Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
File: rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft (raw, json)
Hash identifier: DIODTGpmPT3kZGGKbYGqC+KfidQcE6swWGYn0iCK3C4=
Subject key identifier: 90:7A:0F:FA:58:9B:77:FA:C1:24:FE:34:36:0B:B5:66:A4:E4:74:78
Authority key identifier: AC:32:87:56:DE:CE:8F:29:F9:7F:41:B8:1A:08:7D:B5:24:E1:59:B7
Certificate issuer: /CN=ac328756dece8f29f97f41b81a087db524e159b7
Certificate serial: 01964BC6A519DE3A7B92087B416E6520CC04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
Manifest number: 1144
Signing time: Sat 19 Apr 2025 02:00:31 +0000
Manifest this update: Sat 19 Apr 2025 02:00:31 +0000
Manifest next update: Sun 20 Apr 2025 02:00:31 +0000
Files and hashes: 1: KhThgn0FLgtxgLmV5WuQd88UjJs.roa (hash: UVyvP36EKpZylxYZtY94LC7cB1Xoy48Pim7visCwDUs=)
2: rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl (hash: OHjcR3qBuw+HHW9Iook6Y9juD9ln1QXpS8mjNfWU47E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:c6:a5:19:de:3a:7b:92:08:7b:41:6e:65:20:cc:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac328756dece8f29f97f41b81a087db524e159b7
Validity
Not Before: Apr 19 02:00:31 2025 GMT
Not After : Apr 20 02:00:31 2025 GMT
Subject: CN=907a0ffa589b77fac124fe34360bb566a4e47478
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:2b:b8:99:4c:18:80:02:6d:46:db:c4:0d:25:
65:ed:27:9e:2a:9f:35:64:4f:b3:e7:11:a9:d6:90:
ed:63:e6:e7:8f:f4:10:18:e2:5f:3f:9d:6c:ec:c8:
ef:7a:96:db:fc:4b:89:dc:96:4a:f8:54:67:c4:88:
5c:ac:aa:af:0d:5d:fa:ae:20:9d:ae:bc:67:48:4f:
00:c5:d3:b9:9a:e2:cc:0f:34:f4:a0:dc:8c:b1:c9:
1e:14:68:af:80:8f:84:42:c9:97:cc:c9:37:ad:bd:
4e:c7:5b:e7:9d:a3:db:3a:34:4f:5a:cc:e9:84:54:
0e:ff:a3:68:0e:86:c6:3f:10:0b:22:11:1f:19:b7:
f9:69:55:97:42:d4:a9:11:fc:fa:2e:22:7d:b1:37:
2e:ee:17:df:b7:8f:7a:86:93:ff:63:99:eb:60:22:
67:cc:e5:78:73:b6:ea:2c:16:ba:20:80:20:63:f2:
3b:cc:c3:6f:b1:be:57:77:de:b5:86:1c:e3:aa:6d:
17:90:d1:be:64:f6:24:38:ae:28:81:61:8f:80:c8:
f5:1f:37:57:dd:d3:bd:f7:bc:af:38:c8:0d:ea:bc:
17:90:15:ba:cf:9d:19:35:52:bf:2f:af:1c:f9:c3:
9d:25:19:72:50:69:80:a7:0f:ba:2c:d1:36:ce:8e:
2a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:7A:0F:FA:58:9B:77:FA:C1:24:FE:34:36:0B:B5:66:A4:E4:74:78
X509v3 Authority Key Identifier:
keyid:AC:32:87:56:DE:CE:8F:29:F9:7F:41:B8:1A:08:7D:B5:24:E1:59:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/fb78ad-918e-44c2-9501-024ad4fb3708/1/rDKHVt7Ojyn5f0G4Ggh9tSThWbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:af:0b:34:96:a1:8d:37:36:81:6f:e0:1f:f4:b2:e6:fb:40:
f1:10:f5:d2:aa:19:e7:67:45:12:31:e9:fd:1f:ac:96:2c:65:
f9:36:c3:f9:1c:f1:a1:14:07:1c:51:ff:d6:1f:e4:4b:25:05:
e7:cc:12:99:e3:61:bc:55:15:1b:ab:bc:6d:f5:dd:3f:a8:b2:
72:ae:75:23:40:00:22:50:71:1b:c5:2a:6a:94:1f:d4:92:89:
bc:0e:82:c1:8a:91:f9:26:af:f2:04:f8:40:ba:89:f7:ca:eb:
2d:b2:ff:e7:c0:79:62:f5:1d:c9:ab:91:bd:0e:82:15:ec:5d:
f6:6d:57:97:02:62:d6:ec:72:21:84:6b:23:fc:f3:8b:70:26:
ad:80:04:e7:fc:45:f6:d4:53:12:82:9c:c1:23:9e:d5:7c:99:
40:af:fa:46:98:be:cf:22:1d:34:a3:e7:55:a9:4a:2f:55:91:
fb:9e:00:9e:d1:d4:a0:e8:aa:82:1f:8f:3c:c3:78:40:9d:ea:
c3:9e:a9:bd:68:31:07:8f:98:de:d8:29:67:6b:b1:ef:7e:66:
5b:aa:bf:d9:25:72:e1:9f:86:bf:a3:58:02:48:7e:f3:37:12:
b4:a1:32:c2:18:2d:29:08:f8:59:10:03:93:1b:1a:9c:7e:a1:
e2:07:d4:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:12:14 2025 by rpki-client