Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
File: 5iNO09jKltxRjTXB58kr6_z2zk0.mft (raw, json)
Hash identifier: pQppbS1ww4yBAC3xhn55sbMdXbGYVhjYd2sYdgawGg4=
Subject key identifier: 80:8F:45:A8:C6:E1:48:DE:AA:8D:8C:E1:90:26:18:CC:32:10:14:4A
Authority key identifier: E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D
Certificate issuer: /CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d
Certificate serial: 019658A639C2EE1AAE79D8803E2223DB9F3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
Manifest number: 148F
Signing time: Mon 21 Apr 2025 14:00:10 +0000
Manifest this update: Mon 21 Apr 2025 14:00:10 +0000
Manifest next update: Tue 22 Apr 2025 14:00:10 +0000
Files and hashes: 1: 5iNO09jKltxRjTXB58kr6_z2zk0.crl (hash: 04RQmj0HQOQqvbFhU4zO8EBAlEmLk/+JRgULMfGO+9w=)
2: 9wh4IjR2WdijxIEialrBfGScnoA.roa (hash: aGpT2hqWZX/M5kbSljEdFZvRHYfWgQ/Qc0ertXxiLJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:a6:39:c2:ee:1a:ae:79:d8:80:3e:22:23:db:9f:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d
Validity
Not Before: Apr 21 14:00:10 2025 GMT
Not After : Apr 22 14:00:10 2025 GMT
Subject: CN=808f45a8c6e148deaa8d8ce1902618cc3210144a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ce:a2:b0:ba:c2:85:ae:73:37:aa:56:89:28:
b0:4f:73:d4:2a:e2:6e:f2:e4:02:2d:0a:19:0e:0a:
ec:7e:cf:43:44:36:d8:ca:f0:0b:37:c4:d0:ba:30:
cb:57:dd:46:77:83:e0:71:fa:f8:66:a5:9a:0e:f3:
d3:0c:d6:e7:a2:b5:69:1e:5a:fa:63:6c:85:31:e1:
d9:60:93:aa:79:b1:90:7c:de:fb:10:68:12:0e:c2:
fd:ee:16:3e:59:37:62:a7:f4:f1:1a:20:ea:1a:41:
95:84:42:d3:ac:5e:d6:6e:c2:e3:d0:d8:03:e3:6a:
8f:fb:13:19:eb:07:e9:48:80:23:ba:29:de:80:23:
dd:05:d1:e9:c9:c6:e4:b5:fc:9f:05:58:aa:5d:03:
2d:95:4f:0b:ab:ce:20:b8:ab:71:81:67:17:06:e5:
80:ab:01:8c:f7:80:0c:bb:d3:6a:b1:49:cc:80:56:
35:f4:77:f4:79:38:cc:2e:e5:c5:35:e6:37:6f:f7:
55:5b:9e:c1:c9:f9:86:11:1d:71:f9:af:4b:18:5d:
c9:b5:00:b3:ce:23:f2:85:c8:d5:61:19:ad:44:e7:
6e:97:17:76:fc:67:e5:bf:3f:89:1f:f1:82:77:22:
dc:e1:e2:67:dd:c0:39:fe:98:5c:e6:eb:a8:05:23:
51:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:8F:45:A8:C6:E1:48:DE:AA:8D:8C:E1:90:26:18:CC:32:10:14:4A
X509v3 Authority Key Identifier:
keyid:E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:69:d5:02:35:91:3b:dc:69:98:e1:64:3b:59:6a:23:cb:73:
d1:02:49:12:5d:69:9a:95:9a:4e:f4:7a:7c:72:8d:db:2a:a7:
01:0b:c8:5e:c9:fe:97:1a:f7:1e:b5:2d:94:eb:5b:ee:2a:85:
e7:b9:e4:cb:09:ca:72:4a:b6:af:c1:04:28:19:d7:5f:96:f9:
67:2e:43:85:32:e9:fd:9b:b9:3e:d6:ae:2d:ea:14:48:20:c1:
a5:0f:26:a8:8c:bb:ed:55:23:9b:6f:47:5b:db:b8:83:f0:23:
e4:d5:65:32:4b:4d:b1:11:d3:a8:91:8c:54:a3:36:c8:e1:79:
ae:42:ed:d1:76:5f:c2:29:f1:71:dd:fa:00:13:8e:02:18:93:
2b:5c:64:a5:8d:12:5c:6d:92:ad:b7:92:bc:f9:39:e5:60:64:
91:bf:26:bb:24:cc:86:34:25:1f:25:9c:a3:9f:cd:7d:e5:e9:
4c:f3:b3:00:29:ca:d7:5e:77:78:11:8c:e0:b0:48:59:e4:65:
8d:0b:bb:b1:f5:9c:40:5c:d8:72:2b:de:f8:25:05:d5:e4:c0:
44:2b:c5:83:be:69:b2:4f:b2:69:e0:6d:04:19:73:e8:98:b7:
65:52:37:ba:34:36:95:44:15:e9:f4:6b:f4:9c:4a:a8:b4:a7:
03:32:0d:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 00:20:38 2025 by rpki-client