Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
File: 3itcv5Z6A0nYiXBLtNYfpSajHW8.mft (raw, json)
Hash identifier: Pl3Gb3ycBr7HGJOSHdC0zSZAhOXCb2JO/Uyf//ykAyU=
Subject key identifier: 30:55:1E:26:98:30:F9:D9:0C:36:DE:A3:32:3D:8E:D0:43:D3:8A:70
Authority key identifier: DE:2B:5C:BF:96:7A:03:49:D8:89:70:4B:B4:D6:1F:A5:26:A3:1D:6F
Certificate issuer: /CN=de2b5cbf967a0349d889704bb4d61fa526a31d6f
Certificate serial: 0196526D98F20804001881ED0FD72C4C1689
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
Manifest number: 143C
Signing time: Sun 20 Apr 2025 09:00:36 +0000
Manifest this update: Sun 20 Apr 2025 09:00:36 +0000
Manifest next update: Mon 21 Apr 2025 09:00:36 +0000
Files and hashes: 1: 3itcv5Z6A0nYiXBLtNYfpSajHW8.crl (hash: dHY+S+doQYeV9whBlV2xYRnMuW8fm0Z9BE65g+twi64=)
2: RmRTHkNLraqOOzazgFQdU_YCKkM.roa (hash: 5SoXabo2aLivwm4lm+kA69S7S7+v67Nc52d80muCgcE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:6d:98:f2:08:04:00:18:81:ed:0f:d7:2c:4c:16:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de2b5cbf967a0349d889704bb4d61fa526a31d6f
Validity
Not Before: Apr 20 09:00:36 2025 GMT
Not After : Apr 21 09:00:36 2025 GMT
Subject: CN=30551e269830f9d90c36dea3323d8ed043d38a70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:ca:3e:81:15:5e:72:2d:2a:cf:0a:6b:32:02:
2c:b8:8b:b1:49:6a:41:ad:57:2f:7a:65:e2:92:5b:
86:75:e1:ac:1f:5b:1b:51:e1:bc:c3:1b:4e:fd:a7:
c1:ec:56:5c:e1:d6:37:b4:ff:e3:62:a9:85:53:36:
dd:2a:c3:34:89:f3:5b:9b:44:8f:19:5f:b8:74:a1:
a8:20:f5:91:a1:e7:ea:86:33:d2:e2:d9:f2:02:48:
ad:84:47:fe:20:9b:12:04:04:f2:64:1e:7b:a0:e8:
79:0f:d7:e0:f3:5a:1f:aa:aa:47:8e:ab:a3:7f:7a:
8c:72:2b:1a:eb:f5:07:b8:13:e2:b8:22:d8:69:18:
de:b8:8d:04:d9:3a:f3:6e:7b:80:fa:80:b8:ee:f8:
b7:dd:f5:9d:a6:46:64:a2:16:04:2a:d4:af:71:2c:
8b:95:1a:12:c7:0d:8c:2a:78:88:c3:a8:db:2e:dd:
f1:d4:b3:37:e2:2e:b4:99:70:a5:6a:cb:31:d6:ba:
ce:c5:b9:0a:c3:72:93:2c:f3:a7:7e:28:1b:25:9b:
2b:5a:3b:ae:73:b8:63:af:59:d3:18:c1:fb:85:4e:
f6:73:19:aa:41:5d:5d:ee:56:ff:29:b2:eb:b2:b5:
79:c2:bb:50:b2:da:d5:98:df:a9:1f:1c:2b:9b:c4:
bc:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:55:1E:26:98:30:F9:D9:0C:36:DE:A3:32:3D:8E:D0:43:D3:8A:70
X509v3 Authority Key Identifier:
keyid:DE:2B:5C:BF:96:7A:03:49:D8:89:70:4B:B4:D6:1F:A5:26:A3:1D:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3itcv5Z6A0nYiXBLtNYfpSajHW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/646e7d-4f46-407c-bdd0-fd72d962df27/1/3itcv5Z6A0nYiXBLtNYfpSajHW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:ac:8f:b9:ee:db:b7:6d:a6:7e:0f:20:09:09:83:7d:26:45:
21:5f:46:7f:d7:a1:34:11:d7:bc:11:44:57:cc:f4:01:14:c9:
7c:cb:c4:f3:bf:12:a2:ca:2f:e5:9f:d9:88:f7:4f:96:ec:2d:
e9:4e:38:75:6a:e1:48:5f:da:d7:44:19:2e:10:3a:59:0b:df:
b1:66:53:bc:b6:e7:6d:6d:0f:d0:01:e9:2c:02:a1:c4:9f:d7:
85:df:e2:24:af:67:3d:12:90:d5:09:18:3b:42:25:93:56:54:
4b:8d:6f:9b:14:f3:1d:ca:5a:bb:1f:5e:1f:03:89:ed:c9:31:
70:8e:97:46:8d:ea:39:25:12:22:3f:4f:3a:16:f8:31:cd:91:
a3:5f:d2:0d:2b:cd:78:75:12:91:40:ef:2c:d0:cb:b5:b5:5d:
ad:0c:b2:ed:51:41:4c:8a:3c:8b:50:74:07:be:f9:49:bc:b7:
7e:89:1f:21:eb:07:2e:d6:9e:fc:99:c1:47:2a:e6:4d:b2:6e:
fd:20:94:36:d6:34:5e:0c:16:d8:24:b5:b4:ce:10:94:76:b2:
ba:4d:b4:fe:32:c7:08:f6:b4:7f:da:b2:a0:60:be:04:b5:de:
f0:97:df:f4:5a:14:b8:a2:fe:56:6e:19:10:d7:72:f5:e7:26:
f3:7d:15:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:14:58 2025 by rpki-client