Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.mft
File: k0S0h58Z7nGaNRRjABcm9obWWe8.mft (raw, json)
Hash identifier: 70tT/DCdX6Q6CKBewck7qOz/IgIDx36DLaTp14hym30=
Subject key identifier: 0E:A2:F3:32:FE:43:0E:8D:98:36:78:C1:8E:08:A8:6D:BC:1C:7A:D6
Authority key identifier: 93:44:B4:87:9F:19:EE:71:9A:35:14:63:00:17:26:F6:86:D6:59:EF
Certificate issuer: /CN=9344b4879f19ee719a351463001726f686d659ef
Certificate serial: 019590AAC168B2C35656A290D3F3D46E5FF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k0S0h58Z7nGaNRRjABcm9obWWe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.mft
Manifest number: 1498
Signing time: Thu 13 Mar 2025 18:01:04 +0000
Manifest this update: Thu 13 Mar 2025 18:01:04 +0000
Manifest next update: Fri 14 Mar 2025 18:01:04 +0000
Files and hashes: 1: Sp6LS-Lr7aNgCkiG-x4vIYL0m7M.roa (hash: 4a/RW16MYDyNLA++zl3ynSiVWGswaNsaMa2lua4RkWg=)
2: k0S0h58Z7nGaNRRjABcm9obWWe8.crl (hash: 3EGNCs68n82dKzeM3LVTmn1fJbjx5sQW1nrGO56VBbA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.mft
rsync://rpki.ripe.net/repository/DEFAULT/k0S0h58Z7nGaNRRjABcm9obWWe8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 15:28:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:aa:c1:68:b2:c3:56:56:a2:90:d3:f3:d4:6e:5f:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9344b4879f19ee719a351463001726f686d659ef
Validity
Not Before: Mar 13 18:01:04 2025 GMT
Not After : Mar 14 18:01:04 2025 GMT
Subject: CN=0ea2f332fe430e8d983678c18e08a86dbc1c7ad6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:7b:b3:f5:2e:7c:fa:62:c6:23:a3:7f:43:20:
3d:32:26:5f:83:48:32:33:cd:ee:c4:be:e0:7f:55:
2a:34:a1:3d:b8:cd:02:03:96:ab:31:c4:ce:2d:5e:
07:25:ec:84:b2:73:2a:6d:ad:f6:18:86:51:dd:71:
f9:73:96:ab:b1:f9:b4:b2:bd:66:10:6b:eb:78:5d:
d7:b9:ea:d6:f9:cf:65:c6:86:19:14:73:44:73:19:
fe:a3:fe:f5:7a:e6:de:4e:a1:0c:d0:ac:3f:3d:a5:
9d:38:5c:18:0c:c8:fc:1e:9d:c5:21:69:d0:54:14:
bc:d6:14:64:08:37:d2:f1:a1:27:8e:45:b4:d8:90:
03:10:4f:a1:b9:75:54:c8:1e:14:33:09:fb:b3:fd:
12:1f:3e:35:f4:a7:8f:a6:6f:24:0f:82:13:b6:bc:
f5:32:60:e9:1c:09:1d:cc:36:c5:5c:13:9b:70:db:
8f:9f:b2:8e:e7:f9:70:78:7a:07:72:b6:ad:92:80:
8e:55:7a:5f:b0:9b:af:8b:92:67:07:e6:a1:0c:ac:
6f:b4:b1:b5:eb:20:43:9a:1e:e4:86:ee:2d:f7:34:
8c:fb:e7:60:d6:81:85:86:fa:4e:d9:2a:52:5f:2a:
ca:3b:70:18:22:cb:9e:88:17:7d:90:cd:93:1f:65:
0c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:A2:F3:32:FE:43:0E:8D:98:36:78:C1:8E:08:A8:6D:BC:1C:7A:D6
X509v3 Authority Key Identifier:
keyid:93:44:B4:87:9F:19:EE:71:9A:35:14:63:00:17:26:F6:86:D6:59:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k0S0h58Z7nGaNRRjABcm9obWWe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:fa:1b:32:e8:f1:b4:02:80:b4:67:fc:1a:78:91:f9:71:6c:
68:b7:3f:5e:a5:0f:71:11:8d:ad:80:2b:dd:0e:b0:58:87:5d:
cb:af:59:c0:ba:93:52:be:2c:39:9f:91:41:9f:db:3e:b1:f7:
1d:f6:b0:54:e7:db:fa:b7:6b:3c:fe:0f:cf:1c:40:92:2f:79:
d6:fa:f8:4a:fd:d8:02:dd:68:66:2e:49:8b:0d:c5:1f:b6:6d:
e4:1b:78:f8:8e:53:ce:55:2f:c7:be:db:cc:b4:2a:a2:36:ce:
04:c5:04:83:17:00:36:51:5d:fc:e2:38:68:e5:50:97:20:8a:
47:45:27:b3:26:04:49:bb:04:c3:d4:a3:60:20:d2:ae:a3:52:
75:64:e3:6e:6c:33:78:0c:0a:a3:b9:0c:b9:d4:28:df:fa:b6:
0c:46:bd:ef:6f:7b:49:33:ca:4b:59:81:68:84:ca:e5:30:5c:
55:d3:0f:04:a4:22:b6:56:2f:1b:5b:50:c2:85:2e:31:1c:9d:
44:f1:a8:01:1b:57:53:bc:1c:3d:3c:dd:94:76:20:7d:b5:3e:
e0:4e:0c:ec:d2:9d:34:85:6a:fc:77:9a:b7:b3:da:48:fa:82:
f6:5e:40:60:24:cc:6f:e2:1a:ef:b8:ec:0d:3e:18:34:89:f6:
ac:c0:75:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:30:52 2025 by rpki-client