Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
File: jrsOsZ53d9cDgAD2wS053tEgQkI.mft (raw, json)
Hash identifier: mghvrb4/Ldl2uwY5U17nCJH16npMkUZyIr6G8fiqn54=
Subject key identifier: 40:7B:9E:73:87:C2:07:20:7C:34:7A:48:B0:B4:87:34:21:7C:C8:AD
Authority key identifier: 8E:BB:0E:B1:9E:77:77:D7:03:80:00:F6:C1:2D:39:DE:D1:20:42:42
Certificate issuer: /CN=8ebb0eb19e7777d7038000f6c12d39ded1204242
Certificate serial: 01963FC2B79B346E9CA69708076701CF858D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
Manifest number: 0B2D
Signing time: Wed 16 Apr 2025 18:00:47 +0000
Manifest this update: Wed 16 Apr 2025 18:00:47 +0000
Manifest next update: Thu 17 Apr 2025 18:00:47 +0000
Files and hashes: 1: 68-2o2gnqeFje-83JI2NL7vcFCs.roa (hash: 5XT1BGaZiWzYIBY9EJMQdD9z2CvFYvirF/G5S8/gceM=)
2: jrsOsZ53d9cDgAD2wS053tEgQkI.crl (hash: XNRY8c6gtafisKaUz/n0PUHZyfHymV6EjWB4YA9Y5AQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:c2:b7:9b:34:6e:9c:a6:97:08:07:67:01:cf:85:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ebb0eb19e7777d7038000f6c12d39ded1204242
Validity
Not Before: Apr 16 18:00:47 2025 GMT
Not After : Apr 17 18:00:47 2025 GMT
Subject: CN=407b9e7387c207207c347a48b0b48734217cc8ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ff:a7:bb:f2:c2:f8:57:df:dc:29:cb:ec:9d:
30:1d:3e:98:ae:1b:1a:fb:19:e2:b0:fe:02:38:81:
65:9b:18:73:72:bc:8c:b9:ea:2d:a8:a8:71:9a:40:
25:e1:7a:14:ce:99:91:e8:9b:57:de:a9:03:ef:24:
e5:95:d3:39:41:13:d9:8f:53:16:1c:ca:cc:b4:35:
3b:19:e3:a2:20:51:63:0b:d7:94:9d:ac:cb:73:d3:
72:38:34:eb:82:df:ca:9b:a9:a9:4b:de:99:2b:c1:
55:36:27:94:c7:4d:6c:64:9d:63:cd:fb:37:b0:18:
e6:42:6e:db:fc:1f:ab:98:c2:b3:8f:3f:72:ce:6f:
05:4c:4c:32:ce:27:70:a2:fd:fd:7c:4a:c7:f5:89:
f8:2c:8e:c1:c9:39:0c:c8:14:ee:97:16:96:9a:d1:
e9:1f:23:16:77:31:b6:1d:e2:22:6c:33:87:54:33:
7b:be:c2:a1:53:8c:5d:b3:97:24:4d:19:be:89:4a:
9d:6e:fc:8e:69:45:80:81:0b:c9:84:98:8e:64:75:
24:67:73:8c:a2:18:ab:a3:71:0e:27:5e:db:55:34:
20:28:76:e3:0d:1f:35:35:22:cc:bd:bd:43:5f:58:
6c:f7:51:73:92:68:8c:fb:d8:99:bf:03:62:93:9e:
f7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:7B:9E:73:87:C2:07:20:7C:34:7A:48:B0:B4:87:34:21:7C:C8:AD
X509v3 Authority Key Identifier:
keyid:8E:BB:0E:B1:9E:77:77:D7:03:80:00:F6:C1:2D:39:DE:D1:20:42:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:7b:e9:c5:5d:04:d2:6d:21:f5:2f:43:a8:2f:a7:c2:86:2b:
2a:ec:f2:a8:d4:07:d1:06:0f:fe:56:86:cd:8c:7a:64:95:9a:
24:79:6e:92:3c:15:f4:44:a4:cf:af:9c:a4:02:d8:69:11:2b:
66:d3:80:37:90:fa:b3:ce:d6:25:49:e6:7d:2f:1a:db:11:d5:
f0:b4:f7:c9:5e:c9:22:c2:53:89:3f:47:05:5d:78:01:ae:8e:
a3:15:c8:ad:6c:f5:92:e9:a0:6c:79:d6:e0:70:20:18:28:e9:
46:bb:c7:75:4d:3f:31:15:85:06:6f:ec:bc:a0:19:61:41:3b:
74:ea:7d:2c:3d:f7:0f:e2:ec:08:15:27:b0:97:93:a8:fc:0d:
54:2b:a7:88:d9:88:71:ee:75:20:ae:be:58:71:b1:b3:8e:72:
c2:63:65:83:29:fa:ea:e4:6d:38:41:8e:5e:dc:fb:c6:17:80:
14:45:a1:ac:79:92:1e:80:0c:be:4f:5c:6e:a1:92:9e:2e:e8:
d2:ae:c6:5f:61:7b:bc:62:25:c3:e4:25:09:bf:25:3e:af:ce:
1d:28:a0:2b:42:92:e9:49:2d:c2:29:2b:7c:2e:e8:dc:df:e6:
c2:a3:c7:ec:e0:b9:34:aa:e5:f0:e8:f4:3f:57:92:d5:32:10:
e4:09:52:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:39:37 2025 by rpki-client