Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
File: tDuXodIfY3tUkTDwhXpoHMf2iEw.mft (raw, json)
Hash identifier: bJc/UKIuyDYEtHC44oxGKKrPZng5qWuiN9g9eDSDLQg=
Subject key identifier: 34:E5:91:53:77:46:A7:C2:82:63:CA:66:EE:1C:E3:CD:60:21:8B:B1
Authority key identifier: B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C
Certificate issuer: /CN=b43b97a1d21f637b549130f0857a681cc7f6884c
Certificate serial: 01958F6135C773934B6C11933BAEABA6E9B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
Manifest number: 1497
Signing time: Thu 13 Mar 2025 12:01:07 +0000
Manifest this update: Thu 13 Mar 2025 12:01:07 +0000
Manifest next update: Fri 14 Mar 2025 12:01:07 +0000
Files and hashes: 1: Rg68-pzrr6gfhWgypMVfmtoKlgk.roa (hash: XpZ2I1CGwPpi3ah3Tduh3EFNHBVZBFc6didgCWOzzG4=)
2: tDuXodIfY3tUkTDwhXpoHMf2iEw.crl (hash: sWXAXX6TeY8e4S8SZ/zKtlYVTXH9zmt+43FjhReL6mg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8f:61:35:c7:73:93:4b:6c:11:93:3b:ae:ab:a6:e9:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43b97a1d21f637b549130f0857a681cc7f6884c
Validity
Not Before: Mar 13 12:01:07 2025 GMT
Not After : Mar 14 12:01:07 2025 GMT
Subject: CN=34e591537746a7c28263ca66ee1ce3cd60218bb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f8:94:26:d6:a1:ca:5d:e8:7e:eb:ea:0f:d7:
b1:b6:a2:46:fa:31:c9:62:72:27:9d:4b:6a:63:4d:
cf:1e:4c:e0:d4:7e:f1:ff:c0:d1:ca:a9:d2:5c:ef:
d6:31:1c:27:49:ad:44:bb:b5:fa:c0:5c:02:a6:44:
2d:37:fc:d3:5e:3e:8b:4e:3f:07:39:bb:83:92:b2:
f7:68:5c:2a:17:f3:89:c9:2d:f2:5d:d4:14:e7:a5:
72:73:ef:2e:72:be:64:d0:4c:a3:ff:03:c5:d4:8a:
82:50:94:48:c5:bc:5f:d6:00:eb:dd:ee:12:76:03:
99:01:d9:ea:be:50:47:52:d3:b6:5d:30:5a:d1:5a:
17:d3:d5:06:83:0e:83:d4:fc:7c:45:2f:cf:6d:1f:
46:95:79:b3:62:26:e3:cd:dd:e1:2e:bd:a6:57:97:
c5:8d:ca:b6:89:3c:71:92:1a:02:18:e3:c2:79:3b:
98:91:05:d9:16:a1:fd:50:ba:58:22:b2:3d:d8:45:
83:38:0f:78:79:58:72:5f:8e:ec:71:aa:06:92:96:
5d:59:2c:09:00:74:77:74:b1:7b:60:ad:a8:ce:d8:
15:8a:99:a7:92:ff:d6:5f:6f:a6:27:59:89:26:50:
d9:92:8a:15:5a:9e:64:87:6a:9a:97:8f:af:91:e2:
f2:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:E5:91:53:77:46:A7:C2:82:63:CA:66:EE:1C:E3:CD:60:21:8B:B1
X509v3 Authority Key Identifier:
keyid:B4:3B:97:A1:D2:1F:63:7B:54:91:30:F0:85:7A:68:1C:C7:F6:88:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDuXodIfY3tUkTDwhXpoHMf2iEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/5454ad-6cf3-4ee5-a4b9-0464e945f1cc/1/tDuXodIfY3tUkTDwhXpoHMf2iEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:81:c2:fd:a3:da:5e:b4:84:3a:2e:23:52:29:ce:2e:87:07:
65:f6:29:cf:46:4e:5a:cd:2a:75:93:46:2d:bb:85:e4:80:d4:
10:48:24:cf:b4:9c:5b:e9:5e:28:38:32:08:b5:eb:d3:88:23:
b2:73:5e:1f:37:5c:98:bd:fa:76:64:10:a8:4f:aa:c3:b9:25:
60:73:e2:48:31:2d:dc:47:7f:ed:24:6e:4e:bf:b9:0e:8a:2a:
9f:ae:da:41:88:f7:88:9d:ff:e1:d6:c2:6d:98:d4:c9:29:39:
e9:9c:2f:f5:6f:00:cc:28:bd:f3:26:c5:d9:5a:73:b5:85:74:
cb:d0:2f:26:7f:ef:59:23:df:cb:a3:8c:b3:49:55:df:93:44:
38:d5:2f:90:52:1b:ad:1c:1f:38:db:b7:0a:5a:37:e1:e5:90:
b0:0a:a6:cc:8c:eb:e3:d1:5a:71:5e:6d:5c:f4:db:ef:51:58:
e4:de:5f:6f:7c:db:05:e6:9f:a5:1f:86:64:28:71:c5:a3:85:
f1:5e:bc:9b:dc:7f:93:01:60:50:0c:9b:50:a9:82:70:50:42:
07:74:1d:da:6f:c4:42:20:bd:9b:76:68:2c:88:10:06:ac:8d:
5d:96:0e:ab:e6:e5:3a:1d:db:82:4d:a8:89:10:1d:89:72:6a:
a1:cf:af:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:22:06 2025 by rpki-client