Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft
File: r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft (raw, json)
Hash identifier: Az0eVfTkA4U88xLxCu0kP0BVLBngJeMXFuMbbjGY4sE=
Subject key identifier: 74:6A:87:56:17:33:9C:66:C6:A8:CF:ED:A6:44:0A:02:01:98:BE:92
Authority key identifier: AF:78:2D:AE:3D:40:CA:F2:22:32:62:54:1C:40:54:E6:29:45:D9:33
Certificate issuer: /CN=af782dae3d40caf2223262541c4054e62945d933
Certificate serial: 01965500E1D847117B5F1D5289A6AA3B5881
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3gtrj1AyvIiMmJUHEBU5ilF2TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft
Manifest number: 14FE
Signing time: Sun 20 Apr 2025 21:00:43 +0000
Manifest this update: Sun 20 Apr 2025 21:00:43 +0000
Manifest next update: Mon 21 Apr 2025 21:00:43 +0000
Files and hashes: 1: r3gtrj1AyvIiMmJUHEBU5ilF2TM.crl (hash: ULAHnCD9crshiUZUVBFVlUj+HKggK3GyX7ueE9tgoWA=)
2: zwiEAg55TtHyIaM_PRVFnX4DSAo.roa (hash: ylKaMThBpY1ZvZheIftHUUCXqnEHukLo3wFRWG0DpZk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft
rsync://rpki.ripe.net/repository/DEFAULT/r3gtrj1AyvIiMmJUHEBU5ilF2TM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 21:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:00:e1:d8:47:11:7b:5f:1d:52:89:a6:aa:3b:58:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af782dae3d40caf2223262541c4054e62945d933
Validity
Not Before: Apr 20 21:00:43 2025 GMT
Not After : Apr 21 21:00:43 2025 GMT
Subject: CN=746a875617339c66c6a8cfeda6440a020198be92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f5:d3:e2:24:34:26:a9:75:76:8a:62:d5:ed:
97:02:06:7b:b0:00:17:37:58:b3:84:a9:a0:15:6f:
29:35:86:d4:10:ea:f4:1b:9f:e2:25:55:f5:56:e3:
96:6d:37:fd:c5:6f:03:75:95:3f:45:69:f7:34:82:
f7:9e:13:dc:b5:9e:e8:d9:71:cc:e6:4e:c1:b0:a2:
73:e6:1e:9f:35:d2:e3:5b:db:a9:ce:85:f2:7f:b6:
82:57:8d:64:b3:8f:f0:ed:12:5e:99:b6:04:ac:47:
6f:71:74:c5:96:39:ef:b6:a1:24:90:77:99:e3:71:
f7:8b:2b:c2:6e:3c:ca:ea:2d:f4:fd:8e:05:37:f2:
80:b8:83:aa:fa:79:9f:09:19:d5:26:f8:52:7c:f1:
bf:a2:0b:24:90:34:40:89:af:40:3d:35:e2:1d:66:
94:2a:3b:56:75:34:91:be:b5:3e:38:a8:55:9e:4b:
95:81:a5:fd:fd:fd:6c:ec:9e:bb:30:3e:69:f2:59:
cd:3f:02:30:08:09:49:a2:87:05:a3:76:31:db:49:
7f:5e:f2:31:6f:c7:4d:78:1a:33:79:b2:a1:25:ff:
ab:e7:b0:b3:62:7b:28:60:8d:51:cb:cf:3b:68:93:
8f:d8:20:59:af:5b:3d:4f:d9:7c:e3:e1:5b:3c:6b:
29:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:6A:87:56:17:33:9C:66:C6:A8:CF:ED:A6:44:0A:02:01:98:BE:92
X509v3 Authority Key Identifier:
keyid:AF:78:2D:AE:3D:40:CA:F2:22:32:62:54:1C:40:54:E6:29:45:D9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3gtrj1AyvIiMmJUHEBU5ilF2TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/dee833-fe5b-4c10-bbec-f0125d02e262/1/r3gtrj1AyvIiMmJUHEBU5ilF2TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:e6:b2:54:65:fd:30:38:07:30:10:03:a5:ec:29:49:80:05:
28:03:50:62:54:aa:6a:fa:03:44:ad:15:4e:53:82:f8:e7:6a:
4e:1c:16:42:d8:19:b6:40:29:50:75:4b:72:72:79:a7:3b:68:
f1:3c:bc:11:52:86:ee:34:47:8a:0e:48:32:bf:94:89:84:d4:
c2:0a:c1:45:56:51:22:e4:13:2e:5e:fd:55:69:77:1d:1d:33:
d1:2d:41:df:dc:f4:bb:a8:76:48:9f:54:ab:c0:29:e5:5c:ac:
b1:06:7f:2e:30:3f:44:7f:37:ad:6c:12:d1:17:7b:fe:b1:89:
bf:ff:a2:03:d1:0c:1f:ae:d7:ac:3b:b7:c9:d1:d5:90:88:11:
82:fc:78:66:97:86:76:45:e7:5c:07:c7:30:65:a3:74:ed:5d:
85:83:d7:6f:ce:f7:ae:dd:8f:e9:04:b0:f1:48:19:86:3e:66:
7f:21:ed:5b:c5:ff:60:65:95:28:e6:09:56:e2:f9:e2:fc:46:
16:30:ce:73:df:80:a4:f7:70:32:de:2d:6d:b1:cf:35:6e:78:
82:b6:f7:21:94:3f:5a:f7:2c:e8:9a:80:50:c9:18:8b:ab:a3:
a4:1d:1d:3a:71:29:04:1f:8a:76:36:b8:93:d5:41:b3:cb:b1:
a8:2f:c4:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 06:48:24 2025 by rpki-client