9D:02:8A:5C:48:D9:42:F2:96:39:A5:FF:D0:96:44:58
X509v3 Authority Key Identifier:
keyid:23:EF:9D:E2:15:2A:EF:1B:2A:62:A3:1F:B2:F3:5E:85:90:B3:AD:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I--d4hUq7xsqYqMfsvNehZCzrYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/c3f3cc-c56b-4d35-b77f-3bc6eb0a347f/1/I--d4hUq7xsqYqMfsvNehZCzrYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:d9:92:fa:89:f5:a2:96:2a:5d:69:6b:9b:a4:a6:34:61:ad:
a6:06:43:5a:42:91:3a:67:89:77:01:c4:7a:db:6c:d2:ad:5b:
23:4e:cd:11:4b:9b:f7:ed:7c:6b:83:33:e3:c5:3e:53:25:2a:
79:0f:8a:71:4d:bc:c0:e5:24:ff:fc:cf:00:76:93:75:b7:77:
b1:00:ac:0b:1f:f0:bd:56:9c:9e:ee:6c:8d:c3:09:7e:f2:1e:
3a:86:5c:b3:7c:d9:e3:0c:6f:ef:66:62:8c:b2:ac:34:9d:c1:
43:cd:d1:e1:81:14:36:13:9e:67:2a:d1:32:da:cb:a4:fa:25:
63:44:26:95:23:4c:60:f5:7d:7d:70:99:f5:18:d3:e9:94:26:
1f:ea:53:ad:9d:01:ac:b2:e6:f1:cf:ec:f7:f6:79:e1:15:68:
8c:8b:8c:ae:b1:67:64:c8:34:8b:4b:ad:58:a1:67:0a:e3:2f:
a6:58:4a:e4:58:96:d7:e5:aa:c4:29:77:a6:a9:6b:00:cb:50:
d4:6d:5c:66:1a:49:41:5f:d2:2b:a7:a5:ed:5a:76:77:f5:7c:
8f:53:c8:d3:01:02:3a:13:7b:94:9b:0d:56:a9:cd:b8:5b:3a:
03:21:2c:22:f0:e4:c5:f0:d1:e6:2e:e8:ef:98:7f:7e:44:89:
25:08:44:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:01:01 2025 by rpki-client