Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft
File: d5KQMR5unPpeUX-rsNlvqaccPaE.mft (raw, json)
Hash identifier: kmRllTk28OKessdojJpWRNSR4Ml7Q6wl32DQQJdQvjg=
Subject key identifier: 25:A9:66:B9:67:84:E5:F1:4D:F4:93:DE:A6:80:E7:DC:13:16:88:70
Authority key identifier: 77:92:90:31:1E:6E:9C:FA:5E:51:7F:AB:B0:D9:6F:A9:A7:1C:3D:A1
Certificate issuer: /CN=779290311e6e9cfa5e517fabb0d96fa9a71c3da1
Certificate serial: 01958FCF275BC08FA52E625523E43C0E8D60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d5KQMR5unPpeUX-rsNlvqaccPaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft
Manifest number: 1497
Signing time: Thu 13 Mar 2025 14:01:12 +0000
Manifest this update: Thu 13 Mar 2025 14:01:12 +0000
Manifest next update: Fri 14 Mar 2025 14:01:12 +0000
Files and hashes: 1: LOkJgQnrVhTjIGglVDZP2nXIS3k.roa (hash: w0AA95RC5IbPZCqkTY536mw4aIKSxO5pRstC+7ehig8=)
2: d5KQMR5unPpeUX-rsNlvqaccPaE.crl (hash: ZPfOvvxezJgfNS3s6m/Tq7DZsNIG7sSTedKM8/2T1vA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/d5KQMR5unPpeUX-rsNlvqaccPaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8f:cf:27:5b:c0:8f:a5:2e:62:55:23:e4:3c:0e:8d:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779290311e6e9cfa5e517fabb0d96fa9a71c3da1
Validity
Not Before: Mar 13 14:01:12 2025 GMT
Not After : Mar 14 14:01:12 2025 GMT
Subject: CN=25a966b96784e5f14df493dea680e7dc13168870
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b5:2f:6b:e0:f3:a2:6d:20:0f:6b:31:8c:9b:
c5:11:d7:29:9d:6a:58:7a:db:e7:ee:f1:1e:d2:92:
5d:84:47:d0:80:48:b9:06:33:2c:06:76:4c:ea:09:
ba:73:b7:84:fe:69:21:a2:50:06:fa:5d:83:71:6f:
39:ae:ac:77:5c:a0:41:45:7e:06:bb:5a:4b:de:35:
75:91:73:99:26:bf:97:31:9b:08:eb:18:c6:08:10:
0b:7d:b7:b9:83:77:85:b7:86:8c:43:59:2c:48:7b:
28:41:b5:09:93:e8:94:57:d2:ae:76:91:7b:81:8f:
a3:23:ad:f3:e5:03:c4:b9:1b:10:06:4b:a8:9c:c9:
1f:82:b6:7e:6d:43:6d:11:f3:83:4e:d5:97:ab:d0:
60:f7:06:dd:33:24:4c:d4:24:b0:17:97:4b:ab:31:
85:9b:92:7e:23:3d:23:ea:77:17:c8:6e:11:eb:12:
0b:10:c2:46:8f:9a:81:2c:61:1d:7f:83:45:dd:2e:
04:03:73:60:0d:39:a5:df:7c:6e:60:ca:35:b0:30:
36:80:d9:13:d7:4c:05:8e:51:3c:d2:18:d3:f4:38:
f8:d5:56:f1:49:dc:d8:eb:c4:e8:5a:ce:a0:38:9b:
ca:9f:1f:95:9c:8c:4f:a1:38:e0:46:ea:e3:ee:e4:
5f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:A9:66:B9:67:84:E5:F1:4D:F4:93:DE:A6:80:E7:DC:13:16:88:70
X509v3 Authority Key Identifier:
keyid:77:92:90:31:1E:6E:9C:FA:5E:51:7F:AB:B0:D9:6F:A9:A7:1C:3D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5KQMR5unPpeUX-rsNlvqaccPaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/b8e03e-c398-4eee-8939-f909d79a44ad/1/d5KQMR5unPpeUX-rsNlvqaccPaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:dc:73:66:ee:d5:80:55:0c:f6:ba:42:eb:64:1c:6c:91:6d:
9f:05:84:00:85:49:f9:77:0b:c6:6e:4c:9d:21:bd:b3:e0:08:
33:f7:5d:61:58:1b:c7:77:14:a7:2d:2f:bf:0a:a3:86:2d:c4:
e5:d3:fc:84:1c:4c:92:9e:47:cf:72:b2:70:d2:19:e2:96:53:
ba:9a:c0:f8:c6:0f:ff:44:dd:25:5d:21:4f:63:f7:57:ac:43:
95:ab:07:c5:da:60:31:b7:4f:c5:9d:1b:5a:12:75:82:d2:fd:
f2:d1:eb:ca:42:62:ab:c0:7f:29:73:89:39:1c:29:3b:21:d6:
31:7a:f4:83:26:0c:44:a0:3a:9e:d6:30:e0:d8:77:67:b3:2c:
6a:2e:9a:c6:ba:9c:a7:e4:0c:52:59:70:81:8b:a7:9c:13:b5:
e7:d4:ec:e6:59:bf:40:aa:f0:82:fd:0b:05:0b:d7:6e:cc:73:
5d:e8:5c:7c:ed:d7:14:13:dc:91:e0:d8:57:bb:26:56:89:97:
98:f0:a7:8e:37:94:e2:0d:d2:9c:4f:1f:d3:45:50:d9:58:32:
f5:80:e3:ab:8c:9c:2e:39:7b:22:7a:ac:f7:56:96:8f:26:07:
6f:c3:50:77:e5:24:07:44:6b:86:28:d0:9a:7e:ba:37:66:ce:
8f:9a:47:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:49:58 2025 by rpki-client