Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
File: kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft (raw, json)
Hash identifier: NBFU4M3Vd9fG7O7otkhhgKZnyd8W58qjOdssR5t2QdA=
Subject key identifier: 61:C1:43:7A:BB:2A:BE:3D:92:9D:C9:BB:75:6F:BC:30:E0:A6:5E:B2
Authority key identifier: 90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
Certificate issuer: /CN=90ccd913a99bafd893e07ba968a67434e3df5420
Certificate serial: 01958C297A54289060F5614E4E003FF9DECD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
Manifest number: 13EE
Signing time: Wed 12 Mar 2025 21:01:23 +0000
Manifest this update: Wed 12 Mar 2025 21:01:23 +0000
Manifest next update: Thu 13 Mar 2025 21:01:23 +0000
Files and hashes: 1: 7ma8rm9Nc8aP0i9rOur_HEzgHJs.roa (hash: GInuicNk1jMv1+rnjCpEDF87yGDttTl9tUwBgJS9KiA=)
2: kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl (hash: BzEor2slhQlBkwZ2bEydfav/oBR+8UnP60G2OVZ4I4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:29:7a:54:28:90:60:f5:61:4e:4e:00:3f:f9:de:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90ccd913a99bafd893e07ba968a67434e3df5420
Validity
Not Before: Mar 12 21:01:23 2025 GMT
Not After : Mar 13 21:01:23 2025 GMT
Subject: CN=61c1437abb2abe3d929dc9bb756fbc30e0a65eb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:27:4e:ba:62:85:6f:44:1c:0c:46:58:3e:06:
4c:5b:52:d2:20:a4:41:d3:ed:f0:83:b7:1b:c0:75:
ea:ea:dd:68:34:a3:04:db:db:b1:a6:10:1f:5e:2c:
05:52:61:11:f5:1d:9b:a0:11:ca:70:37:dd:da:d8:
c6:d9:ea:f0:81:8b:6e:6a:ae:93:82:ed:9f:bd:e9:
24:9c:36:e8:a3:a2:72:0f:59:6f:c6:10:f4:54:9a:
ee:f6:60:2d:07:e5:b7:75:25:32:91:f9:ac:45:a3:
d0:91:ef:6d:38:f0:7f:75:07:50:81:fd:d8:f0:87:
78:44:69:17:19:a4:60:dc:5a:22:9d:79:42:f0:dd:
9d:64:41:a0:5f:cd:e2:6d:58:bc:b5:76:6c:bd:da:
c3:5d:77:72:74:57:7d:3c:da:6f:ef:9e:97:c0:64:
a2:88:a8:b6:66:93:94:75:90:b6:68:aa:bc:7d:67:
75:f4:9d:ad:16:84:85:78:95:d1:27:e2:f8:5f:2a:
ec:b4:70:da:e0:8d:78:7d:d5:51:12:c2:f3:66:50:
3a:ca:38:66:f4:ec:59:74:05:3c:de:e4:9c:40:61:
d6:6c:df:65:22:64:7c:28:ee:a9:ab:60:d1:93:73:
7e:d6:dc:8b:70:29:20:d5:f5:84:bb:74:90:68:d5:
21:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:C1:43:7A:BB:2A:BE:3D:92:9D:C9:BB:75:6F:BC:30:E0:A6:5E:B2
X509v3 Authority Key Identifier:
keyid:90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:3f:a0:1a:e6:e8:1a:8d:9a:6d:53:cc:dc:be:a1:fa:24:d7:
e1:f0:0a:82:2c:2f:5a:8a:fb:95:64:39:6f:e6:4e:b1:d8:53:
c0:6a:2e:7f:27:91:ad:47:74:0a:3b:d8:a0:66:c3:41:92:ac:
3d:95:95:29:49:fc:05:ba:64:d0:5e:38:70:32:db:92:eb:1b:
a2:cb:30:be:eb:9a:1d:51:4c:37:f4:96:c8:a8:44:17:83:96:
6d:ef:f4:f6:fa:ca:78:66:fb:f6:48:99:85:6f:6b:28:ee:1a:
ac:06:dd:59:bb:9c:73:36:40:e0:19:46:f4:3a:de:f3:b1:a8:
7c:77:e1:3e:c2:9f:8f:b7:26:84:8b:67:b4:a6:6a:98:9c:dc:
71:e2:55:fa:b7:07:2c:d9:18:01:d2:16:bc:53:62:c8:72:87:
af:97:df:2f:e3:c8:4c:03:e3:96:46:be:a9:1d:68:ac:8b:f6:
33:5c:f9:9e:59:33:29:b0:6a:d7:94:1f:d2:d8:4f:9d:ce:a4:
b4:03:e5:2f:81:32:49:a7:b4:59:0c:3f:b7:c2:f5:c1:77:55:
a5:38:04:de:cc:64:c0:12:27:1c:a1:0d:77:53:c8:ba:09:cc:
0f:1f:94:0d:1a:2d:0a:82:df:9c:29:f2:54:20:07:b8:b1:44:
46:51:99:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:33 2025 by rpki-client