Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
File: 4Genud52frl9tk5RZHhJRjO9VOo.mft (raw, json)
Hash identifier: EOysKzIzbRs5+gSW2Amb91SzBPyuClQzqcfu5ZJ5jvw=
Subject key identifier: 3A:D6:DF:61:C9:9D:FF:9A:90:5F:11:C4:A6:CC:89:E2:58:27:D1:07
Authority key identifier: E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
Certificate issuer: /CN=e067a7b9de767eb97db64e516478494633bd54ea
Certificate serial: 01965492C9639D4357F77CEEBADCC526A102
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
Manifest number: 0AFE
Signing time: Sun 20 Apr 2025 19:00:27 +0000
Manifest this update: Sun 20 Apr 2025 19:00:27 +0000
Manifest next update: Mon 21 Apr 2025 19:00:27 +0000
Files and hashes: 1: 4Genud52frl9tk5RZHhJRjO9VOo.crl (hash: KNZmGROhLggE5f3IxX2aoIImDtcfKKYlGh6isWftFfU=)
2: DQo4EErqs46yA4QIpyLHGlOprVU.roa (hash: jpEUtUNk7NIqvU0XQCmCZgYXNkApAZ2zVdQgWdhDGWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:92:c9:63:9d:43:57:f7:7c:ee:ba:dc:c5:26:a1:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e067a7b9de767eb97db64e516478494633bd54ea
Validity
Not Before: Apr 20 19:00:27 2025 GMT
Not After : Apr 21 19:00:27 2025 GMT
Subject: CN=3ad6df61c99dff9a905f11c4a6cc89e25827d107
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f8:c7:ee:42:27:fb:34:67:43:82:d5:7b:3e:
8c:27:43:f3:65:ed:10:67:e6:5d:86:75:89:cc:75:
70:87:71:69:53:2d:49:08:f2:ad:0f:99:f9:9f:e0:
01:6f:e8:0c:db:96:c2:63:f0:a0:51:24:0f:1a:4e:
b1:70:2b:85:1f:57:a5:87:c1:9c:c8:d1:2f:c0:6b:
13:2e:d7:57:12:f8:b5:6e:ae:cb:dd:65:7f:b6:58:
73:f0:1f:8a:1d:f2:50:8b:c4:54:73:d1:ef:a0:c7:
3f:0f:c5:18:ba:d8:9c:4b:c4:09:6f:01:84:92:99:
87:34:e4:86:dc:1e:aa:ee:c4:13:06:76:52:23:6a:
8b:b4:df:fc:bf:86:cd:b6:44:42:a4:b9:0e:3e:ae:
2b:77:4b:fb:2d:35:69:ca:7f:4e:6a:1a:94:26:10:
a1:bf:2a:af:8b:45:f2:9f:e8:2a:13:de:91:f7:e7:
b2:b1:15:13:94:29:0d:82:72:8c:c3:00:71:bd:b0:
d8:33:50:ed:4a:51:bd:5c:a6:1c:66:1c:2e:00:7b:
da:5e:7c:22:71:85:f7:16:6f:bb:0f:b4:a3:f9:a5:
58:71:e4:e4:98:f2:89:3f:6b:f7:b6:47:54:46:e7:
11:ae:d7:1c:86:1f:25:b8:8f:f8:12:5b:2c:d7:c1:
e0:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:D6:DF:61:C9:9D:FF:9A:90:5F:11:C4:A6:CC:89:E2:58:27:D1:07
X509v3 Authority Key Identifier:
keyid:E0:67:A7:B9:DE:76:7E:B9:7D:B6:4E:51:64:78:49:46:33:BD:54:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Genud52frl9tk5RZHhJRjO9VOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/d520c4-deb4-438b-93bf-768f3d6ee19e/1/4Genud52frl9tk5RZHhJRjO9VOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d2:70:20:99:3f:87:7c:bf:e3:f2:df:fb:2e:c1:20:8f:64:b6:
44:ad:92:65:ee:fc:bb:8a:e5:39:cf:8a:22:ba:0a:c7:8d:a2:
68:87:bd:36:8e:ca:ee:00:01:4b:9a:81:50:20:9a:5e:a5:39:
a5:ad:ac:a6:02:e7:27:b9:19:12:6a:59:9e:c9:21:bc:3a:5d:
9e:e8:2a:cc:d9:af:c9:15:44:a8:ce:75:b5:a1:87:65:b5:ce:
8e:d2:2d:8c:b1:d6:64:9d:89:7f:56:54:d5:1c:40:17:3e:dd:
ab:11:61:67:36:f6:df:52:c9:a2:c2:56:46:3c:aa:b1:bf:ed:
41:e3:05:61:2f:dc:88:2e:7a:ca:85:1a:7a:5d:e0:7a:bb:f8:
42:91:d9:0c:bc:29:13:60:30:c3:2f:5f:43:0e:ea:5b:e3:9f:
1d:24:f3:75:9c:39:63:10:d0:1e:36:78:f6:bc:ee:8f:3f:ac:
45:16:60:67:b8:37:1d:54:c8:c7:56:7f:cd:31:c1:f1:aa:47:
fe:cb:f8:99:ba:56:6a:da:00:bd:c6:36:dc:e8:ee:1a:f5:9f:
72:f1:8f:a6:0a:a3:af:5b:e6:11:f1:af:53:44:aa:b5:e6:54:
93:da:b1:d9:d9:e2:1f:7f:96:d1:4b:16:7e:b7:e2:c4:cd:41:
a2:32:aa:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 21:36:31 2025 by rpki-client