Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
File: dBmPcCK5VgUB20SK9gMB-ihekjY.mft (raw, json)
Hash identifier: 9lzjQQjBL+tm82pbGqN1NABBp9Hu5gDrH30xY+Y5Nmc=
Subject key identifier: 9D:70:0E:62:70:16:56:14:49:C7:95:26:CF:66:65:E2:16:3A:7B:CA
Authority key identifier: 74:19:8F:70:22:B9:56:05:01:DB:44:8A:F6:03:01:FA:28:5E:92:36
Certificate issuer: /CN=74198f7022b9560501db448af60301fa285e9236
Certificate serial: 0196127CFAE0E0A7368E8768B52078C5D66A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
Manifest number: 14DE
Signing time: Mon 07 Apr 2025 23:01:42 +0000
Manifest this update: Mon 07 Apr 2025 23:01:42 +0000
Manifest next update: Tue 08 Apr 2025 23:01:42 +0000
Files and hashes: 1: HIDgrdHX_QU-bGXtDjZHW_ouIno.roa (hash: CeASJRYiDgx1fz5UAh5dDbAHwn7ALNNERk8t4H2LNDQ=)
2: dBmPcCK5VgUB20SK9gMB-ihekjY.crl (hash: ybAJ/hVb5ftspq9uXMpRHTbJBQsXTZY/iPVe/404pkg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 23:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:12:7c:fa:e0:e0:a7:36:8e:87:68:b5:20:78:c5:d6:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74198f7022b9560501db448af60301fa285e9236
Validity
Not Before: Apr 7 23:01:42 2025 GMT
Not After : Apr 8 23:01:42 2025 GMT
Subject: CN=9d700e627016561449c79526cf6665e2163a7bca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:99:5b:33:85:a0:02:42:9e:5d:4c:0d:24:60:
ed:6c:4e:0f:a0:37:e0:b3:20:74:52:78:ed:c8:da:
a9:c9:82:76:eb:81:a1:64:e8:05:b3:03:84:67:73:
eb:a5:9c:ae:e6:1b:71:ae:02:2f:51:b7:ca:12:d5:
c7:03:f1:7b:bc:a7:d9:1b:0d:bf:9a:53:7b:91:08:
27:7f:d9:9f:d1:9f:da:c4:31:2e:f1:08:81:48:8e:
ca:03:8f:fa:92:83:be:e7:e6:fd:40:f6:cf:66:1a:
7b:1f:a3:1c:02:5a:11:a5:1b:d2:0b:39:27:06:d5:
e2:e1:75:c8:e5:04:df:b2:83:77:2a:7d:c6:e7:48:
0a:b6:9c:fa:87:48:9d:bf:cf:19:07:b5:48:b7:10:
bf:99:64:57:74:ab:90:64:76:4a:1d:a3:7c:ea:dc:
2b:55:61:cb:1d:1a:4c:9e:7d:14:a4:ea:b5:bd:65:
7f:5b:75:7f:04:5b:e0:e3:a6:6d:ff:d6:33:5d:6e:
63:9e:0f:28:6a:5b:4a:da:05:0f:ca:30:42:19:7e:
6a:8b:7f:66:6a:7b:03:d6:e1:3e:b2:7d:d1:94:64:
4f:b1:d7:93:c1:7d:e5:1c:6e:e2:4b:37:44:05:32:
25:db:2d:05:81:d8:26:ec:2f:58:96:5e:17:5b:64:
40:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:70:0E:62:70:16:56:14:49:C7:95:26:CF:66:65:E2:16:3A:7B:CA
X509v3 Authority Key Identifier:
keyid:74:19:8F:70:22:B9:56:05:01:DB:44:8A:F6:03:01:FA:28:5E:92:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dBmPcCK5VgUB20SK9gMB-ihekjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/1be5e1-56b4-4c66-beab-6f163966af8b/1/dBmPcCK5VgUB20SK9gMB-ihekjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:8d:e4:60:a6:06:01:23:19:27:b7:85:63:a1:3c:15:24:47:
03:fe:42:02:78:4b:4b:c4:14:ef:e0:68:61:e5:5c:f5:ea:b3:
8e:34:c0:e4:f5:8d:f8:d9:9f:5d:8b:3c:d9:18:bc:08:64:9c:
2c:84:0b:5d:b7:45:a8:59:a4:f2:a2:b2:df:4d:c1:b1:c5:d1:
43:b4:7f:51:e2:35:46:22:34:52:e3:1f:96:e2:10:c3:a2:c4:
30:ae:63:d3:b8:9e:98:82:bf:a8:2d:31:08:cd:71:0e:2a:c5:
75:47:87:55:b2:20:53:8c:3b:a9:30:7b:60:92:95:b6:8c:96:
4d:19:d9:64:4f:88:88:ab:d0:af:cd:a5:ff:39:f0:67:11:b9:
57:2c:86:1e:b2:4b:08:ab:5e:37:8d:b5:5b:a9:85:e3:ba:74:
0c:a8:d6:50:0d:b0:5f:e4:e4:f5:4f:5c:45:a3:5a:99:5c:15:
44:f2:fa:6a:a6:37:ca:44:90:e8:2b:2b:05:86:2b:cd:36:17:
c0:e8:2b:fc:99:2f:b2:3a:27:f9:c1:a4:ff:aa:b6:ff:82:05:
4e:ff:1e:ff:5b:3e:8f:c6:02:f1:21:97:0f:61:ae:8f:9f:40:
5e:a0:f5:c0:47:f4:78:72:00:48:a3:7f:99:81:9d:a5:51:d5:
d4:eb:15:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 05:10:38 2025 by rpki-client