Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
File: D5otI3SqascUtfim7duA3GlnnMY.mft (raw, json)
Hash identifier: IOQqx8rPo/aCLPuWb4Neicb8kNAC2xwUHyMXIPOrvb4=
Subject key identifier: D3:49:81:A6:C3:61:CE:4A:17:B8:BD:F1:A9:FD:42:0E:7C:B6:97:CA
Authority key identifier: 0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
Certificate issuer: /CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Certificate serial: 01965726B413D67DA523713B4897603A54B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
Manifest number: 0B63
Signing time: Mon 21 Apr 2025 07:01:16 +0000
Manifest this update: Mon 21 Apr 2025 07:01:16 +0000
Manifest next update: Tue 22 Apr 2025 07:01:16 +0000
Files and hashes: 1: D5otI3SqascUtfim7duA3GlnnMY.crl (hash: cTD7PnDyn33pUXWrbBc9JMT543hCEnjNtP2GEEddwu8=)
2: RNk_0Bt2Bdlaf0Pdd2eUPaMyW8E.roa (hash: m6J+0888VMRpST0J5iXwVh9t9K8LOLn/EV2xZ10pPjg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 07:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:26:b4:13:d6:7d:a5:23:71:3b:48:97:60:3a:54:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Validity
Not Before: Apr 21 07:01:16 2025 GMT
Not After : Apr 22 07:01:16 2025 GMT
Subject: CN=d34981a6c361ce4a17b8bdf1a9fd420e7cb697ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0e:05:40:8a:8e:04:d0:e8:45:66:02:31:20:
7b:65:29:92:a1:9c:b3:c1:14:6e:3a:97:ee:50:30:
19:9a:de:3b:ae:51:6e:93:87:c7:0b:7f:85:60:f3:
35:1b:92:c9:b4:ed:17:b1:e1:e4:cb:fd:8c:64:61:
6c:75:9c:6b:da:02:6f:e9:3d:d7:c5:5b:75:16:e8:
96:35:1d:c5:fc:5f:bd:9b:7f:6a:ed:6f:68:ca:92:
92:26:09:c2:45:09:7e:3a:26:7b:80:27:42:69:89:
e6:b2:50:d9:32:24:f0:cd:22:ad:af:72:da:95:23:
ed:9c:79:6d:eb:06:ce:05:c4:10:62:fb:21:70:ab:
d4:66:c5:2d:53:ae:a2:8f:65:7d:af:5a:d6:8c:d5:
25:f5:fe:e0:ce:76:8a:69:27:74:20:2d:ba:c9:5b:
5f:31:7f:f2:a0:8d:f5:c4:8a:11:de:bb:77:d6:a4:
bf:10:fd:16:2b:86:de:77:21:06:59:38:bf:85:21:
99:81:1d:a7:91:f3:28:e4:93:a9:06:77:63:e1:df:
de:59:2a:a5:a5:48:75:6a:c9:73:5a:88:cd:ae:6b:
93:b8:06:31:e0:99:3e:e9:10:da:e6:fd:c9:ef:e2:
8b:23:8d:81:63:dd:db:d4:48:b6:a7:96:1b:01:7b:
de:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:49:81:A6:C3:61:CE:4A:17:B8:BD:F1:A9:FD:42:0E:7C:B6:97:CA
X509v3 Authority Key Identifier:
keyid:0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:d3:13:b3:14:cc:cb:f6:18:38:a7:81:3b:ee:57:7f:f8:7f:
1c:5d:cf:1e:27:44:67:36:0d:be:e2:79:68:60:51:0e:ed:f2:
48:fd:29:c2:57:86:5a:b9:f7:10:23:e8:f8:27:ad:10:f1:6b:
f9:c5:0b:67:0c:18:a2:83:c6:08:1e:55:7a:14:70:2f:9f:1e:
41:ad:53:c3:74:e3:6a:ed:09:32:9c:0d:72:9f:43:fc:8b:09:
fd:89:9d:96:ad:fd:88:7f:8c:c4:23:1e:33:bd:20:b2:92:c7:
e0:2d:8d:d1:77:d5:13:00:46:08:d1:b4:29:7a:88:4a:51:55:
6d:5b:f8:8a:2a:ca:e2:ae:d2:81:cb:c2:3a:66:f8:f1:df:3a:
24:af:e3:ab:1e:f4:c4:57:fb:4a:ca:6d:0b:04:96:f6:4a:1c:
70:cd:47:8d:d7:65:1f:83:1c:b5:28:aa:33:12:6e:a3:ff:9c:
f4:c8:c3:5c:1d:66:a1:aa:6d:92:39:42:5f:01:ec:b2:04:a9:
f4:8e:05:08:1c:d9:29:bf:00:0f:4a:dc:b3:07:d2:7f:ee:0e:
9b:18:25:6a:dd:90:b1:fe:b7:bf:0a:be:ee:1a:47:ed:8f:99:
92:ae:4b:86:0e:39:8c:b6:2b:74:7c:f9:58:7c:9b:b3:c9:fd:
cf:27:c1:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:14:12 2025 by rpki-client