Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
File: f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft (raw, json)
Hash identifier: DDtfkV68QN90C04q6dJGzu61oqF/TeTLbiYvH6YX2qI=
Subject key identifier: 2A:8E:F3:6A:E9:71:96:88:D6:BA:ED:AF:F1:AF:0B:91:68:38:74:30
Authority key identifier: 7F:85:E9:90:35:43:97:E3:6C:0C:A9:03:A0:C6:20:C7:70:9E:FD:CD
Certificate issuer: /CN=7f85e990354397e36c0ca903a0c620c7709efdcd
Certificate serial: 01964632ACF91C9C994D9D28A0CDFA3309C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
Manifest number: 0124
Signing time: Fri 18 Apr 2025 00:00:48 +0000
Manifest this update: Fri 18 Apr 2025 00:00:48 +0000
Manifest next update: Sat 19 Apr 2025 00:00:48 +0000
Files and hashes: 1: XIAriGwKiXIV89XyokuVSU6ok94.roa (hash: hF3zC1oiW03gwgTs9lo/n7vUmEiv8dfR/NI1cnnwuzk=)
2: f4XpkDVDl-NsDKkDoMYgx3Ce_c0.crl (hash: Ckkk6P2LaedjsgSM5I+rDOq4WxF8Qx1TOsDIb/XEZow=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
rsync://rpki.ripe.net/repository/DEFAULT/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 00:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:46:32:ac:f9:1c:9c:99:4d:9d:28:a0:cd:fa:33:09:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f85e990354397e36c0ca903a0c620c7709efdcd
Validity
Not Before: Apr 18 00:00:48 2025 GMT
Not After : Apr 19 00:00:48 2025 GMT
Subject: CN=2a8ef36ae9719688d6baedaff1af0b9168387430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2a:b1:3e:29:63:55:95:a5:a2:6b:91:da:29:
45:3c:b4:2c:61:e5:c9:ac:13:8d:65:30:db:e4:6d:
5e:35:64:8c:93:c1:c7:f8:79:74:9c:52:ae:e3:e8:
55:48:b5:d0:c6:54:b0:e6:27:5a:09:e0:7a:db:a6:
f4:08:cc:ab:1a:7a:90:0a:ad:b0:47:9e:bd:34:dc:
d6:eb:58:99:04:02:c3:01:42:40:97:a0:8a:06:47:
68:e6:dc:c2:b4:e6:5f:c8:c6:78:30:eb:c6:ea:a2:
b9:0d:d0:41:dc:60:cf:d8:54:cb:65:29:79:62:62:
e0:71:e2:bf:1d:36:53:52:d2:18:97:0d:bb:64:c3:
a6:17:ce:54:54:f8:07:fd:3e:2b:9f:fc:a4:8b:af:
cf:76:50:ff:5f:cc:4d:28:0e:eb:19:42:60:ac:54:
77:4b:33:4b:87:e3:a8:73:4d:50:af:e7:82:9e:f7:
bc:a6:a7:20:2b:c9:92:d4:2f:a1:df:e9:7c:28:f8:
e8:ae:eb:45:97:73:b7:7d:db:c4:6d:6d:e4:aa:a2:
9d:8c:9d:0f:ab:43:1c:8e:65:80:f8:62:91:92:71:
30:27:e2:2e:7e:d0:1b:73:c0:61:21:45:68:3c:57:
e2:2d:7b:e7:a2:23:76:1d:3e:de:21:e6:73:c0:6f:
c3:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:8E:F3:6A:E9:71:96:88:D6:BA:ED:AF:F1:AF:0B:91:68:38:74:30
X509v3 Authority Key Identifier:
keyid:7F:85:E9:90:35:43:97:E3:6C:0C:A9:03:A0:C6:20:C7:70:9E:FD:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4ae175-55d0-484d-8d11-8c9d5823bad9/1/f4XpkDVDl-NsDKkDoMYgx3Ce_c0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:cd:b0:83:20:60:d9:5b:7a:22:ad:07:56:06:0e:21:70:08:
f9:5f:4d:a7:75:e0:1e:f3:7c:e4:ad:22:ce:77:f0:14:14:32:
81:be:73:b6:8a:e8:3c:e4:54:34:6c:fe:fa:1e:11:46:91:8a:
de:7c:a2:95:7c:86:46:c0:49:9b:84:3b:73:4f:9f:3f:b4:33:
ca:dc:cc:19:61:47:23:ff:d0:d7:6e:a3:33:d5:ef:14:1d:b2:
0b:ff:df:49:1a:19:f0:f9:d7:f9:5b:70:d0:06:57:eb:44:84:
9b:35:03:36:1a:a0:90:40:ba:30:9b:97:63:9c:54:68:d0:0c:
07:f9:a3:6a:cf:21:84:8e:1c:ef:86:06:ba:a0:21:5e:d5:11:
b1:a2:35:d0:39:b6:a2:c9:eb:66:54:61:13:7f:d3:07:76:69:
c1:73:8f:b0:57:bd:1e:52:59:9a:61:76:d9:03:82:c9:97:b9:
9b:c0:75:51:3e:98:f1:9b:fd:be:9c:38:a3:37:f8:6e:37:d4:
c4:6c:a4:27:d7:16:b0:ba:19:e4:3c:f4:be:77:03:a3:9f:9a:
8d:bf:ad:79:97:a5:78:34:3f:ea:6c:a4:69:5f:10:48:fd:1a:
11:5f:23:be:ec:44:75:25:c6:37:75:89:13:69:54:b1:0a:71:
bf:39:23:52
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZGMqz5HJyZTZ0ooM36MwnIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdmODVlOTkwMzU0Mzk3ZTM2YzBjYTkwM2EwYzYyMGM3NzA5
ZWZkY2QwHhcNMjUwNDE4MDAwMDQ4WhcNMjUwNDE5MDAwMDQ4WjAzMTEwLwYDVQQD
EygyYThlZjM2YWU5NzE5Njg4ZDZiYWVkYWZmMWFmMGI5MTY4Mzg3NDMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1SqxPiljVZWlomuR2ilFPLQsYeXJ
rBONZTDb5G1eNWSMk8HH+Hl0nFKu4+hVSLXQxlSw5idaCeB626b0CMyrGnqQCq2w
R569NNzW61iZBALDAUJAl6CKBkdo5tzCtOZfyMZ4MOvG6qK5DdBB3GDP2FTLZSl5
YmLgceK/HTZTUtIYlw27ZMOmF85UVPgH/T4rn/yki6/PdlD/X8xNKA7rGUJgrFR3
SzNLh+Ooc01Qr+eCnve8pqcgK8mS1C+h3+l8KPjorutFl3O3fdvEbW3kqqKdjJ0P
q0McjmWA+GKRknEwJ+IuftAbc8BhIUVoPFfiLXvnoiN2HT7eIeZzwG/DiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCqO82rpcZaI1rrtr/GvC5FoOHQwMB8GA1UdIwQY
MBaAFH+F6ZA1Q5fjbAypA6DGIMdwnv3NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZjRYcGtEVkRsLU5zREtrRG9NWWd4M0NlX2MwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS80YWUxNzUtNTVkMC00ODRkLThkMTEt
OGM5ZDU4MjNiYWQ5LzEvZjRYcGtEVkRsLU5zREtrRG9NWWd4M0NlX2MwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS80YWUxNzUtNTVkMC00ODRkLThkMTEtOGM5ZDU4MjNiYWQ5
LzEvZjRYcGtEVkRsLU5zREtrRG9NWWd4M0NlX2MwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmc2wgyBg
2Vt6Iq0HVgYOIXAI+V9Np3XgHvN85K0iznfwFBQygb5ztoroPORUNGz++h4RRpGK
3nyilXyGRsBJm4Q7c0+fP7QzytzMGWFHI//Q126jM9XvFB2yC//fSRoZ8PnX+Vtw
0AZX60SEmzUDNhqgkEC6MJuXY5xUaNAMB/mjas8hhI4c74YGuqAhXtURsaI10Dm2
osnrZlRhE3/TB3ZpwXOPsFe9HlJZmmF22QOCyZe5m8B1UT6Y8Zv9vpw4ozf4bjfU
xGykJ9cWsLoZ5Dz0vncDo5+ajb+teZeleDQ/6mykaV8QSP0aEV8jvuxEdSXGN3WJ
E2lUsQpxvzkjUg==
-----END CERTIFICATE-----
Generated at Fri Apr 18 07:40:20 2025 by rpki-client