Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft
File: tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft (raw, json)
Hash identifier: mj7H3lqml5r0dXVOixwUNENOTP3kC0hfinhwVpxHNbs=
Subject key identifier: 6C:8A:E1:6C:E7:FC:4C:38:DC:FF:50:7F:7F:3C:15:47:90:53:BC:4E
Authority key identifier: B4:53:A2:B3:FB:83:D8:6C:78:06:CC:06:60:D8:29:11:9D:93:75:B4
Certificate issuer: /CN=b453a2b3fb83d86c7806cc0660d829119d9375b4
Certificate serial: 019611A0A8C053421DCA81DE2F4B4495A4DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft
Manifest number: 05B2
Signing time: Mon 07 Apr 2025 19:01:03 +0000
Manifest this update: Mon 07 Apr 2025 19:01:03 +0000
Manifest next update: Tue 08 Apr 2025 19:01:03 +0000
Files and hashes: 1: G4FFwIyiIU29W95QZk9-MWiLljM.roa (hash: iDaSzS67wgh1om9NMNs4mTJZEfMH7AGf6ifeuTsPDRg=)
2: tFOis_uD2Gx4BswGYNgpEZ2TdbQ.crl (hash: 3IO76Lfc+jcTNtPuOzEM56RhTSKoc5fOJcVCabPcqMw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:28:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:11:a0:a8:c0:53:42:1d:ca:81:de:2f:4b:44:95:a4:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b453a2b3fb83d86c7806cc0660d829119d9375b4
Validity
Not Before: Apr 7 19:01:03 2025 GMT
Not After : Apr 8 19:01:03 2025 GMT
Subject: CN=6c8ae16ce7fc4c38dcff507f7f3c15479053bc4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ea:7b:e8:f4:4b:e8:9c:6b:b9:04:ea:0a:6e:
f4:ac:57:a4:cb:be:b6:85:20:5f:9f:8e:6a:74:69:
24:c4:34:ff:81:07:54:96:61:df:a3:d3:6f:ef:3f:
f2:e8:7f:09:5a:53:2f:d9:b1:87:58:d2:17:28:a0:
e2:8d:70:b3:64:a1:bd:1e:70:c4:96:e1:05:06:1f:
e7:c6:52:b4:98:11:6d:cf:63:9e:46:aa:8c:45:14:
bc:86:b7:fc:2a:b7:fe:0d:89:9a:dd:61:d1:9f:2f:
43:55:b0:47:bf:43:6b:65:39:f4:00:73:7b:a0:d2:
90:4d:d4:2b:0a:b3:ca:ed:aa:79:e3:0a:de:35:60:
9e:5a:7c:a6:8c:ee:a3:e4:8d:13:d6:0a:6e:21:2c:
eb:ff:eb:07:ba:03:16:5e:d7:da:05:af:e5:8d:5d:
f8:35:b6:a5:34:1b:2a:47:e9:b2:89:cf:64:bc:6d:
df:5d:13:00:a3:ab:d9:bd:7d:78:7c:f4:fd:4c:54:
1f:d0:f5:fa:85:7b:8f:56:ec:8b:34:79:59:79:2c:
3a:48:19:1d:3a:60:bd:d6:17:85:e0:c3:52:ab:e6:
39:76:38:6e:a5:69:aa:6c:42:dc:ee:41:e9:b3:4e:
51:9a:93:d2:b3:28:98:7d:9e:84:ea:23:ce:c6:e2:
e5:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:8A:E1:6C:E7:FC:4C:38:DC:FF:50:7F:7F:3C:15:47:90:53:BC:4E
X509v3 Authority Key Identifier:
keyid:B4:53:A2:B3:FB:83:D8:6C:78:06:CC:06:60:D8:29:11:9D:93:75:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:94:0f:34:4a:c3:aa:bb:57:d2:42:0a:7f:f0:a4:2f:60:4f:
23:ce:fb:2b:1e:e9:6c:85:4c:e5:b0:47:bc:a7:de:45:cc:1b:
6f:8b:8d:a1:df:dd:6b:12:24:9b:cc:4d:2e:bd:28:d0:29:46:
67:48:c0:37:ce:b2:73:e5:3a:5d:26:04:65:e3:db:15:0d:ce:
85:3e:c8:1a:ff:3b:fa:9e:25:49:b7:7c:22:88:c1:df:50:0d:
59:37:2a:96:11:42:32:05:be:23:2e:66:29:5c:bd:a3:8a:bb:
e5:2b:41:65:61:f7:c9:bd:6d:13:06:59:51:4d:a1:ab:85:a1:
ea:9e:44:9e:c9:24:02:ab:ed:9f:64:54:be:13:83:12:1b:36:
de:69:3d:1b:f7:fa:99:f7:43:ee:6c:0c:ea:5c:50:00:b6:b8:
10:ba:4c:b5:0c:e1:d3:a1:95:af:20:e5:e4:c0:07:04:90:0d:
da:58:d4:b7:37:71:f9:06:af:ec:0d:0e:9b:25:0c:a1:ff:51:
54:5b:60:fd:c5:3b:c7:75:8c:84:6d:66:ef:6e:90:28:f4:ab:
26:db:b3:d3:c9:45:eb:16:ad:b2:34:a9:7b:52:26:9e:30:72:
a8:69:29:74:c5:7b:97:33:1d:13:36:f8:13:90:63:50:92:4b:
46:19:9a:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:13:00 2025 by rpki-client