Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/5036be-138b-442e-963f-57cd72957b89/1/t6hswzTG4Oq4PyUr2D7ulWklykA.mft
File: t6hswzTG4Oq4PyUr2D7ulWklykA.mft (raw, json)
Hash identifier: YDgo+s7fijmZ2oHXuDrM9ANaJ5bsKvkppRuo8LyPL5E=
Subject key identifier: 7E:ED:9C:49:B8:4A:9B:20:5D:C1:40:61:72:46:63:94:B6:7D:B3:3B
Authority key identifier: B7:A8:6C:C3:34:C6:E0:EA:B8:3F:25:2B:D8:3E:EE:95:69:25:CA:40
Certificate issuer: /CN=b7a86cc334c6e0eab83f252bd83eee956925ca40
Certificate serial: 01964067A5B0156C6C43A5F359A9AA05C1C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t6hswzTG4Oq4PyUr2D7ulWklykA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/5036be-138b-442e-963f-57cd72957b89/1/t6hswzTG4Oq4PyUr2D7ulWklykA.mft
Manifest number: 14F1
Signing time: Wed 16 Apr 2025 21:00:56 +0000
Manifest this update: Wed 16 Apr 2025 21:00:56 +0000
Manifest next update: Thu 17 Apr 2025 21:00:56 +0000
Files and hashes: 1: YDZQqJLg6f9-JdbHT4bYmgUJjh0.roa (hash: cInsk0zvLYwt9OlQZPLFwtQxycESn1Vx2ttrJFC0hi8=)
2: t6hswzTG4Oq4PyUr2D7ulWklykA.crl (hash: 3f6GwlGk04rLUrsouP8YUOXwP1aR8uq4ygpNgJ+c5/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/5036be-138b-442e-963f-57cd72957b89/1/t6hswzTG4Oq4PyUr2D7ulWklykA.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/5036be-138b-442e-963f-57cd72957b89/1/t6hswzTG4Oq4PyUr2D7ulWklykA.mft
rsync://rpki.ripe.net/repository/DEFAULT/t6hswzTG4Oq4PyUr2D7ulWklykA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:40:67:a5:b0:15:6c:6c:43:a5:f3:59:a9:aa:05:c1:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7a86cc334c6e0eab83f252bd83eee956925ca40
Validity
Not Before: Apr 16 21:00:56 2025 GMT
Not After : Apr 17 21:00:56 2025 GMT
Subject: CN=7eed9c49b84a9b205dc1406172466394b67db33b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ef:21:2e:83:3b:0c:e8:50:c7:71:4e:f4:c4:
56:8c:47:79:f9:21:1e:da:49:7c:a5:21:6f:cb:7f:
d8:41:84:56:2b:48:4b:10:f7:7d:61:6f:49:a3:ea:
98:d3:a8:d1:3a:33:5e:8a:c8:87:57:e5:07:6a:4a:
e1:04:97:8b:54:66:c8:ce:ae:11:0b:85:52:68:28:
05:7d:29:94:49:c3:2a:4b:95:89:37:07:30:bc:70:
ff:11:7d:20:78:34:10:d7:09:7f:d2:c8:10:9f:df:
4a:76:9b:1c:15:af:cf:6f:0c:3a:f5:d8:cc:43:c4:
44:bf:9d:63:26:5f:b0:42:af:92:a6:80:27:4a:a6:
f1:9d:68:33:ef:05:a8:ff:2f:3a:b0:28:b6:ae:18:
c2:f5:92:7e:0f:32:b0:0a:fe:64:4c:42:71:b7:25:
58:90:d1:20:62:28:03:de:ff:63:1c:92:a0:38:cf:
a4:01:63:a2:2a:f8:5d:b4:60:f1:ca:1a:bc:a1:8e:
14:69:22:17:da:d1:de:39:f2:a8:d3:b7:62:e5:72:
43:e3:35:cd:f5:6a:62:54:c4:aa:ee:49:5c:ac:cc:
36:84:78:c2:ec:3f:c2:63:7e:ee:07:c5:96:47:9c:
91:54:18:12:5a:aa:0a:dd:9e:fb:6c:63:9e:ed:43:
71:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:ED:9C:49:B8:4A:9B:20:5D:C1:40:61:72:46:63:94:B6:7D:B3:3B
X509v3 Authority Key Identifier:
keyid:B7:A8:6C:C3:34:C6:E0:EA:B8:3F:25:2B:D8:3E:EE:95:69:25:CA:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t6hswzTG4Oq4PyUr2D7ulWklykA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5036be-138b-442e-963f-57cd72957b89/1/t6hswzTG4Oq4PyUr2D7ulWklykA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5036be-138b-442e-963f-57cd72957b89/1/t6hswzTG4Oq4PyUr2D7ulWklykA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:78:47:18:d7:c9:10:e8:95:b7:99:c0:a2:68:25:85:cf:8e:
56:63:45:9b:5b:e5:c2:ff:2a:35:df:5b:bb:20:2c:c3:0f:e7:
3d:79:9d:d5:1a:e5:26:75:7e:85:13:b9:5c:0e:07:51:6b:b9:
b8:64:15:50:bc:60:3a:2f:7f:14:52:66:ed:05:a8:73:8e:9e:
7e:a1:01:dd:94:71:de:f4:5b:49:1a:6a:31:5f:06:6f:c2:62:
c5:dc:cd:f7:96:4f:29:ae:33:dd:85:78:c4:bd:c2:bb:d6:cf:
9d:72:fa:52:8d:84:72:18:fd:c4:e1:32:f3:39:f8:36:01:23:
b1:5c:75:cb:2b:f4:88:28:f4:44:7e:d9:c4:9d:37:80:71:e5:
01:8b:37:ff:8c:03:3f:de:ca:c7:e7:14:21:62:74:11:72:c3:
7d:22:4c:65:cb:bd:e1:65:d5:ee:91:d6:50:29:f3:42:3f:7c:
cd:a0:1b:25:5e:38:ae:85:6a:e9:41:6a:e9:db:5b:dd:15:5b:
c0:1b:0a:ee:95:95:a8:9f:03:80:ff:a1:58:7f:2d:6c:57:3c:
59:a4:3e:31:cf:4d:20:21:38:bb:e2:46:76:91:48:99:ad:e9:
1e:f1:e1:7f:31:50:85:60:ff:33:ca:f5:0d:2f:7e:b4:61:a0:
6d:8b:97:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 09:04:05 2025 by rpki-client