Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.mft
File: IQH0Od66_1iAOV148Lv62Mp2CL8.mft (raw, json)
Hash identifier: RdeVVKS1TkjkRo5fhVEqxmY/wmMFX2tI30wJUV0K/Ko=
Subject key identifier: 3A:49:6B:D7:EC:BC:84:B5:A7:94:58:9A:AA:08:10:4F:8F:AB:54:F4
Authority key identifier: 21:01:F4:39:DE:BA:FF:58:80:39:5D:78:F0:BB:FA:D8:CA:76:08:BF
Certificate issuer: /CN=2101f439debaff5880395d78f0bbfad8ca7608bf
Certificate serial: 01958B4D8DFC915A700A8DEDB6228C45BBC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQH0Od66_1iAOV148Lv62Mp2CL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.mft
Manifest number: 0B52
Signing time: Wed 12 Mar 2025 17:01:10 +0000
Manifest this update: Wed 12 Mar 2025 17:01:10 +0000
Manifest next update: Thu 13 Mar 2025 17:01:10 +0000
Files and hashes: 1: IQH0Od66_1iAOV148Lv62Mp2CL8.crl (hash: m6IxJgov8uwiDiSSe178kVNtdTMnqa5Qg5vnKd1hdM8=)
2: maYu8dN9neYyc8DtbRu2KTpDdQk.roa (hash: H5U+8VR9PAI4QlkVpTR8DC6LqpMXq6tJVvxgrK/vIPo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.mft
rsync://rpki.ripe.net/repository/DEFAULT/IQH0Od66_1iAOV148Lv62Mp2CL8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 17:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:4d:8d:fc:91:5a:70:0a:8d:ed:b6:22:8c:45:bb:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2101f439debaff5880395d78f0bbfad8ca7608bf
Validity
Not Before: Mar 12 17:01:10 2025 GMT
Not After : Mar 13 17:01:10 2025 GMT
Subject: CN=3a496bd7ecbc84b5a794589aaa08104f8fab54f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:0f:22:29:c3:75:15:f5:e5:bb:06:ae:f0:bb:
f5:8f:70:aa:72:55:93:22:2c:71:10:95:c0:5b:67:
09:0e:f7:2d:ab:25:3f:07:8c:15:d2:95:09:3c:3c:
06:ab:08:ef:09:0b:e1:41:1a:f9:31:66:73:8c:d2:
d7:72:d1:ec:6c:60:05:b0:b7:99:14:c0:7c:7d:15:
6d:bf:0c:28:88:8f:a9:42:17:2d:bd:f7:cb:d0:08:
c8:f7:ff:a9:2f:04:da:ae:a6:cb:72:26:c5:6b:df:
b3:be:75:66:5a:75:f0:c7:6b:ac:5f:55:ae:22:05:
f8:97:7a:dc:3b:b8:16:b9:3d:8d:18:12:01:26:a5:
b8:d1:62:d4:6e:9e:2f:2d:3f:ab:a7:07:da:0e:ea:
cd:dc:d7:1e:32:47:f4:36:5f:5f:fe:45:81:f9:bb:
d8:c1:20:4a:0b:9d:36:32:c9:6a:58:d8:46:0a:f1:
9c:43:7e:e3:9b:a8:22:e2:f6:66:6b:ff:d6:95:3b:
9b:72:7e:f7:32:3c:bd:1b:64:f1:bb:af:bf:ed:b5:
22:10:28:00:d4:a3:f6:53:05:88:e9:4c:b8:6d:3c:
4f:61:c3:59:b1:de:ff:87:a7:0b:fc:f7:71:48:fa:
a7:87:e4:47:bf:da:51:91:3c:d5:55:24:ad:ce:99:
8c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:49:6B:D7:EC:BC:84:B5:A7:94:58:9A:AA:08:10:4F:8F:AB:54:F4
X509v3 Authority Key Identifier:
keyid:21:01:F4:39:DE:BA:FF:58:80:39:5D:78:F0:BB:FA:D8:CA:76:08:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQH0Od66_1iAOV148Lv62Mp2CL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/78c414-9b09-4775-a558-e3defb7e2518/1/IQH0Od66_1iAOV148Lv62Mp2CL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:90:a3:13:5c:b1:f2:77:20:04:2c:01:54:dd:6e:46:9b:d9:
93:46:81:b1:5e:55:0c:8d:c3:8d:9c:92:f9:6a:24:a1:60:44:
35:8b:94:68:fc:4b:c8:3d:69:14:02:4c:c5:78:21:46:ff:f1:
0a:b1:22:d4:0f:9d:fb:98:fe:26:ee:22:7c:43:70:b9:c7:de:
97:b1:a6:8e:47:dd:79:76:5e:ba:65:5c:92:80:86:b5:1e:b5:
a7:11:9b:ea:10:4b:8f:07:d3:46:9c:a1:93:fc:10:90:69:c3:
62:a2:14:8c:6a:05:fe:6c:71:8f:0f:11:7d:5e:b0:05:f7:45:
cd:e7:e8:0b:0b:6d:73:fe:35:2c:1c:14:8e:de:6f:18:33:5a:
bf:86:c9:68:ee:cb:9b:39:06:04:ec:47:37:3b:88:87:4b:d4:
44:d2:c0:05:37:2d:ff:60:b6:e4:a8:8e:1b:86:3e:09:78:8d:
22:84:46:64:30:09:cf:ca:83:16:c1:3d:7d:e2:89:36:32:ff:
04:75:c0:cb:b4:7e:95:4a:a5:1b:d8:67:8c:fe:03:25:62:65:
1d:c1:1e:ec:bb:0c:1b:28:3f:62:12:01:8e:02:cc:5d:e4:f1:
b2:db:86:36:6e:91:9a:e5:f6:ab:25:29:1d:0c:94:92:69:83:
3e:9b:65:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:57:33 2025 by rpki-client