Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft
File: jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft (raw, json)
Hash identifier: DUghPCvRWAYpo6pFZ3BfYWVne87gnZd/5DGV05M9Dj0=
Subject key identifier: 3B:0F:BC:A9:A6:CD:9C:05:1D:98:FB:FC:5A:AB:ED:90:E2:9C:B6:0E
Authority key identifier: 8E:0F:68:38:67:EF:76:9A:0A:22:AD:E1:71:18:ED:06:FA:57:B8:1F
Certificate issuer: /CN=8e0f683867ef769a0a22ade17118ed06fa57b81f
Certificate serial: 0196A209232BFF9C82CF18C344CD53714BA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jg9oOGfvdpoKIq3hcRjtBvpXuB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft
Manifest number: 0474
Signing time: Mon 05 May 2025 20:00:29 +0000
Manifest this update: Mon 05 May 2025 20:00:29 +0000
Manifest next update: Tue 06 May 2025 20:00:29 +0000
Files and hashes: 1: 960ydd6N5IVjJ8SKw0-cCFu0l5A.roa (hash: vdzIyqJL7Fj4rd7R5SOUV3BY5/WQ96AWM5L49KfXiUE=)
2: jg9oOGfvdpoKIq3hcRjtBvpXuB8.crl (hash: 3PTt/T21UJz8DDeTC1um2CAq/aMD3oa/VA3YjmqBfRY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/jg9oOGfvdpoKIq3hcRjtBvpXuB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 18:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a2:09:23:2b:ff:9c:82:cf:18:c3:44:cd:53:71:4b:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e0f683867ef769a0a22ade17118ed06fa57b81f
Validity
Not Before: May 5 20:00:29 2025 GMT
Not After : May 6 20:00:29 2025 GMT
Subject: CN=3b0fbca9a6cd9c051d98fbfc5aabed90e29cb60e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:bb:6e:ef:97:0c:95:e4:17:0e:49:12:1b:d5:
d1:d8:4d:c7:77:5c:75:db:65:43:2a:ec:36:7a:5c:
c6:97:3d:1c:90:3d:14:34:13:e9:3c:ba:4e:73:c4:
6d:41:11:bc:c9:f6:23:d7:bc:eb:6e:97:46:d3:82:
8c:42:93:77:7c:47:9c:f1:7e:8f:a6:2c:f2:74:d8:
6e:66:1b:3d:96:78:bc:5e:0c:a5:61:0d:1a:fa:e6:
5e:3c:20:5f:e2:55:43:23:9a:36:e7:1c:cf:bb:50:
53:0e:7d:63:02:be:32:be:88:6b:70:81:d2:5c:c9:
fe:ea:c0:0a:49:10:06:61:25:3d:33:7c:fe:f2:26:
33:f8:f4:6a:bd:6f:2e:c1:29:ee:59:47:53:84:c4:
45:df:a4:db:a6:66:50:dc:01:92:44:b9:60:6e:08:
c6:24:8a:36:2e:7b:7c:78:3d:45:9e:0b:73:62:84:
f9:9c:67:61:97:1f:3a:49:aa:8f:81:27:df:0c:69:
e3:e7:74:be:e9:df:e4:29:6c:bb:eb:39:64:7a:c7:
cd:8c:47:ec:16:bc:4d:63:f0:96:38:74:bb:5b:63:
10:05:e6:2b:93:00:af:42:55:f9:1c:9d:6d:75:39:
3f:45:5a:9c:6a:38:4c:47:17:a9:2f:ad:c1:ce:66:
51:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:0F:BC:A9:A6:CD:9C:05:1D:98:FB:FC:5A:AB:ED:90:E2:9C:B6:0E
X509v3 Authority Key Identifier:
keyid:8E:0F:68:38:67:EF:76:9A:0A:22:AD:E1:71:18:ED:06:FA:57:B8:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jg9oOGfvdpoKIq3hcRjtBvpXuB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/86c002-758b-495a-b9cd-7b0dc00a8c20/1/jg9oOGfvdpoKIq3hcRjtBvpXuB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:f1:96:0f:ad:4d:e5:05:7b:4f:85:56:2b:59:d8:04:96:fa:
92:be:17:7d:d2:7d:f5:e7:f4:85:47:03:c0:34:e7:44:47:e7:
68:b9:2c:12:1a:ea:93:1b:11:5a:2b:0c:78:da:6f:a5:a7:5e:
c6:72:5d:a5:53:34:09:e7:d7:7c:62:6c:f8:21:05:ec:3d:7e:
6d:56:b2:01:21:af:c3:cd:a2:d0:f1:7a:ba:d9:9a:f8:2a:cc:
98:46:ad:0e:c7:0d:12:16:2e:86:63:d7:ad:c4:ac:8e:d8:0f:
62:62:9a:fd:29:c9:ce:13:3d:57:4f:03:17:a6:ea:1b:7c:07:
9d:f6:e4:78:b3:b6:72:73:8b:1f:b8:fb:72:59:79:10:98:42:
f0:8c:a1:d5:cd:d2:50:a9:a4:44:26:e1:70:1a:a3:7d:a7:bd:
18:9f:55:42:65:ac:0f:18:2e:24:ca:ba:c7:02:5c:08:cb:16:
4c:28:f9:91:26:75:66:93:92:80:06:75:ab:e0:41:f8:e0:c4:
25:a9:86:ba:11:c6:ea:df:ad:18:43:aa:97:50:1b:6d:d4:1d:
b6:ba:b8:c7:00:e6:16:46:d8:0b:0d:cb:d0:f2:47:c8:86:44:
ba:ab:2c:8e:14:61:42:ff:4d:e9:58:60:39:5d:97:63:af:ec:
f3:71:b0:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 00:50:41 2025 by rpki-client