Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft
File: m9o0FBNxKfo4psYcSWq4thQJzgI.mft (raw, json)
Hash identifier: 3MZgAwptAGIK1gqcMtqxU3t/nx14znvu/EZ81H188Qc=
Subject key identifier: 68:83:04:CA:00:9A:09:75:70:2A:F8:81:0F:66:5E:BD:98:A0:DC:91
Authority key identifier: 9B:DA:34:14:13:71:29:FA:38:A6:C6:1C:49:6A:B8:B6:14:09:CE:02
Certificate issuer: /CN=9bda3414137129fa38a6c61c496ab8b61409ce02
Certificate serial: 019659F069EBAD15EE47A5747139459AE6BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9o0FBNxKfo4psYcSWq4thQJzgI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft
Manifest number: 14FE
Signing time: Mon 21 Apr 2025 20:00:50 +0000
Manifest this update: Mon 21 Apr 2025 20:00:50 +0000
Manifest next update: Tue 22 Apr 2025 20:00:50 +0000
Files and hashes: 1: U6nb6DpUzJV_xi4UhiA5O3aKdZE.roa (hash: at4iy2FPtAChzVS5IZxWuVWW9v3c10T2DEm7KMEtSwY=)
2: m9o0FBNxKfo4psYcSWq4thQJzgI.crl (hash: tpY9nyTTra7iFRB5Fpgsy+qp4nPYOC8yjxQ5+WrhlIE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft
rsync://rpki.ripe.net/repository/DEFAULT/m9o0FBNxKfo4psYcSWq4thQJzgI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:f0:69:eb:ad:15:ee:47:a5:74:71:39:45:9a:e6:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bda3414137129fa38a6c61c496ab8b61409ce02
Validity
Not Before: Apr 21 20:00:50 2025 GMT
Not After : Apr 22 20:00:50 2025 GMT
Subject: CN=688304ca009a0975702af8810f665ebd98a0dc91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:58:9e:ff:23:aa:be:6f:6f:e5:b6:d7:56:66:
03:4c:a8:bc:41:04:05:a7:06:c7:31:f6:59:ab:8c:
9e:59:f6:0c:e2:a9:0f:29:7f:81:e0:f3:81:26:87:
34:7e:eb:01:70:5f:9d:ea:88:43:79:ec:b5:2b:a6:
ba:1c:dd:d8:fb:05:be:6c:ee:ed:a8:92:55:6e:6c:
68:f3:98:70:53:26:d9:2f:12:fe:c6:21:05:64:77:
60:64:e9:8b:ca:b0:29:7b:80:f8:44:01:0b:6b:50:
3f:b6:46:18:b5:a9:ad:c1:ea:89:5a:51:0d:e7:7e:
73:8e:c4:e9:b9:45:cb:ed:f5:be:fe:14:d3:a7:06:
02:c0:71:41:5f:05:2d:c2:92:a9:8a:87:b0:38:85:
d3:c2:56:2c:6c:2a:03:e6:3f:53:56:78:f9:d1:39:
f8:a6:7e:49:ad:7a:32:4a:3c:7e:71:b6:c9:48:c2:
7f:28:e6:aa:ad:eb:63:ca:39:12:23:56:1b:38:fa:
15:cb:e1:15:2e:1d:28:ca:86:d6:cb:c3:67:e5:a6:
5f:cf:b4:70:e5:70:9c:89:a0:51:32:a6:46:9c:80:
d8:dc:de:99:19:0e:b1:70:d2:35:70:1b:e6:9f:f2:
13:60:7f:dc:82:c0:ef:2c:f3:70:e6:84:30:1e:6e:
bf:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:83:04:CA:00:9A:09:75:70:2A:F8:81:0F:66:5E:BD:98:A0:DC:91
X509v3 Authority Key Identifier:
keyid:9B:DA:34:14:13:71:29:FA:38:A6:C6:1C:49:6A:B8:B6:14:09:CE:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9o0FBNxKfo4psYcSWq4thQJzgI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:46:39:cd:5a:27:2a:11:ae:f6:5a:f5:4e:87:67:cb:64:3a:
df:89:3b:94:8e:15:0c:e1:80:2f:6a:b9:fe:7b:25:67:4d:34:
13:58:86:b3:ea:83:15:80:ee:34:a2:08:0a:76:a2:1b:0f:03:
87:e8:62:8f:81:1e:a8:0d:23:f6:61:58:9e:15:7d:d0:ff:d9:
8c:ad:d0:2b:47:35:c2:28:8e:31:29:c9:3b:27:f9:06:57:d8:
57:e1:96:60:30:a8:bf:24:ad:c4:51:b0:86:d9:f4:72:74:9e:
fd:ee:16:be:88:b0:d9:73:52:54:97:07:6c:06:b2:6c:73:dc:
ac:1c:90:19:0a:70:f0:15:a8:1b:3a:8d:85:b1:71:e4:6b:a5:
7c:8c:65:98:39:df:9e:d1:0b:1b:c0:36:47:28:57:6d:db:9e:
ff:b1:82:1f:19:d8:ed:c7:84:73:ce:7f:f0:63:ea:c0:ee:98:
40:0a:8b:f8:41:c7:90:8b:21:c6:fe:7a:32:c4:d0:5b:85:97:
f5:7c:f8:9d:29:56:34:dc:8c:fc:da:05:9c:01:2b:d7:8e:e6:
06:43:b5:3e:04:ed:dd:9d:75:a2:cd:f4:ea:f2:0f:3d:7d:2f:
f1:2b:5b:d6:ed:66:dd:33:76:07:dd:fd:45:40:76:46:d5:5f:
4b:65:21:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:07:08 2025 by rpki-client