Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/18ce6c-7132-447d-8f0e-756274e447ea/1/tIKj5Qem8UAPb74uFI-hZERH5s0.mft
File: tIKj5Qem8UAPb74uFI-hZERH5s0.mft (raw, json)
Hash identifier: BAV91YMOsOYIiSIql/66tec544iG8iPsXCecCMonxQg=
Subject key identifier: EE:C4:F0:DA:CE:31:BE:76:52:C8:FD:C6:4E:83:43:D3:CA:2D:11:18
Authority key identifier: B4:82:A3:E5:07:A6:F1:40:0F:6F:BE:2E:14:8F:A1:64:44:47:E6:CD
Certificate issuer: /CN=b482a3e507a6f1400f6fbe2e148fa1644447e6cd
Certificate serial: 01958B16F34CB70C25F21162375999343203
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIKj5Qem8UAPb74uFI-hZERH5s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/18ce6c-7132-447d-8f0e-756274e447ea/1/tIKj5Qem8UAPb74uFI-hZERH5s0.mft
Manifest number: 0CAF
Signing time: Wed 12 Mar 2025 16:01:31 +0000
Manifest this update: Wed 12 Mar 2025 16:01:31 +0000
Manifest next update: Thu 13 Mar 2025 16:01:31 +0000
Files and hashes: 1: jc3nJE4HlaAIZYtU9WTa-kp6P_0.roa (hash: ni65Uin42OxyzHPEODsDWUqZ0OwEhmfq3oGGPy0ODBg=)
2: tIKj5Qem8UAPb74uFI-hZERH5s0.crl (hash: XNTI0h3A00aSzZH8Eh8VY5GjlEBOJPHsuvYXq0BYB7M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/18ce6c-7132-447d-8f0e-756274e447ea/1/tIKj5Qem8UAPb74uFI-hZERH5s0.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/18ce6c-7132-447d-8f0e-756274e447ea/1/tIKj5Qem8UAPb74uFI-hZERH5s0.mft
rsync://rpki.ripe.net/repository/DEFAULT/tIKj5Qem8UAPb74uFI-hZERH5s0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 16:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:16:f3:4c:b7:0c:25:f2:11:62:37:59:99:34:32:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b482a3e507a6f1400f6fbe2e148fa1644447e6cd
Validity
Not Before: Mar 12 16:01:31 2025 GMT
Not After : Mar 13 16:01:31 2025 GMT
Subject: CN=eec4f0dace31be7652c8fdc64e8343d3ca2d1118
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a1:88:8a:39:a7:0e:42:f1:4f:8a:0b:be:0a:
8b:bd:78:11:7d:a8:c0:4d:4c:65:14:cf:5b:1c:da:
5c:97:02:49:69:7e:e5:e5:0c:15:39:2c:e8:e6:57:
ed:64:32:09:13:e9:69:a2:1e:a2:2f:5e:02:0f:72:
15:75:5d:1f:7f:5e:ea:47:9f:a8:0f:8c:f5:ed:fc:
54:64:d7:01:ba:2c:d4:31:24:14:f7:4e:a9:9b:1e:
d3:ae:16:8b:c0:72:76:b3:d4:ee:90:41:b5:5b:1e:
34:90:7a:3a:89:ec:b0:f9:c2:6c:eb:be:59:42:70:
2c:66:20:06:3b:36:a0:79:7f:ec:f3:5d:da:c2:6f:
2c:34:a1:74:b6:bc:05:dd:5e:f5:39:a2:85:84:8b:
6b:d8:80:1e:8c:b1:dd:da:ef:80:61:e3:94:04:fa:
91:71:73:50:e3:00:17:f0:79:45:78:56:b1:b7:51:
e2:40:2a:2a:f2:b9:e4:4c:83:b5:70:50:a6:d0:c0:
95:ff:74:05:52:ed:bc:75:41:58:79:26:7b:27:87:
58:a0:d1:34:6d:d1:70:bb:8b:08:e9:65:d4:77:69:
f0:95:cf:86:5a:c9:ea:8c:1a:d6:46:fb:96:90:8d:
09:5b:9c:57:aa:df:7a:3f:7c:39:4b:fd:73:d1:c2:
27:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:C4:F0:DA:CE:31:BE:76:52:C8:FD:C6:4E:83:43:D3:CA:2D:11:18
X509v3 Authority Key Identifier:
keyid:B4:82:A3:E5:07:A6:F1:40:0F:6F:BE:2E:14:8F:A1:64:44:47:E6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIKj5Qem8UAPb74uFI-hZERH5s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/18ce6c-7132-447d-8f0e-756274e447ea/1/tIKj5Qem8UAPb74uFI-hZERH5s0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/18ce6c-7132-447d-8f0e-756274e447ea/1/tIKj5Qem8UAPb74uFI-hZERH5s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:ca:b0:43:85:8a:6f:7a:ef:53:69:6c:bf:c6:8c:50:64:76:
3e:dc:38:37:3e:fa:08:a1:f5:82:a7:d0:69:e6:41:a5:36:2d:
d1:92:45:da:13:6f:7e:8a:da:8f:75:dd:78:d5:80:7f:55:f8:
d0:31:39:d8:ab:10:07:5c:34:18:04:55:8e:26:99:73:c3:ec:
7c:0d:92:e7:e1:7f:23:d3:fa:d7:91:d6:9e:d6:56:e4:99:31:
48:71:f1:cb:2b:48:8e:b0:fa:8c:52:be:86:ef:21:45:73:38:
af:e5:41:c5:04:0f:91:43:47:d0:b4:eb:84:d1:48:1b:56:67:
77:ba:42:21:ba:13:fc:e5:05:7e:47:69:e4:22:8b:eb:c2:4f:
bb:d5:db:6d:a8:08:b7:cc:27:26:a5:29:4e:0f:7f:87:5d:21:
a1:37:2f:d4:55:cc:6d:05:f4:c8:ee:33:fd:76:eb:3d:63:a7:
19:bc:ff:7e:79:b0:31:fc:61:1b:96:85:36:6f:92:7d:f5:0c:
33:a4:99:56:af:34:75:a6:66:9e:ad:ea:50:6a:ad:f9:8c:38:
4e:88:26:13:1f:7e:d2:22:0e:0e:d7:72:f2:00:9d:01:1d:77:
be:d2:31:f5:5e:74:92:53:4b:f8:8b:79:3e:2c:c8:83:45:66:
ac:32:21:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:34:38 2025 by rpki-client