Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
File: kY74I7sEHqOsfIk2x1C2AYE34s0.mft (raw, json)
Hash identifier: qB9ANCPTw2OnRAxVwO9Tm0sbzdNeHaGF8XQfwPqJKQc=
Subject key identifier: 02:16:90:A9:67:44:EE:74:2E:6E:02:AD:DA:AC:13:97:CE:95:60:B0
Authority key identifier: 91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD
Certificate issuer: /CN=918ef823bb041ea3ac7c8936c750b6018137e2cd
Certificate serial: 0196488E6F941A9C9AB634DBE904162B11AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
Manifest number: 14F7
Signing time: Fri 18 Apr 2025 11:00:16 +0000
Manifest this update: Fri 18 Apr 2025 11:00:16 +0000
Manifest next update: Sat 19 Apr 2025 11:00:16 +0000
Files and hashes: 1: A9fnzzZSIyyk78DkykeGYg11L2Q.roa (hash: jan8f+is44AYa9jG93HTE50pBitsknBS00si8XIMwqI=)
2: DHmLK6qv7LDp9GSFF3bVVqiSSSs.roa (hash: 4c04LYJlSQnDFsWUTe3RinfcXPa5HIaLB5gKn1wNfQ8=)
3: X2DKxHgU0pJJ7l0RSAZexJQ4yk4.roa (hash: c4ZqtHFp+NEImgqSyGp/s8/x5ohWKo9ZUlSrkI+FleE=)
4: kY74I7sEHqOsfIk2x1C2AYE34s0.crl (hash: uwLTer1iDqQLfT0hQFc42Lnm3AUzX3qVJsE7wKHp4Lo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:48:8e:6f:94:1a:9c:9a:b6:34:db:e9:04:16:2b:11:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918ef823bb041ea3ac7c8936c750b6018137e2cd
Validity
Not Before: Apr 18 11:00:16 2025 GMT
Not After : Apr 19 11:00:16 2025 GMT
Subject: CN=021690a96744ee742e6e02addaac1397ce9560b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b2:1b:0b:40:23:29:d1:71:f2:c7:19:bb:13:
c5:25:af:1e:d5:e0:46:cd:bd:85:9e:a9:18:e3:11:
2b:c1:e6:78:19:ce:2d:13:2a:34:a3:04:b1:e8:5b:
41:12:28:27:38:39:c6:75:0d:77:6a:f2:27:a0:b4:
0a:3d:f7:91:81:93:ee:d7:cc:01:b9:a0:36:d2:84:
3e:bd:58:3f:59:aa:13:47:5f:8e:3e:45:0c:3d:3b:
59:28:5a:5d:7f:e9:52:4d:87:08:1d:ed:98:aa:7e:
52:9d:69:c6:d9:74:a3:e5:c4:0f:00:54:4e:57:76:
25:49:f9:20:10:4e:c9:61:7d:5a:ba:9e:75:6e:76:
fa:11:d4:43:ba:d9:f0:2d:cf:4b:61:d2:0b:c7:f8:
44:24:1b:e7:49:02:f0:15:b0:87:01:e2:8c:3a:c8:
ff:c7:36:e9:b8:10:de:06:0f:62:e0:89:ea:61:e3:
4a:43:89:0c:23:c1:72:1a:4e:7d:52:5b:3f:c9:78:
88:2a:2d:a0:cb:8f:cd:98:d9:52:f2:56:d9:4f:40:
cb:d2:fc:79:f0:d2:4f:b8:56:d6:e1:bc:34:c8:08:
b5:cc:4e:73:f9:33:51:17:d2:e2:69:2e:d7:70:5c:
c4:05:66:4d:b0:cd:56:f9:d4:79:39:f1:b6:b2:93:
74:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:16:90:A9:67:44:EE:74:2E:6E:02:AD:DA:AC:13:97:CE:95:60:B0
X509v3 Authority Key Identifier:
keyid:91:8E:F8:23:BB:04:1E:A3:AC:7C:89:36:C7:50:B6:01:81:37:E2:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kY74I7sEHqOsfIk2x1C2AYE34s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65420c-f5e2-4d29-b503-6529751b2b01/1/kY74I7sEHqOsfIk2x1C2AYE34s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:4a:a0:44:55:d8:06:f3:d3:65:2a:b7:02:cd:4e:e2:54:a9:
db:6a:9f:5b:1a:74:bf:27:df:da:9e:15:d8:f8:ad:96:7b:80:
0b:7b:37:a5:d3:97:3f:c5:29:2d:f7:15:7a:0f:fa:e7:cd:b9:
81:58:70:9d:51:6e:3f:c2:4a:8c:a7:27:27:3e:cd:71:64:78:
26:6f:23:c3:13:c2:e2:d7:54:8a:cc:3d:72:1c:cc:ab:bc:a1:
47:9c:2f:44:d0:0c:c8:83:59:9a:00:83:ca:98:4f:70:9e:76:
ba:96:19:db:8f:c7:0b:eb:ef:2e:ac:7b:36:85:c2:b9:9e:95:
9c:29:1c:e4:87:56:b7:eb:c6:8b:b3:90:65:12:b6:be:9b:86:
3b:5b:ff:95:81:58:9a:4d:09:48:a0:ff:e7:6a:19:6d:8c:e1:
62:0f:a8:05:13:a7:99:19:5d:0a:e5:df:9b:5b:9f:88:46:40:
1a:cf:0d:91:f5:ac:09:66:2d:9c:e4:82:32:64:51:34:3b:b9:
66:3f:d3:60:a6:0a:d6:c6:ee:cf:7a:54:9f:5c:d5:f6:dc:f4:
c1:b1:f5:40:2e:37:fa:b7:78:6e:be:8c:35:e1:06:ba:1a:83:
1b:e4:b2:e4:6a:ee:d3:74:0b:e9:64:d0:95:e6:eb:88:69:2c:
45:97:9a:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 16:33:45 2025 by rpki-client