Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/f499cd-fad6-4fb0-9be7-4a7904ffc8e1/1/sejPc4YgDf2psGfbnHfTBmDXTNo.mft
File: sejPc4YgDf2psGfbnHfTBmDXTNo.mft (raw, json)
Hash identifier: HPOgscJz2ChfGBz4uD6BUL1Aild/CEnmZzYpQcNxkI8=
Subject key identifier: 2A:B9:95:13:28:7C:B6:D9:55:F3:B2:36:1E:50:87:B0:A4:0F:C4:D8
Authority key identifier: B1:E8:CF:73:86:20:0D:FD:A9:B0:67:DB:9C:77:D3:06:60:D7:4C:DA
Certificate issuer: /CN=b1e8cf7386200dfda9b067db9c77d30660d74cda
Certificate serial: 0196A1D24851BC9A53042689A901BE10AF4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sejPc4YgDf2psGfbnHfTBmDXTNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/f499cd-fad6-4fb0-9be7-4a7904ffc8e1/1/sejPc4YgDf2psGfbnHfTBmDXTNo.mft
Manifest number: 0A3F
Signing time: Mon 05 May 2025 19:00:34 +0000
Manifest this update: Mon 05 May 2025 19:00:34 +0000
Manifest next update: Tue 06 May 2025 19:00:34 +0000
Files and hashes: 1: AXjvsvQT0QHgjGJCOykWGFNYr-c.roa (hash: 7RT23qfYCEUyYP4ewoJmIzu1W/Zc3geSmO8k80S5/ts=)
2: sejPc4YgDf2psGfbnHfTBmDXTNo.crl (hash: 62AoW1uyY4xYJUe7ccVjrXKyhiaE8MHuH5sFyFRwxnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/f499cd-fad6-4fb0-9be7-4a7904ffc8e1/1/sejPc4YgDf2psGfbnHfTBmDXTNo.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/f499cd-fad6-4fb0-9be7-4a7904ffc8e1/1/sejPc4YgDf2psGfbnHfTBmDXTNo.mft
rsync://rpki.ripe.net/repository/DEFAULT/sejPc4YgDf2psGfbnHfTBmDXTNo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 18:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a1:d2:48:51:bc:9a:53:04:26:89:a9:01:be:10:af:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1e8cf7386200dfda9b067db9c77d30660d74cda
Validity
Not Before: May 5 19:00:34 2025 GMT
Not After : May 6 19:00:34 2025 GMT
Subject: CN=2ab99513287cb6d955f3b2361e5087b0a40fc4d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:22:1f:b7:91:e0:d2:c4:e6:94:8c:ca:46:a1:
83:72:58:c8:4c:da:6b:f6:82:43:05:76:4c:2b:19:
ef:a5:2b:59:12:5f:01:d1:d6:30:e6:58:95:d5:f9:
18:1b:44:ff:30:3d:42:a7:dd:73:e0:51:12:c0:c2:
76:62:23:7b:fc:03:4f:3e:73:d2:51:4c:ed:49:74:
b2:52:04:00:81:9d:88:d2:b7:54:56:b3:f8:28:02:
0d:3c:c8:a8:f6:f8:88:7e:2e:19:cc:b1:7e:35:ca:
b7:71:39:09:96:fa:12:ec:66:c4:05:e9:d9:e6:7f:
7e:28:65:b0:f5:0f:28:a4:07:20:7e:cb:4c:56:93:
8a:52:35:57:ac:ee:f5:a8:57:3a:c4:85:fa:84:42:
7e:1e:f9:7f:ba:00:5c:fd:94:aa:e1:f4:37:bf:77:
1c:26:d4:c9:f9:c7:57:49:f7:c4:2e:3c:f7:d9:3d:
8a:92:c8:51:88:93:cd:a3:50:8e:fb:55:d4:c3:45:
57:e7:9c:fd:2d:47:b6:56:ae:9c:bc:08:41:85:62:
29:5d:90:a3:40:38:8c:c9:5a:b2:65:96:03:46:7a:
2a:8b:a0:66:55:23:90:9b:76:a0:fe:a3:cf:97:07:
fc:dd:41:31:86:f0:a5:91:7b:83:eb:e5:3b:4c:ff:
c7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:B9:95:13:28:7C:B6:D9:55:F3:B2:36:1E:50:87:B0:A4:0F:C4:D8
X509v3 Authority Key Identifier:
keyid:B1:E8:CF:73:86:20:0D:FD:A9:B0:67:DB:9C:77:D3:06:60:D7:4C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sejPc4YgDf2psGfbnHfTBmDXTNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/f499cd-fad6-4fb0-9be7-4a7904ffc8e1/1/sejPc4YgDf2psGfbnHfTBmDXTNo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/f499cd-fad6-4fb0-9be7-4a7904ffc8e1/1/sejPc4YgDf2psGfbnHfTBmDXTNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:39:97:fa:30:c7:c5:e1:a3:5d:c0:e5:02:cd:06:4c:63:76:
02:aa:f6:11:f0:09:93:d5:37:59:59:bb:48:08:21:d0:0a:e6:
cb:9f:20:50:22:2b:b6:39:71:ae:8d:21:3b:45:4b:d1:30:57:
b4:b0:28:bd:0c:d9:0b:c9:de:ee:99:85:a3:66:eb:9d:5a:a7:
52:0e:b4:30:1b:ba:fa:e6:56:b8:34:79:aa:22:89:e6:7e:5d:
bf:98:61:57:25:5b:63:49:36:20:9f:f7:ca:77:13:73:ad:8b:
ad:83:f8:f2:97:48:bb:ae:cb:af:c0:0c:dc:c8:e9:ad:b3:e8:
db:b0:f0:0e:9c:30:51:5d:b3:be:b8:6d:aa:44:fc:84:f0:d3:
4a:36:ab:13:07:01:d5:5d:44:76:09:38:f8:cd:c4:88:88:82:
03:f2:4c:26:86:1e:e8:cc:f1:3b:ba:50:08:f0:ad:43:75:0a:
f3:60:76:8e:63:5f:1e:d8:ee:1f:0d:f3:2a:a9:0a:98:4a:93:
d7:9a:65:91:61:a7:9a:9e:48:0a:92:b8:4c:b8:3d:a2:a8:44:
e8:43:ad:7a:c2:57:15:26:6c:12:4f:df:25:eb:43:6d:89:8e:
90:37:f8:0a:fb:48:90:77:68:de:fa:de:78:59:d4:2e:22:73:
6d:49:a3:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 00:25:31 2025 by rpki-client