Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
File: _2szYaGioA284xkBmCf-u3Fb0EQ.mft (raw, json)
Hash identifier: Q44twH5rZkVZTL7hc66Aa8sKpaKeMXoGKBzVGDLBjJM=
Subject key identifier: 67:E3:1B:6F:25:FE:32:2A:47:F8:C1:ED:96:AE:4E:3A:57:D7:A7:64
Authority key identifier: FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
Certificate issuer: /CN=ff6b3361a1a2a00dbce319019827febb715bd044
Certificate serial: 01958EF38F50C24A3A5E468D981ACF67781F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
Manifest number: 13FA
Signing time: Thu 13 Mar 2025 10:01:21 +0000
Manifest this update: Thu 13 Mar 2025 10:01:21 +0000
Manifest next update: Fri 14 Mar 2025 10:01:21 +0000
Files and hashes: 1: WWNEma98vqvt3aWub4KvZrisRPY.roa (hash: 8ej/FxtmoHvT2+4JYPncO9OF+5JwUWMEm2sRynTw/0U=)
2: _2szYaGioA284xkBmCf-u3Fb0EQ.crl (hash: CptrOx6+ARcEWtOqK6XXHfSJ6XMqGaxYzb4Fe4t1nLY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 10:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:f3:8f:50:c2:4a:3a:5e:46:8d:98:1a:cf:67:78:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff6b3361a1a2a00dbce319019827febb715bd044
Validity
Not Before: Mar 13 10:01:21 2025 GMT
Not After : Mar 14 10:01:21 2025 GMT
Subject: CN=67e31b6f25fe322a47f8c1ed96ae4e3a57d7a764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:29:41:d6:d6:81:b7:12:19:f9:59:80:c0:23:
f9:9c:25:5c:12:76:4e:40:17:fb:f1:87:8a:74:19:
d7:99:cd:c2:99:f1:c6:f2:a6:f2:71:38:3b:47:83:
f0:de:a0:e9:07:3f:e8:54:b8:cc:f6:0f:84:b5:0a:
80:5b:d9:51:a9:ef:c1:3e:8c:80:5a:c5:cb:9a:9b:
a5:3c:42:51:20:48:77:78:0b:27:52:1b:a3:38:99:
90:a4:1b:c4:58:ac:0b:af:30:1b:8f:7b:55:03:92:
86:85:d4:86:97:b3:dd:ba:c0:3b:c6:c1:9b:97:6b:
77:ce:29:7c:f9:73:76:80:f0:71:9d:a2:d3:b7:66:
e7:f2:c2:41:a6:7b:9d:fa:b0:11:c0:5f:e9:87:6a:
a7:7b:30:d2:18:db:d5:13:b7:42:44:df:4f:42:94:
55:6e:1b:d8:4d:59:d0:aa:58:24:0c:0e:72:7f:42:
50:76:a1:15:77:a2:19:2e:4e:94:55:72:32:6e:a2:
26:71:1a:45:ae:8f:15:84:0e:b9:15:ac:16:14:0a:
2d:b4:f4:37:20:51:32:1b:5d:ab:d4:29:81:2f:52:
3c:18:b2:2d:29:f2:d5:5f:24:18:8b:d5:24:80:05:
01:3d:3f:a4:84:eb:1f:d8:ec:b2:c9:f2:8e:2a:59:
d1:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:E3:1B:6F:25:FE:32:2A:47:F8:C1:ED:96:AE:4E:3A:57:D7:A7:64
X509v3 Authority Key Identifier:
keyid:FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:7b:18:5b:fc:a3:17:de:15:41:bc:85:10:5c:4b:76:9c:58:
76:9f:ab:af:ae:bd:8b:54:db:be:a6:ec:d5:ad:7f:93:ef:c1:
aa:5c:e4:4f:b3:41:b4:b0:48:fa:9e:d6:7f:21:87:dd:15:90:
d4:15:b0:ee:8c:35:7a:7a:5a:e4:39:21:ba:5a:60:59:f4:13:
e8:32:b2:6c:14:c9:45:32:4f:53:f3:c1:3b:18:30:50:77:b4:
45:a2:f6:6d:36:86:1e:c2:15:ed:e7:79:3e:9d:46:e1:b2:ec:
6b:d9:b8:72:e3:81:14:aa:47:45:ef:c8:d6:ca:d0:fe:71:b2:
4b:5f:ce:98:37:17:96:c3:18:94:a8:c2:03:2d:72:8d:10:fb:
7d:48:58:c5:15:68:28:ce:ea:4b:79:33:3f:77:57:4a:3c:38:
10:da:86:ea:a4:40:ca:cc:c9:d6:73:64:fa:be:fa:3e:13:51:
54:c7:47:da:c0:31:ee:d1:ae:f0:e0:c3:fd:49:2c:e6:ed:0f:
2f:52:a8:13:84:92:25:df:d3:ed:5e:ee:e9:7b:08:0b:1a:96:
8e:bd:43:77:04:33:c3:61:c5:af:be:02:a7:ca:5b:b3:b5:92:
81:86:8d:07:43:f7:e1:7b:e9:5c:1e:45:5a:53:ff:d1:1a:3c:
3e:ff:fb:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:30:54 2025 by rpki-client