Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
File: 2OnkD_n7tigNo26XLyDTElAMGFw.mft (raw, json)
Hash identifier: nY/cRc4YCNdst4UlmE3HhbK1/Lsl+ULPjpyxCVZF7Rg=
Subject key identifier: 83:27:CC:CC:CD:B5:B5:CC:35:35:72:C1:14:64:8B:F1:EC:F0:D4:87
Authority key identifier: D8:E9:E4:0F:F9:FB:B6:28:0D:A3:6E:97:2F:20:D3:12:50:0C:18:5C
Certificate issuer: /CN=d8e9e40ff9fbb6280da36e972f20d312500c185c
Certificate serial: 0196594B740C14DBCEED0CBAD2FC8DF1B89D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
Manifest number: 11E8
Signing time: Mon 21 Apr 2025 17:00:39 +0000
Manifest this update: Mon 21 Apr 2025 17:00:39 +0000
Manifest next update: Tue 22 Apr 2025 17:00:39 +0000
Files and hashes: 1: 2OnkD_n7tigNo26XLyDTElAMGFw.crl (hash: hrgrGn+MscId/Fc3vMKCEu/GP6awYjsXYz4zW4YzJ5c=)
2: h5ibvBXljsm0_9K-AnuxEpyWzoI.roa (hash: SvGB7aqcdXdN/Cdk0NHyr1xHsC5MuHnt2HID1mkRiq8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 17:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:4b:74:0c:14:db:ce:ed:0c:ba:d2:fc:8d:f1:b8:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8e9e40ff9fbb6280da36e972f20d312500c185c
Validity
Not Before: Apr 21 17:00:39 2025 GMT
Not After : Apr 22 17:00:39 2025 GMT
Subject: CN=8327cccccdb5b5cc353572c114648bf1ecf0d487
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:98:9c:d9:71:ad:09:11:92:0f:c5:e4:da:56:
a8:0a:fd:7c:ac:ef:3d:da:85:a1:f6:11:b1:33:2f:
5a:44:51:68:b2:4c:5d:19:60:c3:6f:08:c2:2b:5e:
9f:dd:3f:73:35:b5:93:60:69:80:93:14:d2:55:7d:
68:4b:1a:21:62:43:3c:9a:49:e9:c2:cd:47:f7:4f:
c0:f5:35:5c:a0:22:65:00:36:6b:ff:ff:a5:62:fc:
08:02:8f:c2:97:8e:44:d0:59:f2:29:bf:7d:25:d0:
b9:f8:ae:36:13:ef:02:dc:e1:b0:ec:62:fb:e5:64:
39:2f:c4:3d:a4:8b:1b:c6:34:24:7a:3e:4a:13:71:
aa:0c:4b:c7:b4:2a:c9:cd:7c:fb:8d:62:4f:a5:ea:
4a:db:e6:8b:42:07:ee:df:7d:3e:eb:e1:7a:7d:ca:
12:4a:ec:a0:b6:f0:f0:bc:18:39:c2:a3:c6:a7:67:
26:69:01:3c:c4:5c:01:a0:cc:b2:0e:2c:a3:55:74:
2e:11:42:ad:0b:8f:fe:1f:94:94:b2:fd:30:e8:95:
6f:fe:75:f1:b4:b9:66:9e:3e:9e:da:19:bc:5e:d8:
ee:68:fd:79:1b:41:3c:af:21:e7:f7:b5:0e:cf:91:
f1:c3:a1:db:ad:ac:bd:ca:65:0b:e1:b2:cc:c4:06:
19:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:27:CC:CC:CD:B5:B5:CC:35:35:72:C1:14:64:8B:F1:EC:F0:D4:87
X509v3 Authority Key Identifier:
keyid:D8:E9:E4:0F:F9:FB:B6:28:0D:A3:6E:97:2F:20:D3:12:50:0C:18:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:da:2f:2e:9a:71:a2:96:ec:7e:d5:00:0c:69:24:b1:ce:7e:
c6:44:f6:92:be:c6:2d:d1:62:4f:10:88:78:75:1b:86:98:0e:
0c:c7:69:2b:f9:08:c1:a9:6a:e5:41:dc:0c:76:de:a2:22:81:
47:b7:98:e6:04:d0:32:40:3e:41:d8:9d:0e:2b:26:d3:44:41:
b8:0c:4e:1c:61:cc:1a:e5:26:a1:35:59:70:a8:de:57:58:c4:
5e:82:ad:4f:35:b2:12:cd:ba:fe:b8:05:f1:dd:1e:38:70:fe:
ca:57:0e:ac:89:0e:83:df:63:7a:5e:54:57:bf:c1:0a:86:09:
48:7a:7e:a0:ca:c7:c5:cd:7b:a8:65:6e:05:eb:1c:7f:65:27:
48:db:14:03:c8:9f:25:e8:3c:a9:7c:35:f9:74:1b:d1:42:f5:
c6:a6:07:83:a4:e4:02:ad:87:95:55:1e:a5:82:fa:56:4b:3d:
f8:4c:f0:ec:2c:f2:c0:7d:88:ec:77:44:e7:9d:17:b8:7f:08:
f9:61:ab:45:b3:d5:e9:00:66:81:41:51:e2:45:7f:be:2c:72:
0a:48:fd:70:2f:bf:df:00:2f:de:d2:fb:ee:f3:1b:ce:b2:b7:
b3:3d:7a:e9:2c:f6:91:d8:d6:ac:53:0d:15:3f:5f:8d:40:32:
95:16:ba:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 00:52:12 2025 by rpki-client