Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft
File: sUq6i2B0k5NHjoPDYObL110Vb4k.mft (raw, json)
Hash identifier: YluyZIcpFd5WqvoTvKpod7hJUlme+9Qd4KrFoTtNa1s=
Subject key identifier: F2:75:F9:5D:FE:5D:59:D2:1D:2E:94:81:3B:8E:CA:30:18:88:AB:F8
Authority key identifier: B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
Certificate issuer: /CN=b14aba8b60749393478e83c360e6cbd75d156f89
Certificate serial: 01965349432D5291A56A4427AAB488E83779
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft
Manifest number: 150B
Signing time: Sun 20 Apr 2025 13:00:32 +0000
Manifest this update: Sun 20 Apr 2025 13:00:32 +0000
Manifest next update: Mon 21 Apr 2025 13:00:32 +0000
Files and hashes: 1: AtRByS0zJPDiOgR2GmP-us653x0.roa (hash: FxQtASMxynUngBeMPqWpgsQ0Eb/Ckc7wV64mAxHzC3U=)
2: COiOJlNhkw7oyE7_CjG4wzI_Has.roa (hash: 8/lIfM84EcdzcDMM/2GUz4VN/PyuQhy9fYkjMmQOIDI=)
3: Lsu4SS6ThyYeppRYu6PmZ-042nc.roa (hash: uXqaykBNjJacbWPSq8V/QHVwNjfPRIGaAOgab5oa/hs=)
4: YELUwe4nammHucxrbZyOcSXhQAs.roa (hash: F7evvDSLJ4aaJnnTjKcdJcahJaI+uHzuDY+hV5o5tME=)
5: hsH-e4sppViS3iNq4F4kEU0ep0g.roa (hash: dqKnOJjGSqIH7LzL8ZBxcWScroq9fSiiauAsWgvwoYw=)
6: lAQuczRYGnewQpXm-9DH2Aa2FJM.roa (hash: cpxHeGSggctdEQY5QxkgjLkTiuh9nHgtIGZfv1ijkMo=)
7: sUq6i2B0k5NHjoPDYObL110Vb4k.crl (hash: jc/+EJezAY87DGUmduE3AHzvYDoOI6j7lkpLXW4Kwgc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft
rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 13:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:49:43:2d:52:91:a5:6a:44:27:aa:b4:88:e8:37:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14aba8b60749393478e83c360e6cbd75d156f89
Validity
Not Before: Apr 20 13:00:32 2025 GMT
Not After : Apr 21 13:00:32 2025 GMT
Subject: CN=f275f95dfe5d59d21d2e94813b8eca301888abf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ff:eb:74:98:57:be:58:3d:ab:b3:91:89:ac:
f2:19:95:0c:e5:19:cf:9b:33:5b:13:ef:05:32:c6:
6b:81:60:59:4f:89:09:18:c1:18:5f:8b:c0:00:cd:
44:1a:ae:3f:f6:f0:7d:56:d7:3d:fe:6b:3d:12:ac:
5f:e0:85:70:27:27:64:b1:e0:77:fa:c3:40:1d:b4:
6f:37:2b:ea:7a:15:14:5d:96:9b:ac:fe:f7:73:46:
4d:62:06:d0:0f:b3:e7:4b:da:75:07:14:fa:e1:db:
af:ca:49:c8:25:62:35:14:c6:a0:a9:9f:02:49:69:
5b:99:f3:aa:bf:15:03:ec:8e:f0:76:d0:e9:ae:4c:
f4:ad:5f:64:11:c6:6e:24:40:03:e0:40:d6:ab:30:
6a:d0:60:59:9b:07:78:5d:49:97:fd:f8:3e:b9:88:
50:79:4d:27:8b:8a:ac:f0:0a:bf:d8:fe:eb:31:80:
c7:9e:8b:a6:ff:ef:e0:cc:26:1c:03:52:42:f8:f8:
65:63:d0:a9:c9:2f:43:ba:45:9d:86:02:f3:0c:7e:
88:62:8c:e8:b1:7c:67:2b:fa:69:bf:d3:03:20:55:
58:e4:07:4f:d4:a5:a3:dd:63:8a:5c:52:a5:8c:7c:
a2:ab:17:31:a0:9a:0e:10:b5:48:9b:85:12:1e:6d:
38:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:75:F9:5D:FE:5D:59:D2:1D:2E:94:81:3B:8E:CA:30:18:88:AB:F8
X509v3 Authority Key Identifier:
keyid:B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:30:ff:5a:be:4c:06:67:5a:f6:7c:11:d8:f8:ea:d8:0f:af:
35:5f:57:e3:24:06:4d:1d:e6:5d:df:45:43:1d:56:71:4b:eb:
87:98:a1:b0:70:ed:99:9b:00:d8:d1:bb:0b:db:b4:d8:55:48:
17:77:87:00:78:3f:5a:95:ad:5a:6f:e2:93:6c:ae:c8:20:17:
b7:e2:2b:41:b9:53:4b:1d:67:21:e3:3e:fa:35:c7:bf:34:72:
ce:c8:9e:5a:81:c7:c3:38:b1:8b:5c:89:18:f0:8e:6f:40:6c:
0c:4c:0f:86:b0:78:49:14:bf:ee:96:24:08:70:15:dd:5c:18:
97:e0:45:37:94:f6:bd:5b:51:19:18:78:21:f7:c2:3f:b1:56:
b7:41:32:99:6c:5a:91:f9:a8:9a:43:17:d5:9f:57:2d:36:c3:
9b:2a:37:11:4e:9b:aa:9a:40:41:9b:ff:90:c0:a5:75:2f:2b:
88:16:52:20:f5:24:de:53:4f:19:e6:b0:81:1f:2a:77:5c:23:
e8:2c:8e:6b:a4:b0:b5:5f:62:f5:b8:bd:af:ff:43:f0:ce:21:
fb:d1:5c:c4:0d:47:ae:26:d2:d6:84:ef:e2:fa:ea:ea:18:d2:
44:0d:c1:f1:2f:ef:75:dd:80:88:8e:d6:c9:b4:da:53:71:9b:
4e:57:b6:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:17:33 2025 by rpki-client