Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
File: immKFPthpoevCmP3xlXAAfZwEoI.mft (raw, json)
Hash identifier: i/VUKj4DbgQePPADWPX3RsYXWGi80X+FNKcctrD2arc=
Subject key identifier: 71:7E:C0:8D:B4:47:4E:B9:25:A6:AB:C2:6B:9D:9D:AC:7B:F1:C4:5D
Authority key identifier: 8A:69:8A:14:FB:61:A6:87:AF:0A:63:F7:C6:55:C0:01:F6:70:12:82
Certificate issuer: /CN=8a698a14fb61a687af0a63f7c655c001f6701282
Certificate serial: 01958F617DFA8C626541D33A8D4F6E355084
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
Manifest number: 0231
Signing time: Thu 13 Mar 2025 12:01:25 +0000
Manifest this update: Thu 13 Mar 2025 12:01:25 +0000
Manifest next update: Fri 14 Mar 2025 12:01:25 +0000
Files and hashes: 1: P1m93kQnbl9hCPZ7gjvBSz2QduY.roa (hash: Vw3jwkUFPb+4FTO/pTKFTwQSjK1reP+BMicWKiuZXfs=)
2: immKFPthpoevCmP3xlXAAfZwEoI.crl (hash: Bt/NKAcWJh+MSf3VDSz+unwjKOsvFiejWnhBYTMjdQg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 12:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8f:61:7d:fa:8c:62:65:41:d3:3a:8d:4f:6e:35:50:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a698a14fb61a687af0a63f7c655c001f6701282
Validity
Not Before: Mar 13 12:01:25 2025 GMT
Not After : Mar 14 12:01:25 2025 GMT
Subject: CN=717ec08db4474eb925a6abc26b9d9dac7bf1c45d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ca:50:56:2c:63:f9:2c:d5:bd:92:46:65:c9:
c1:5d:de:8f:36:e8:12:10:b0:da:f3:b4:b7:fe:00:
48:20:a5:52:51:37:20:aa:a3:37:c9:dd:64:55:01:
77:74:a7:e1:a3:48:23:9c:f6:15:51:78:99:7a:0d:
19:14:5f:a2:9d:93:59:37:82:a3:2b:34:cc:19:1e:
91:92:2b:40:c4:92:12:31:f8:5d:b5:c1:07:a0:80:
17:eb:14:80:bd:42:38:34:dd:27:7b:4c:ef:bb:eb:
da:a3:8b:33:89:a6:f1:7c:e7:a9:17:9c:75:cc:09:
c1:0f:2f:d0:26:37:42:09:48:c1:b0:33:e6:0b:3a:
a5:2c:f0:8c:53:70:ee:0d:7b:1f:7a:22:b5:69:a8:
ab:c6:89:23:73:c6:61:f2:ce:4b:82:f0:bc:09:0f:
1a:27:86:22:86:2f:2a:48:4b:9c:ed:c9:ab:8c:3e:
cd:83:9e:25:fc:66:17:76:fc:d1:9a:82:1e:49:13:
a0:a5:20:a6:34:1a:23:84:74:b5:8c:fb:76:19:63:
76:09:14:21:72:57:40:de:0d:65:3e:f2:6d:cb:18:
07:51:05:2f:59:43:cf:0f:bd:40:96:95:79:8b:f0:
62:ca:8d:82:f0:fb:49:0e:4a:e4:12:2e:1a:f9:01:
ff:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:7E:C0:8D:B4:47:4E:B9:25:A6:AB:C2:6B:9D:9D:AC:7B:F1:C4:5D
X509v3 Authority Key Identifier:
keyid:8A:69:8A:14:FB:61:A6:87:AF:0A:63:F7:C6:55:C0:01:F6:70:12:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/immKFPthpoevCmP3xlXAAfZwEoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/33d226-7c43-4c83-94ad-218289d81c53/1/immKFPthpoevCmP3xlXAAfZwEoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:b5:43:ee:7b:43:94:9b:f6:02:19:0f:92:58:eb:42:0b:9b:
fd:b5:de:63:0b:19:3b:cd:43:13:83:ad:a0:8a:2b:13:2b:59:
c6:6c:63:14:3c:1f:8c:2e:52:1a:20:7b:b2:7c:2e:9a:51:9a:
75:5e:6f:10:94:36:34:98:c3:00:bd:dd:42:3b:b9:a4:33:53:
74:ca:72:e9:59:46:dd:53:e2:92:e5:01:12:d4:a1:6d:5f:dd:
4b:ea:ea:28:f7:58:16:18:ad:c6:b1:8f:ce:75:dd:fa:30:13:
a9:a7:4f:02:10:36:6f:49:b7:77:f7:dd:85:f0:24:cd:77:aa:
13:d5:ca:6b:60:de:5f:75:06:60:e2:de:8e:cd:c2:86:89:d1:
20:50:fa:d8:35:c9:0b:1c:71:9d:7c:4b:a4:b6:91:5b:4a:b7:
da:7f:6c:76:7b:68:e9:b1:bd:b4:d3:97:80:e0:d3:d9:c3:f2:
30:a6:d1:d8:a7:9a:6e:ab:cc:0e:d2:bd:1b:c6:71:61:50:92:
f2:9f:9d:25:a5:20:7c:41:6f:4c:a4:03:71:d9:5b:7f:f5:84:
4d:1e:63:f8:6e:6b:35:80:ce:83:10:64:d3:cf:33:c0:83:12:
63:29:2f:39:c1:3e:2d:e6:3f:b8:2e:f3:cf:b8:c4:38:f1:ba:
c4:c2:90:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:50:39 2025 by rpki-client