Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.mft
File: A9yMYjke_dTdGORoGeF3gAKpoYc.mft (raw, json)
Hash identifier: u667udhH+5FtOztPslQTd8vauD+Y+tp5ZrEp2V6uERQ=
Subject key identifier: 94:F0:F2:FA:50:AE:B5:42:CF:B3:F1:0A:38:53:FA:19:26:B1:17:51
Authority key identifier: 03:DC:8C:62:39:1E:FD:D4:DD:18:E4:68:19:E1:77:80:02:A9:A1:87
Certificate issuer: /CN=03dc8c62391efdd4dd18e46819e1778002a9a187
Certificate serial: 019644B246A79E78A37CB441D9CD1CF03C5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A9yMYjke_dTdGORoGeF3gAKpoYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.mft
Manifest number: 02B5
Signing time: Thu 17 Apr 2025 17:00:56 +0000
Manifest this update: Thu 17 Apr 2025 17:00:56 +0000
Manifest next update: Fri 18 Apr 2025 17:00:56 +0000
Files and hashes: 1: A9yMYjke_dTdGORoGeF3gAKpoYc.crl (hash: D1tl+AR6np4O+UTM9/X7lI6Yajoniya+40oUE46hZaY=)
2: KMKlBIWdbSLJxhG6mlrGw76dE8w.roa (hash: wMSY3OLmFX6U/ZLAS1pVuwf7520K0rZUrgx8A8ShiM0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.mft
rsync://rpki.ripe.net/repository/DEFAULT/A9yMYjke_dTdGORoGeF3gAKpoYc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:b2:46:a7:9e:78:a3:7c:b4:41:d9:cd:1c:f0:3c:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03dc8c62391efdd4dd18e46819e1778002a9a187
Validity
Not Before: Apr 17 17:00:56 2025 GMT
Not After : Apr 18 17:00:56 2025 GMT
Subject: CN=94f0f2fa50aeb542cfb3f10a3853fa1926b11751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9a:26:e7:02:33:c1:67:f5:42:93:cb:47:07:
6a:8b:93:70:1d:08:9b:07:a0:a5:7c:6f:74:1a:a1:
aa:c7:90:05:3e:b3:46:76:c1:09:99:a9:e2:da:4d:
18:c2:30:3d:9e:64:ec:cf:17:9d:f4:58:4c:ed:3a:
0f:f9:6d:12:4c:71:94:df:c0:56:b7:93:1b:23:4a:
66:71:df:ec:4d:2c:db:46:6a:7f:a7:4a:7c:57:c8:
0d:77:57:d3:ab:0f:c2:56:b6:e8:45:de:23:ed:b4:
1d:d7:8a:e8:94:fa:07:09:30:ab:dc:a9:d3:c4:53:
ad:a8:d8:f4:0a:ba:38:a9:64:42:ef:8b:ae:57:60:
1e:2f:0a:e5:0b:47:25:d4:a9:ec:62:48:a3:76:20:
ae:c9:ee:8b:14:4b:a0:4d:44:91:58:7b:3f:e9:bd:
81:a9:fa:e0:4b:f3:e4:15:4a:31:67:ef:9a:79:58:
b0:37:b4:ba:83:b2:57:77:a4:0d:19:4d:47:ba:54:
ef:3c:11:fe:09:f3:87:1f:1a:c0:93:bd:2e:79:82:
76:2e:38:b3:68:0e:35:aa:e3:22:b7:a0:cc:02:63:
2b:d0:47:44:2b:39:25:a8:0f:1c:f9:62:e7:63:81:
fc:8c:03:e6:c4:b2:53:9d:57:36:22:6a:4c:fc:73:
6e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:F0:F2:FA:50:AE:B5:42:CF:B3:F1:0A:38:53:FA:19:26:B1:17:51
X509v3 Authority Key Identifier:
keyid:03:DC:8C:62:39:1E:FD:D4:DD:18:E4:68:19:E1:77:80:02:A9:A1:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A9yMYjke_dTdGORoGeF3gAKpoYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d080c7-cee6-4b41-8c1c-0ef8c036b616/1/A9yMYjke_dTdGORoGeF3gAKpoYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:cb:ea:5f:37:25:08:8c:f6:f3:16:79:b4:29:cd:86:43:54:
05:a7:c5:15:e7:81:0e:dd:e0:d5:1b:f2:e3:45:d7:b9:97:fe:
57:51:08:6f:68:61:71:ad:79:0e:19:26:65:95:de:f0:9a:a0:
df:ba:d5:30:11:89:58:94:ca:cf:d3:24:f5:dd:82:58:14:b6:
d4:89:99:a9:86:39:b8:c2:ab:3a:9e:1e:37:4d:88:5c:9a:b3:
fe:bc:dc:de:b0:0a:82:a6:17:13:2b:ed:8a:63:c3:3a:bd:1e:
e4:1d:43:5c:0f:c7:3d:8e:28:8a:2e:99:01:e6:ec:c0:f8:fb:
3c:e2:a6:7f:7c:09:02:5e:af:a7:68:fb:23:77:1a:b9:95:62:
b8:8a:f4:6f:76:cc:b3:8a:7f:91:3c:1d:07:55:ce:3b:cc:c2:
18:0b:78:01:ca:01:ad:42:bc:6c:77:7a:6b:85:b1:ca:b9:e7:
60:04:4d:84:d6:72:1a:be:82:8d:54:3a:72:d7:32:8f:ab:7d:
f5:ef:da:2f:75:65:79:f1:df:a2:4b:98:a4:59:38:e1:44:08:
47:f2:59:ed:54:07:d7:9b:b3:60:43:da:9a:85:23:86:08:99:
6b:ac:85:c2:b9:a5:3c:e7:f9:38:20:7c:0b:c0:54:ee:17:cd:
d9:28:ac:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 01:22:13 2025 by rpki-client