Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
File: sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft (raw, json)
Hash identifier: Y3p6fEHYDf8XLP0EX6aqEtqiVDNVLoYveSXLrWSryLU=
Subject key identifier: AC:A3:27:98:87:89:B7:BA:01:70:24:D8:A5:D7:FF:24:04:51:FE:C4
Authority key identifier: B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
Certificate issuer: /CN=b20663583a8189cbeaac88d438767997b1125549
Certificate serial: 01958F986BC82159BC4E49618229737F8501
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
Manifest number: 13F5
Signing time: Thu 13 Mar 2025 13:01:25 +0000
Manifest this update: Thu 13 Mar 2025 13:01:25 +0000
Manifest next update: Fri 14 Mar 2025 13:01:25 +0000
Files and hashes: 1: fW2b4Mi4-jlU6WyOHwej57Bj7xc.roa (hash: gkYhGIaUuP9pIbVaUa+O+pFYYvku1Vu69Icl89ypkjo=)
2: sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl (hash: frIAXvWu/cNwUZItWmiVwT1bmugvm10RmnLB2Xk19nE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 13:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8f:98:6b:c8:21:59:bc:4e:49:61:82:29:73:7f:85:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b20663583a8189cbeaac88d438767997b1125549
Validity
Not Before: Mar 13 13:01:25 2025 GMT
Not After : Mar 14 13:01:25 2025 GMT
Subject: CN=aca327988789b7ba017024d8a5d7ff240451fec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:21:75:9e:07:97:93:7d:d9:60:22:a1:45:05:
bd:5e:83:96:f4:ab:8b:19:61:27:cb:84:66:9a:99:
40:03:e4:fc:75:4b:7d:c1:c1:3f:5d:11:cd:63:c2:
4e:0a:65:ad:b7:44:9d:5b:49:55:3c:e9:c4:72:f5:
5e:1b:24:6b:54:89:d3:ec:f5:0b:48:48:fe:47:7d:
f9:88:c1:b4:62:6c:38:65:03:8f:0c:06:f1:90:94:
db:be:cf:33:bd:f0:6a:f4:cf:04:be:d0:06:1e:c6:
2d:25:c3:aa:f6:16:fe:e3:ac:c3:7a:1a:0c:ef:e6:
79:90:44:09:9b:6b:95:20:0b:54:04:6c:8f:0e:30:
ce:3f:ea:ad:04:2e:dc:f0:15:ab:2a:9d:e3:01:2b:
05:c8:a3:b0:75:4b:2c:df:80:ac:b3:9c:6f:14:2f:
a0:68:0b:70:54:20:bd:0e:be:53:15:82:62:02:57:
f6:7b:91:79:51:67:77:61:f8:46:66:5f:17:90:31:
bb:f5:ac:37:35:28:84:f3:74:1c:39:f9:db:fd:6e:
42:b3:39:53:71:e1:cc:0b:85:3f:3b:ba:39:4e:23:
2e:41:12:5e:7e:da:55:74:e4:10:a2:cf:12:3b:9a:
0a:30:20:98:6e:0a:84:19:31:95:a9:21:6e:f4:f4:
a1:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:A3:27:98:87:89:B7:BA:01:70:24:D8:A5:D7:FF:24:04:51:FE:C4
X509v3 Authority Key Identifier:
keyid:B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:3e:8b:e5:ef:91:ee:55:96:e3:11:7f:ff:5f:08:7f:fa:e9:
b9:c1:f9:55:0d:df:9b:f9:1e:a3:03:dd:aa:98:be:af:89:25:
07:ce:ab:ba:fd:c5:38:cb:d8:d4:79:ef:8d:9c:17:56:97:c1:
7d:c7:47:1d:b6:3e:e2:9c:5b:db:34:3a:d8:ad:4b:0b:cc:71:
99:6f:8c:4e:f7:8b:7d:c2:49:e3:ab:f8:30:a3:ed:4a:7c:3b:
2d:73:eb:26:1a:1b:1e:c6:68:69:aa:72:e1:49:3a:a2:af:51:
a9:d4:ec:2d:f2:0b:e5:cd:e1:2e:21:53:14:8a:48:54:e6:e8:
ac:c8:c1:a0:f5:0a:e3:4e:21:14:90:f3:8d:bf:77:11:a0:1d:
b0:3d:a3:53:1f:47:a4:f3:28:90:da:86:a3:7c:1b:b3:46:01:
04:c0:27:ba:96:d8:78:ca:b8:58:9a:52:38:f8:24:16:19:51:
64:71:31:5a:64:e4:9e:e1:85:46:29:c2:5b:f4:84:9a:37:12:
af:2f:0b:cc:de:c5:61:04:37:d5:90:a6:09:a1:18:14:1e:ea:
83:41:45:4e:4a:43:f3:3e:cb:f3:41:36:47:ab:92:2a:82:db:
1f:a1:ab:36:7c:a8:f5:96:a1:37:fd:08:c1:d1:2f:19:5e:43:
bf:3d:81:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:50:21 2025 by rpki-client