Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.mft
File: 9zHDObGGFyK__oZyGDFM4SlcPIU.mft (raw, json)
Hash identifier: pA5KcEA10taAszybv75W0ot/tzTKRP+NIsiCrZ1y0jM=
Subject key identifier: CA:DF:62:06:33:7A:29:3B:A7:75:54:B3:20:95:0E:E6:5A:6A:51:52
Authority key identifier: F7:31:C3:39:B1:86:17:22:BF:FE:86:72:18:31:4C:E1:29:5C:3C:85
Certificate issuer: /CN=f731c339b1861722bffe867218314ce1295c3c85
Certificate serial: 01964DEC4EAD11A2FCA67B44CB50D7A7DB5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9zHDObGGFyK__oZyGDFM4SlcPIU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.mft
Manifest number: 14FB
Signing time: Sat 19 Apr 2025 12:00:54 +0000
Manifest this update: Sat 19 Apr 2025 12:00:54 +0000
Manifest next update: Sun 20 Apr 2025 12:00:54 +0000
Files and hashes: 1: 9UQ0_3_mS41_iKwg1qjiuH2k8kg.roa (hash: kiU7QM0C1mwEaOQNcthFFJZevyv4iXHm9WMDBPMiwH8=)
2: 9zHDObGGFyK__oZyGDFM4SlcPIU.crl (hash: l1B1azZDu47EoUVXEPOeGPv0lCaePkna27M0rlhoscM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.mft
rsync://rpki.ripe.net/repository/DEFAULT/9zHDObGGFyK__oZyGDFM4SlcPIU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 12:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:ec:4e:ad:11:a2:fc:a6:7b:44:cb:50:d7:a7:db:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f731c339b1861722bffe867218314ce1295c3c85
Validity
Not Before: Apr 19 12:00:54 2025 GMT
Not After : Apr 20 12:00:54 2025 GMT
Subject: CN=cadf6206337a293ba77554b320950ee65a6a5152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6f:68:6c:96:a7:45:0f:1e:5b:ee:d7:48:92:
78:35:3a:72:21:f0:21:82:ea:c3:75:20:90:9f:81:
ac:c1:f6:fe:80:f7:6c:31:8d:54:e3:b8:23:8f:98:
18:ae:87:cc:e9:d5:f3:49:9f:18:bc:5a:28:6f:04:
bf:f0:53:6d:19:e4:4a:9a:f4:e9:62:5e:af:c4:47:
fc:46:94:2d:2d:d2:7a:47:96:6b:d1:03:19:30:94:
e2:d3:15:d3:83:ce:57:99:e7:08:82:e4:b6:dd:94:
6e:26:10:9d:e4:c6:b2:a4:d9:92:03:b7:44:18:b5:
af:66:af:c7:79:b2:d9:01:8a:3e:0b:55:8f:5a:60:
2d:28:3f:95:f1:09:ae:31:91:5b:bd:fd:b2:1e:76:
ee:d1:4d:65:a5:79:5f:36:97:3d:de:e0:50:2b:5e:
7f:32:72:0b:e5:37:d1:d4:89:1b:19:ad:52:5a:70:
ee:f4:fd:9a:d6:41:1f:8e:12:0d:02:14:a9:f9:c1:
5d:a3:e5:a0:84:6c:2c:ad:ec:8c:8d:e1:20:7f:8b:
00:0e:ff:ec:bd:6b:b5:67:0e:48:4b:e8:39:19:33:
3a:cd:79:61:86:4c:3b:a2:1b:58:10:78:e7:0f:83:
d4:0f:98:fa:7e:e5:db:38:f4:97:14:1c:b1:1e:4c:
c2:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:DF:62:06:33:7A:29:3B:A7:75:54:B3:20:95:0E:E6:5A:6A:51:52
X509v3 Authority Key Identifier:
keyid:F7:31:C3:39:B1:86:17:22:BF:FE:86:72:18:31:4C:E1:29:5C:3C:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9zHDObGGFyK__oZyGDFM4SlcPIU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:5b:8d:a5:bc:31:7e:10:23:3f:d9:23:3b:b7:ac:ae:82:48:
48:d2:0a:20:08:1e:14:11:4a:3e:bb:49:5b:3a:58:f3:09:b0:
90:9d:29:7f:23:90:09:2d:a1:7f:51:53:1c:b2:07:5f:c4:87:
d9:78:73:cd:cd:66:1f:e0:64:ed:e5:95:4c:9d:4b:a7:c2:be:
31:9d:74:85:92:88:10:ed:a8:f3:96:5a:a0:55:62:d1:6d:a4:
73:59:e4:d5:08:4a:3b:db:fb:b9:d7:28:79:28:21:03:78:45:
0c:e9:79:b5:5a:b5:89:05:9c:86:6d:e0:5b:b9:ff:4b:6d:b1:
30:42:1d:03:05:05:4f:e3:a8:bf:1e:cb:2d:c7:2f:48:4b:51:
e2:6e:4a:03:d5:96:74:f2:f3:d6:a7:54:5e:19:71:5e:e5:4d:
44:20:a3:66:b4:59:9b:37:13:ec:86:e8:04:8b:f2:4a:3b:96:
27:6b:70:71:1b:1e:b0:f6:0b:fd:cc:ea:37:d7:3a:e7:47:78:
78:d1:5b:59:32:70:d2:85:44:2c:a3:88:8d:f6:db:e1:25:c8:
2f:62:7b:e8:56:5c:8c:4f:0a:04:17:00:9c:e7:a7:ee:24:b1:
f0:84:a1:68:20:b9:b3:44:82:bb:a4:60:f9:1d:e0:75:17:97:
70:cf:f1:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:11:03 2025 by rpki-client