Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft
File: _32KebrU-YPQxJiVr1DqigPrxw0.mft (raw, json)
Hash identifier: JIgDZ1SLSjpMHfnxnoyQkXLN3gvD+nYlIxzJaeqJ6DY=
Subject key identifier: DD:EB:4F:30:74:D2:06:67:43:61:A4:4B:7F:83:8E:2A:3A:DD:6E:92
Authority key identifier: FF:7D:8A:79:BA:D4:F9:83:D0:C4:98:95:AF:50:EA:8A:03:EB:C7:0D
Certificate issuer: /CN=ff7d8a79bad4f983d0c49895af50ea8a03ebc70d
Certificate serial: 019616224CB920119919CDBD09A6154B4220
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_32KebrU-YPQxJiVr1DqigPrxw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft
Manifest number: 0B86
Signing time: Tue 08 Apr 2025 16:01:08 +0000
Manifest this update: Tue 08 Apr 2025 16:01:08 +0000
Manifest next update: Wed 09 Apr 2025 16:01:08 +0000
Files and hashes: 1: 8LrCpJVZw00cB6v7Jxmu5danMVM.roa (hash: LkYRg4fRX+WYVMtQ+HSrUSifp72hGXmKbB4Mx1yLYEo=)
2: IDEflvuhIV83KNodcAdWAptJFNk.roa (hash: zpiVwHp2RqR56XaB25fCyR/sdSQ8zP/Sy5LNAYg81lo=)
3: R3FrJ7azRWeXMsdR6lJsvB98e9w.roa (hash: OLdkmQ3yiWqrLjLdUAsWXaOdC7/R8xEElXuDqmUjdPs=)
4: _32KebrU-YPQxJiVr1DqigPrxw0.crl (hash: 4hFBp/T2gp17ouefdaK3hwZuwwI5BJ4bHj3XiEXPdj4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft
rsync://rpki.ripe.net/repository/DEFAULT/_32KebrU-YPQxJiVr1DqigPrxw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 13:43:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:16:22:4c:b9:20:11:99:19:cd:bd:09:a6:15:4b:42:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff7d8a79bad4f983d0c49895af50ea8a03ebc70d
Validity
Not Before: Apr 8 16:01:08 2025 GMT
Not After : Apr 9 16:01:08 2025 GMT
Subject: CN=ddeb4f3074d206674361a44b7f838e2a3add6e92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:a6:55:f1:4b:cf:79:c8:aa:fa:d8:44:9b:63:
1b:00:71:90:e6:dc:1e:b5:c2:70:0e:f3:7a:8a:ef:
c4:91:3d:71:55:fa:e5:38:2e:b8:50:e6:7a:2e:8b:
ff:b5:9a:90:89:6e:94:7e:43:28:cb:26:11:16:2f:
c1:bc:ca:c8:0c:8a:c5:52:7f:da:3c:71:5d:89:6f:
01:08:9d:88:68:28:66:92:37:65:b7:16:de:05:c5:
84:82:1d:5e:e3:d0:64:fe:ed:7b:27:9b:25:ed:0a:
85:cf:9b:b9:52:8c:e4:71:53:19:91:4b:4a:eb:82:
83:1d:c8:62:03:71:6f:87:35:11:a7:a5:b1:fa:6b:
01:5e:86:d6:d2:1c:f8:38:27:45:29:1f:fa:40:ae:
9a:ee:99:ba:43:4a:4c:33:ba:5b:0c:ce:6f:c3:a6:
12:14:a4:52:f2:c1:b7:93:90:d1:db:28:29:7f:0a:
26:9b:8a:85:5e:25:4f:b5:6a:14:3e:89:71:17:48:
f1:d2:67:a6:4c:9b:cd:ab:f8:3f:69:db:1c:71:51:
4d:d5:e8:47:a9:c6:1b:95:a2:b1:cb:1a:55:4f:fa:
24:fc:77:47:2b:76:6c:0a:f7:64:f5:b5:29:3a:52:
ef:bf:77:3c:f1:e3:17:c9:bb:05:9f:df:de:59:da:
40:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:EB:4F:30:74:D2:06:67:43:61:A4:4B:7F:83:8E:2A:3A:DD:6E:92
X509v3 Authority Key Identifier:
keyid:FF:7D:8A:79:BA:D4:F9:83:D0:C4:98:95:AF:50:EA:8A:03:EB:C7:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_32KebrU-YPQxJiVr1DqigPrxw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:b9:2a:0f:87:7d:77:54:82:82:23:fa:58:05:4f:bb:fc:81:
90:b2:0a:37:60:46:36:e4:cc:4f:ca:dc:96:4c:7c:23:9d:a7:
f5:8d:4b:ad:22:0b:5d:af:8d:82:51:7c:69:ff:c5:01:2f:7e:
f7:89:56:6a:f2:90:73:3b:c5:13:e2:fd:99:c7:06:70:b1:f5:
d9:28:d0:15:37:76:b0:98:2f:6a:81:6a:b9:80:c2:f4:80:66:
5a:88:01:90:7d:64:ea:9d:3b:bb:bd:be:9d:4d:f2:26:78:cc:
01:03:62:16:e3:c9:9b:00:a5:8d:85:7c:11:3c:29:63:82:c7:
a9:03:22:25:f5:fe:27:f0:1b:2e:48:40:15:f6:4e:5b:f1:d2:
c5:17:cd:9b:91:9b:d1:24:11:bb:06:b5:c4:7a:8f:1b:0e:6d:
78:2b:52:73:e5:cf:b6:6d:93:d5:e9:00:2c:4a:31:72:05:b2:
17:1b:94:72:8d:98:7f:9a:2f:4f:c0:78:98:ab:73:a3:42:b4:
6b:df:8e:1d:ed:56:f1:38:3b:ea:82:4d:84:a6:dd:3c:66:79:
c8:23:17:00:2f:a8:34:c7:95:44:95:9f:34:74:31:3f:fa:77:
ac:ff:31:e5:7f:e6:dd:e2:81:7b:b8:04:72:5d:a7:65:c7:86:
0a:b3:25:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 21:08:38 2025 by rpki-client