Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/PiTH7Po30khxUvubu6tQvnneJhk.mft
File: PiTH7Po30khxUvubu6tQvnneJhk.mft (raw, json)
Hash identifier: BIveD9yTNN+2UbWbdhrOmtjOSUIVTF0AiCkbzSEHD44=
Subject key identifier: D1:77:F3:5C:85:BD:72:73:7A:2D:3B:17:DD:6D:F6:74:F9:55:39:41
Authority key identifier: 3E:24:C7:EC:FA:37:D2:48:71:52:FB:9B:BB:AB:50:BE:79:DE:26:19
Certificate issuer: /CN=3e24c7ecfa37d2487152fb9bbbab50be79de2619
Certificate serial: 01961847A246432C319FDBA120D16110541B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PiTH7Po30khxUvubu6tQvnneJhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/PiTH7Po30khxUvubu6tQvnneJhk.mft
Manifest number: 14EE
Signing time: Wed 09 Apr 2025 02:01:09 +0000
Manifest this update: Wed 09 Apr 2025 02:01:09 +0000
Manifest next update: Thu 10 Apr 2025 02:01:09 +0000
Files and hashes: 1: 3y2t9Y4w34qiFBdy_Ek4JJUO21Q.roa (hash: /TZVDNQyK0D1wC867uTU8KAEMW8e+Zi9YcbvlB1rMAE=)
2: EmNqWHZHvcbARh8MqUG6nxXKDnk.roa (hash: qFrAZp7TQYaT2zIiJ3kN/K/RUigkO6TizDHq1yApShI=)
3: PiTH7Po30khxUvubu6tQvnneJhk.crl (hash: H0/oYVhU7L5etEaAS6+OqbJzIYMbS5aM4wYDbwBThR8=)
4: k0j78iVx37wwO7bDjCAVoyijDeU.roa (hash: x4YCjAIVRyxgn0vQG0zlSLFCcDO0MbVYoCzpTeJPa0I=)
5: oLh3yoxxKDPJ0rI4fFfhHDN8zHc.roa (hash: gc86IVswZ2auip9vASDEdi6AXEh5d/2Jw9bjMy6Pwd8=)
6: oqQMhQCTnCvqpL4FDtvR2ocumgk.roa (hash: 9N1juEbb6Fp6BQG9Mi2KAk0Vy7P2TkUjOEW3w+qZU1s=)
7: u7jBF_TQnJz9mTpZhXYq5nggn8c.roa (hash: wreTMB6pW+vrdjrRc+OCyHOCrMzU/JZ3/7CTFhlab7A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/PiTH7Po30khxUvubu6tQvnneJhk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/PiTH7Po30khxUvubu6tQvnneJhk.mft
rsync://rpki.ripe.net/repository/DEFAULT/PiTH7Po30khxUvubu6tQvnneJhk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 22:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:18:47:a2:46:43:2c:31:9f:db:a1:20:d1:61:10:54:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e24c7ecfa37d2487152fb9bbbab50be79de2619
Validity
Not Before: Apr 9 02:01:09 2025 GMT
Not After : Apr 10 02:01:09 2025 GMT
Subject: CN=d177f35c85bd72737a2d3b17dd6df674f9553941
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6d:4b:03:bf:a2:97:94:00:51:5a:21:b9:61:
ce:82:48:80:72:20:0c:1f:41:ee:b2:d9:1f:af:b7:
0b:d4:a4:0e:d6:70:ca:af:09:9a:a0:fe:10:35:e8:
53:ec:39:20:f6:62:f6:4e:79:d6:af:24:31:9c:ca:
ea:5d:db:19:1e:04:6d:fd:95:eb:20:9f:e1:a2:88:
45:aa:46:a8:de:46:f4:58:fb:b8:a1:1a:93:36:98:
f7:f7:69:f4:d0:a0:22:a0:9e:78:00:ce:2f:bc:60:
8f:69:2f:d4:36:71:89:1b:03:7b:66:0c:eb:12:3d:
ce:5f:ef:0f:c4:8d:76:a3:f8:42:e3:ca:28:4b:a8:
51:5a:93:ba:2f:57:ba:93:6c:ca:de:f3:53:19:1d:
01:e8:aa:7f:85:a9:35:51:7f:43:20:4a:21:09:58:
13:39:8c:55:3e:d1:6e:1e:e6:02:88:33:a1:b2:10:
54:72:eb:6c:b6:e4:74:b1:18:2b:bf:a7:5a:34:68:
98:c1:47:f1:05:ff:3a:74:54:02:cb:28:38:2c:be:
fb:4e:e0:b1:6c:58:c3:21:bc:94:51:b5:2a:f5:bd:
1a:e8:8c:d8:bd:18:0c:ce:d6:0f:11:c5:a1:6c:4d:
b1:28:a7:ad:8e:d7:01:a8:ff:b0:9e:28:60:d3:a8:
24:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:77:F3:5C:85:BD:72:73:7A:2D:3B:17:DD:6D:F6:74:F9:55:39:41
X509v3 Authority Key Identifier:
keyid:3E:24:C7:EC:FA:37:D2:48:71:52:FB:9B:BB:AB:50:BE:79:DE:26:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PiTH7Po30khxUvubu6tQvnneJhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/PiTH7Po30khxUvubu6tQvnneJhk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/PiTH7Po30khxUvubu6tQvnneJhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:bc:34:dd:60:ac:16:6d:bc:2b:79:d3:41:83:89:f9:e3:9e:
2c:35:07:c9:0e:e2:05:e0:25:64:07:6a:5a:94:76:88:96:cf:
06:4d:ce:24:7d:b9:24:93:1c:fb:6e:78:e6:3d:07:3b:69:95:
cb:d8:c8:c7:68:0d:42:46:66:b5:f9:e8:11:fa:a3:79:25:7e:
1d:3f:75:d9:80:21:29:bd:58:10:49:f8:5d:10:74:77:aa:2c:
cf:60:8d:e8:73:5c:50:e7:00:54:65:36:99:cf:67:e2:18:45:
66:b0:a6:1b:62:68:09:b2:64:e9:e8:03:8c:f8:20:c2:d4:b2:
de:62:65:8d:61:db:27:22:fe:dd:3e:04:23:2f:30:bd:01:c7:
3b:ac:6e:35:c7:81:d4:76:9e:7a:9b:59:1d:56:e7:de:9d:db:
c4:0d:c5:f3:54:0f:bc:e8:39:f2:29:d3:ed:93:e2:28:d3:46:
77:26:35:96:32:39:cb:2f:81:1f:fa:d9:ab:2d:5b:73:12:2f:
90:97:32:5d:a9:7b:9c:8c:a9:dd:6f:d4:3b:ce:74:bc:ff:bc:
3d:e8:04:ec:1b:e8:92:c8:ac:04:44:d3:a5:37:2e:32:1d:00:
6c:1e:e4:80:03:a5:4d:bb:19:ba:a1:77:8b:eb:02:41:1b:c4:
85:a6:4f:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 06:29:43 2025 by rpki-client