Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.mft
File: 0QyI2C0vrIIgPUKiQtbrdj0Tu_g.mft (raw, json)
Hash identifier: YnbJvbZLmklRvg9oUOKfWFiB9JFNI57KTAmkyyIdm1A=
Subject key identifier: 58:CA:AC:4A:83:17:DD:7E:55:A2:9D:12:65:38:31:D9:F9:6D:09:32
Authority key identifier: D1:0C:88:D8:2D:2F:AC:82:20:3D:42:A2:42:D6:EB:76:3D:13:BB:F8
Certificate issuer: /CN=d10c88d82d2fac82203d42a242d6eb763d13bbf8
Certificate serial: 0196470E9886B88D92F78ABEF672772CF344
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.mft
Manifest number: 14F7
Signing time: Fri 18 Apr 2025 04:01:00 +0000
Manifest this update: Fri 18 Apr 2025 04:01:00 +0000
Manifest next update: Sat 19 Apr 2025 04:01:00 +0000
Files and hashes: 1: 0QyI2C0vrIIgPUKiQtbrdj0Tu_g.crl (hash: JwdbFVnA/oBvI/XMXPT9gAgtSSZBaY7P2SEm7cUo8og=)
2: OCcJDhB4OQ1X-MIeEHbwYqPSbys.roa (hash: bYb4Alf329H7/hgxf3+yXtwxwALKiQ1xJi7nvHZupTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.mft
rsync://rpki.ripe.net/repository/DEFAULT/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 04:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:47:0e:98:86:b8:8d:92:f7:8a:be:f6:72:77:2c:f3:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d10c88d82d2fac82203d42a242d6eb763d13bbf8
Validity
Not Before: Apr 18 04:01:00 2025 GMT
Not After : Apr 19 04:01:00 2025 GMT
Subject: CN=58caac4a8317dd7e55a29d12653831d9f96d0932
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:5c:07:31:c7:51:ca:e3:6a:3e:cb:4b:b2:34:
1f:bf:75:f9:22:80:3b:0c:95:e0:ef:b9:b6:5d:c7:
d6:d7:ad:8d:9d:87:66:a6:07:91:88:a7:fc:0e:d2:
91:02:45:f0:9c:58:67:79:01:dd:06:fc:39:8e:81:
4e:65:1f:4b:76:2b:60:59:ab:14:a7:c4:95:ae:4e:
78:18:1c:92:b8:1b:14:c3:61:17:83:a3:32:e6:87:
da:19:4a:9b:35:2d:c5:91:f1:4c:f7:ff:45:33:e9:
9a:72:38:d8:5d:8e:d3:19:ab:82:ea:74:8c:1d:75:
41:79:0a:27:a5:46:47:fd:81:a8:5e:4a:95:3d:5c:
ed:04:ae:d2:4a:d7:9b:a7:cc:14:e8:a9:95:28:c0:
e9:07:8b:bf:ac:9d:23:5b:bf:d9:58:84:68:b6:80:
a7:75:d9:97:ea:c1:0b:ec:6f:4f:10:4a:fc:6b:da:
a2:ea:8d:61:99:5f:5c:5f:18:a1:fe:5d:40:a3:74:
41:46:f9:88:99:6d:42:63:3d:12:7b:9d:51:05:ae:
4c:7e:f5:2d:e1:ac:5d:58:93:18:bc:51:b1:16:f5:
11:46:59:65:6c:91:ec:0f:cf:c1:7e:2e:85:c7:05:
4b:3d:db:ab:ce:30:7e:29:c7:e1:d5:d3:29:cf:10:
70:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:CA:AC:4A:83:17:DD:7E:55:A2:9D:12:65:38:31:D9:F9:6D:09:32
X509v3 Authority Key Identifier:
keyid:D1:0C:88:D8:2D:2F:AC:82:20:3D:42:A2:42:D6:EB:76:3D:13:BB:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/8ed018-08f3-4777-9dd4-de245af4facb/1/0QyI2C0vrIIgPUKiQtbrdj0Tu_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:7e:db:5d:ce:4b:d1:04:2b:b6:03:7c:e5:b9:be:f3:63:b7:
f1:80:ac:1b:24:93:5d:64:ab:55:c7:78:31:6e:eb:ca:62:e5:
87:77:8f:95:5a:ad:2a:de:1f:36:42:c6:fb:64:fc:0d:65:cf:
1f:42:94:1a:09:24:1b:77:9b:14:60:8f:32:2f:05:39:76:74:
65:65:7a:8f:5a:e9:25:87:5c:a4:be:5a:f0:e7:11:70:d9:07:
12:4d:81:68:12:a9:cc:25:1e:61:52:c1:5a:d5:d3:48:1e:cf:
35:8f:1a:8a:6d:05:13:c5:63:df:03:76:30:3d:df:cf:a0:09:
ab:a8:b5:fe:da:d9:7e:99:84:f5:ec:52:e0:3c:04:8e:cb:f3:
1d:03:74:9c:33:bf:e9:a8:ab:55:70:34:12:ab:f3:dc:96:ef:
c3:9a:27:12:d2:c0:06:85:3e:68:a0:e9:75:ad:c8:55:ca:ab:
7a:fe:41:57:fe:47:36:69:db:98:4e:be:72:25:6d:68:80:f4:
55:94:4b:39:50:6f:03:74:8d:c4:38:d0:f6:cc:50:d4:48:83:
f5:dd:e9:85:8f:b3:44:62:2a:11:f2:ab:46:21:a2:12:71:54:
aa:95:c1:32:89:73:73:8d:1e:5d:59:6d:5a:09:db:d2:b8:a2:
b2:48:7d:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 15:03:00 2025 by rpki-client