Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
File: Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft (raw, json)
Hash identifier: Jkl6AsekDq0frbqMO7pbzvwu6qQ4bIgMyzUNg/FXQys=
Subject key identifier: 79:D6:7C:2D:04:33:68:5B:6A:90:E7:6C:DF:73:A9:5F:FC:63:B9:5B
Authority key identifier: 21:CF:53:48:1D:13:3B:AC:F5:27:86:8D:BA:1B:37:63:E3:D6:DD:A7
Certificate issuer: /CN=21cf53481d133bacf527868dba1b3763e3d6dda7
Certificate serial: 019646698546B605B101F7B7D0179F46D61D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
Manifest number: 04B9
Signing time: Fri 18 Apr 2025 01:00:42 +0000
Manifest this update: Fri 18 Apr 2025 01:00:42 +0000
Manifest next update: Sat 19 Apr 2025 01:00:42 +0000
Files and hashes: 1: BkDrM4-atcp10Br--qbvg_yK1zg.roa (hash: OQTXLqdYWvwdj8zXSXiFu8x5dJlCSPxgy4/Qhi1Yohc=)
2: Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.crl (hash: dEqVGueiwZ7WhXkeb6XrIoBghtxdD2KnHTi/IGzX31E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:46:69:85:46:b6:05:b1:01:f7:b7:d0:17:9f:46:d6:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21cf53481d133bacf527868dba1b3763e3d6dda7
Validity
Not Before: Apr 18 01:00:42 2025 GMT
Not After : Apr 19 01:00:42 2025 GMT
Subject: CN=79d67c2d0433685b6a90e76cdf73a95ffc63b95b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2a:0f:bd:39:4c:e4:50:8e:96:6e:93:90:b1:
f7:ba:d8:c4:92:2c:7f:2e:2c:57:71:20:21:e8:27:
e5:9c:fd:56:78:5a:30:5f:7b:25:27:0d:c3:08:dd:
e2:49:15:98:97:e3:b1:1b:a8:cc:d4:83:03:0e:18:
82:c2:99:1b:65:a1:40:8b:c3:27:dd:7e:d6:3e:0c:
d6:95:0b:6f:a0:ca:4c:f8:64:64:8b:2c:4a:ee:67:
8c:8e:14:93:56:bd:0d:e1:12:17:f8:32:a1:0b:28:
23:a9:b1:f0:c5:c1:da:7e:d0:6b:1c:04:e5:1d:20:
27:cd:95:8e:b6:44:fc:cb:f0:85:92:98:86:36:32:
47:84:97:db:8e:00:e2:87:14:25:0d:c7:c8:7d:4a:
b5:77:09:e9:43:53:e9:91:fe:55:6c:8f:84:a8:33:
60:6a:1d:4b:ce:70:31:0e:ee:7e:32:b6:9f:65:96:
11:ad:fb:6d:6d:d9:f3:cb:49:17:27:0d:dd:fb:23:
da:33:e8:64:63:16:9a:12:b8:4a:33:0f:d0:bf:72:
e3:72:6e:eb:05:d1:b0:68:96:8e:07:fe:b4:6d:fb:
f9:39:47:ca:94:1d:c1:10:b8:01:04:e0:33:94:ce:
ec:c3:8b:bd:f7:a6:3f:71:f1:90:40:af:33:13:1d:
44:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:D6:7C:2D:04:33:68:5B:6A:90:E7:6C:DF:73:A9:5F:FC:63:B9:5B
X509v3 Authority Key Identifier:
keyid:21:CF:53:48:1D:13:3B:AC:F5:27:86:8D:BA:1B:37:63:E3:D6:DD:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/725b88-c523-4313-9e30-02c1e19a71d5/1/Ic9TSB0TO6z1J4aNuhs3Y-PW3ac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:be:4f:e8:93:b7:83:51:02:21:cd:24:35:4e:d1:ff:94:bb:
ca:db:40:97:b2:3c:33:23:aa:93:8e:33:77:0e:6a:ae:9b:3f:
71:28:59:25:76:6b:e7:d3:24:8d:da:5e:16:2e:2f:57:ee:4b:
3b:52:92:76:c8:1c:7f:ed:c6:2b:95:ac:d6:98:6d:9c:62:6b:
c0:52:e3:ea:f7:59:f1:19:d6:76:42:33:b9:e3:50:67:84:7b:
19:83:4f:b3:67:f5:b7:70:1c:99:3a:ac:5c:32:c0:6b:d3:2d:
9e:1c:f5:7b:d3:bb:b2:16:52:2e:8f:8a:dc:a3:0f:5f:cf:72:
4a:b1:c4:81:28:5b:e8:35:0f:69:aa:db:0e:54:be:8d:a6:a9:
46:44:21:a1:71:17:cd:ec:c6:40:48:1c:06:91:b8:be:7e:33:
60:53:41:84:60:5c:ee:43:5a:35:7e:fe:1a:e1:75:ea:c3:34:
90:56:5c:2b:35:3a:25:8d:85:06:6d:e7:01:4d:32:e2:03:fd:
1f:31:d2:a7:eb:07:6a:87:23:f8:69:27:87:7f:c5:0e:97:a8:
a7:a5:99:9f:2c:59:06:fd:ba:d5:2d:af:b4:d0:b5:db:9d:20:
fc:b0:a2:0f:fb:ec:c5:2d:ba:e8:99:78:2b:a0:67:05:ec:55:
4c:ff:27:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 04:28:01 2025 by rpki-client