Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
File: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft (raw, json)
Hash identifier: pzK/x2VtIQL0A1u5mt6ekRv/t5XTx7if372AXv6UdTM=
Subject key identifier: F8:94:03:2B:0C:AB:05:3D:5B:C2:92:86:5F:F9:B0:5C:B1:15:24:FA
Authority key identifier: 90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E
Certificate issuer: /CN=90b3a3a0d662d14da8404bd21dc489e63945624e
Certificate serial: 01958CCECFE446394C68531A7F5F94019901
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
Manifest number: 1495
Signing time: Thu 13 Mar 2025 00:01:58 +0000
Manifest this update: Thu 13 Mar 2025 00:01:58 +0000
Manifest next update: Fri 14 Mar 2025 00:01:58 +0000
Files and hashes: 1: Wq2iqPYhNjor18Qz9IXxlr7x8mQ.roa (hash: QfZmNahEgmZ6AaDD2oA3mk7CjDsVWvRKb2LNfkM1y9A=)
2: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl (hash: MMWpa2iJ871UJkYmHnEYGS7+5BqjNmAT15pVKYMcSww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:ce:cf:e4:46:39:4c:68:53:1a:7f:5f:94:01:99:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90b3a3a0d662d14da8404bd21dc489e63945624e
Validity
Not Before: Mar 13 00:01:58 2025 GMT
Not After : Mar 14 00:01:58 2025 GMT
Subject: CN=f894032b0cab053d5bc292865ff9b05cb11524fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:78:31:5b:66:6f:63:3c:9f:79:1b:0e:ae:d7:
e2:ca:11:ae:28:5c:00:8d:ed:04:2c:03:a4:d9:7a:
94:dd:a9:c9:97:89:6a:7f:86:19:21:ec:0c:dc:5e:
f9:13:b3:d0:9c:02:16:4b:cc:54:0b:ff:46:cc:55:
a0:fd:c4:e0:31:c5:f8:cd:d2:80:3a:04:a4:03:83:
4e:42:47:8b:01:b1:b7:35:b5:d2:9e:e0:86:fa:04:
84:a9:39:3b:e7:74:7b:3c:2e:b9:6a:d4:c3:44:cc:
13:95:36:7a:8e:21:6d:6c:e6:c0:fc:4e:9e:f5:78:
c2:c5:f2:92:1b:f2:27:4b:ba:8a:ee:9f:56:9b:ee:
50:f4:e0:f9:62:4b:20:92:09:f1:be:2b:85:94:fa:
b0:7a:72:fa:38:18:bc:b6:25:d6:d4:40:65:9b:65:
2e:f6:9a:6f:f5:d0:8e:69:5c:a4:6f:f3:13:6a:e4:
33:92:75:92:2c:90:88:4c:04:2c:44:22:b4:2d:c5:
d2:7d:e4:2a:af:eb:49:ae:a9:23:51:ef:2f:7a:12:
3c:76:94:c4:67:a3:f0:c2:d1:2e:df:a3:bb:cd:5b:
1f:e2:ce:71:00:37:f6:3d:06:28:36:f9:37:8a:28:
60:29:a1:50:78:90:30:03:aa:eb:6f:c7:1f:11:71:
0b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:94:03:2B:0C:AB:05:3D:5B:C2:92:86:5F:F9:B0:5C:B1:15:24:FA
X509v3 Authority Key Identifier:
keyid:90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:24:04:5f:7f:0a:9d:f8:b4:74:12:e7:d0:df:dd:d4:76:d3:
bf:35:52:c9:52:29:b0:da:cb:48:c4:a7:56:99:52:e1:ef:79:
3c:7e:94:7b:ea:96:99:c4:bc:d4:45:7b:75:70:49:f6:d6:37:
06:10:b0:86:0f:33:80:ab:71:03:e8:ed:eb:3f:e3:e4:3e:e4:
87:c4:de:bb:21:f7:50:29:42:d0:b0:26:53:b6:54:ac:39:fe:
85:ab:28:8b:d4:1b:6a:c9:8a:8f:5a:35:fc:92:75:c3:d6:15:
01:b5:72:8c:91:a6:ca:7c:12:68:6d:03:ae:1d:b1:75:a6:f8:
a8:a3:d8:48:0c:fd:07:4b:09:03:4f:72:d3:39:b3:62:f8:e5:
ad:9e:2e:4c:cf:34:8b:06:01:53:95:e8:d8:23:62:fd:39:a0:
b2:3d:d5:31:64:dd:bf:7b:30:ee:5e:53:0a:bf:7f:d1:0c:00:
d0:eb:cc:21:d8:75:c3:e3:74:f8:6b:d3:68:00:a4:71:91:10:
86:67:56:ac:77:1c:fd:6a:6d:c3:64:65:71:d6:0e:56:be:5d:
f8:eb:6b:70:b6:b3:32:9b:0f:c2:9a:85:d4:bc:e8:2c:9c:25:
6a:d1:19:6a:68:8d:57:2a:53:b7:75:7e:f3:83:5f:6b:10:80:
98:ba:16:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:38:13 2025 by rpki-client