Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
File: dLOekBkiWjsP_gWoNW6-8zwnvpc.mft (raw, json)
Hash identifier: AszoiE59y+oxjZZMfgE3k4rkfljzm1wehERgl49EORc=
Subject key identifier: 00:B7:F7:4D:CC:F2:1D:08:48:63:3A:42:35:F1:55:DC:DF:26:B5:FF
Authority key identifier: 74:B3:9E:90:19:22:5A:3B:0F:FE:05:A8:35:6E:BE:F3:3C:27:BE:97
Certificate issuer: /CN=74b39e9019225a3b0ffe05a8356ebef33c27be97
Certificate serial: 0195903E2674DB506278C96BFAAFABA14E45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLOekBkiWjsP_gWoNW6-8zwnvpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
Manifest number: 048B
Signing time: Thu 13 Mar 2025 16:02:26 +0000
Manifest this update: Thu 13 Mar 2025 16:02:26 +0000
Manifest next update: Fri 14 Mar 2025 16:02:26 +0000
Files and hashes: 1: ZRVv1QEy1kLLZIQQzKY3v_cBQvM.roa (hash: dP4rVEZl+sj+rbeXk/M+iHEaNgIv2c4UoqRTeljUbU8=)
2: dLOekBkiWjsP_gWoNW6-8zwnvpc.crl (hash: UZJqGlGke8vvqtwz+ghTUeG8m8nO4UFjTAMdFnRxXiY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/dLOekBkiWjsP_gWoNW6-8zwnvpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 15:28:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:3e:26:74:db:50:62:78:c9:6b:fa:af:ab:a1:4e:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b39e9019225a3b0ffe05a8356ebef33c27be97
Validity
Not Before: Mar 13 16:02:26 2025 GMT
Not After : Mar 14 16:02:26 2025 GMT
Subject: CN=00b7f74dccf21d0848633a4235f155dcdf26b5ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:48:1a:82:88:10:9a:d0:ae:05:f4:31:c6:3f:
a2:15:6d:f4:18:ba:96:66:cb:d9:7a:9a:77:16:b5:
3a:ec:b8:e7:a7:39:c2:d6:8b:1c:57:b3:d6:c7:62:
5f:d3:5b:bc:9c:a6:f4:0c:03:61:87:94:f3:b2:71:
df:26:c7:f4:07:0a:fb:d8:5a:56:88:e7:12:67:eb:
04:4f:73:e0:1f:ef:7c:1d:a2:01:63:10:64:d3:79:
fd:d6:fc:eb:aa:cc:72:f1:01:30:68:05:6b:fe:63:
f1:9a:bf:13:da:37:e1:13:50:aa:2f:26:e6:4a:6b:
59:52:57:d4:64:19:09:dc:c2:f4:fe:b8:75:b9:d0:
72:22:e9:e6:45:60:2e:29:6e:e1:a1:40:87:98:ed:
d8:21:25:7e:91:ba:a5:97:01:c1:1c:f5:fc:e3:44:
4d:cc:c4:7f:42:43:54:51:0e:de:d2:57:2c:39:0c:
d3:fe:9a:40:ec:c1:2d:33:c8:96:a3:2f:74:dd:8b:
65:70:18:a6:53:a3:dd:ee:f4:22:a6:1d:dc:77:df:
a5:a9:2f:14:18:c2:ba:b4:75:18:34:eb:cc:17:db:
c6:2d:d0:97:88:db:de:aa:0b:5e:5e:ed:6f:ab:0c:
e3:ca:94:69:89:f2:85:05:e1:8d:df:74:5f:ee:e9:
6c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:B7:F7:4D:CC:F2:1D:08:48:63:3A:42:35:F1:55:DC:DF:26:B5:FF
X509v3 Authority Key Identifier:
keyid:74:B3:9E:90:19:22:5A:3B:0F:FE:05:A8:35:6E:BE:F3:3C:27:BE:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLOekBkiWjsP_gWoNW6-8zwnvpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:89:3f:0b:8f:c3:0c:a3:a7:5b:5b:ea:21:bf:98:fd:74:9a:
8c:8c:5e:3e:97:28:35:83:0e:20:d1:ea:31:15:f7:61:bc:c9:
0f:e0:5d:17:c3:14:7c:f5:39:6b:c4:1f:47:53:34:31:a2:fb:
b1:9d:93:3f:cd:7a:7a:06:66:a3:9c:ca:53:d2:6a:b4:30:49:
7f:a0:d9:de:82:28:43:c7:f8:63:3d:87:c5:a3:8d:cb:3e:e9:
e7:13:be:53:6e:7e:7c:8e:a2:63:ee:a8:e7:03:fe:48:f7:d1:
32:5a:2c:cb:10:c2:89:62:49:da:32:3c:c4:84:54:34:cb:9d:
19:e8:47:82:d7:44:44:52:de:ed:40:b4:79:e7:b5:bf:be:a3:
3a:fe:a0:34:41:9a:59:21:f7:cb:28:32:5a:7e:21:f5:92:54:
8b:45:48:7a:14:d6:44:68:6d:17:ff:bf:79:6d:0c:24:dc:dc:
1b:e3:9d:66:14:51:0a:f6:3c:17:70:29:af:83:8c:b2:c7:ff:
af:a0:f4:2f:5b:a9:5a:05:40:7a:95:11:4e:f3:1f:15:f4:2d:
84:c3:e4:dc:01:ff:5a:12:0c:7c:c4:56:d8:be:fe:ba:4c:c8:
05:65:28:12:33:43:02:6c:b0:25:df:ad:c0:e4:a0:55:01:5a:
93:ca:ed:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:36:54 2025 by rpki-client