Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
File: 0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft (raw, json)
Hash identifier: kBqeMdmj7A1DCrivkO1g1tOYJnGL27gs9sXE4ixulEk=
Subject key identifier: F1:E5:21:7D:11:70:8C:5B:A5:9E:40:95:8E:B1:3B:40:E9:B0:3A:8C
Authority key identifier: D0:EE:03:89:68:7D:BD:44:5D:E6:F9:23:9C:1D:02:C3:77:0C:F5:74
Certificate issuer: /CN=d0ee0389687dbd445de6f9239c1d02c3770cf574
Certificate serial: 01958C293D892FB981B643C9720095324FC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
Manifest number: 1497
Signing time: Wed 12 Mar 2025 21:01:07 +0000
Manifest this update: Wed 12 Mar 2025 21:01:07 +0000
Manifest next update: Thu 13 Mar 2025 21:01:07 +0000
Files and hashes: 1: 0O4DiWh9vURd5vkjnB0Cw3cM9XQ.crl (hash: 1PfRvytvMxxEogg0nqGEpno0/jn8zfhncePo/guLaF0=)
2: 4RiMrm8aaExTJ5NxhFCCQc-LTfQ.roa (hash: xT77mBm76fvxQ/4syBVoQsoquUiDMD7RefgDewlMNII=)
3: O84I_LAanBtJYvSSTZhnAsP3iQA.roa (hash: 6ivMoGITrJjRBuEurkZGNP+0M6whX3cvNI3NRDFJ7b8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:29:3d:89:2f:b9:81:b6:43:c9:72:00:95:32:4f:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0ee0389687dbd445de6f9239c1d02c3770cf574
Validity
Not Before: Mar 12 21:01:07 2025 GMT
Not After : Mar 13 21:01:07 2025 GMT
Subject: CN=f1e5217d11708c5ba59e40958eb13b40e9b03a8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:38:bc:ec:f5:01:ac:7b:7b:8c:9a:8d:0a:63:
11:ce:89:09:47:6d:c0:8b:ee:32:99:ff:04:fa:ad:
e4:8b:22:b8:5e:6e:de:ad:a4:f8:f4:6d:b7:18:da:
f7:af:4f:64:ba:16:1f:c1:ec:27:de:97:ca:fd:6f:
12:4c:d4:a0:b9:98:40:aa:06:8d:64:13:6d:55:a0:
a2:13:b6:7e:4c:fb:96:b8:65:d6:16:78:e2:58:1a:
2e:d9:02:b7:b1:11:3a:5c:41:37:bf:43:82:81:28:
fa:15:8a:7d:29:14:ae:24:ec:49:20:ce:9a:b5:93:
79:a8:a8:81:e6:26:9d:87:db:cc:03:51:57:e8:ad:
15:7e:12:7a:32:21:29:de:33:31:3a:54:fa:38:f5:
0c:91:00:10:22:49:bf:1c:11:3f:ad:cf:06:9b:47:
9d:d4:30:63:f0:29:78:89:2f:29:17:29:2f:19:e4:
43:f0:de:59:03:f0:e2:7c:bc:7d:20:20:63:96:d7:
82:97:b6:6a:3d:84:8f:af:e0:4a:9b:31:0e:79:09:
49:7f:3f:01:5d:11:1d:8f:32:a6:6c:7c:0c:bd:1e:
00:cb:97:d5:e6:ee:62:5a:08:60:d2:cd:bc:c6:95:
44:74:68:48:c4:c3:27:32:b8:29:2e:33:b7:ca:99:
53:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:E5:21:7D:11:70:8C:5B:A5:9E:40:95:8E:B1:3B:40:E9:B0:3A:8C
X509v3 Authority Key Identifier:
keyid:D0:EE:03:89:68:7D:BD:44:5D:E6:F9:23:9C:1D:02:C3:77:0C:F5:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:94:b2:ae:50:c8:65:90:e7:50:57:3b:a3:23:9e:d2:d9:ad:
51:4c:18:5f:a7:11:1c:c0:ce:b9:86:01:54:17:ea:68:2c:e2:
05:23:36:ca:51:c0:d8:89:ea:23:47:e2:71:ee:62:e2:13:e3:
4a:0e:c1:f2:79:3b:2f:b8:4d:d8:d4:57:ce:30:3d:28:64:2c:
54:5a:9a:43:e3:73:e3:4b:c8:70:49:d3:bd:3a:ca:39:53:12:
7b:f9:3b:7a:2e:d5:fd:f9:f0:62:bd:41:48:04:5f:ee:af:a4:
fb:c1:b1:6f:33:b4:b5:0b:b2:f9:6b:9d:2d:47:b9:38:96:ad:
3a:7d:b7:dc:68:e2:44:53:f9:9f:97:e8:3a:bf:f8:7d:37:20:
ca:77:00:64:ae:21:72:c4:c9:89:93:2b:94:6e:5d:d6:dd:fb:
0b:29:9b:6b:65:10:2c:ea:ea:ec:a4:86:61:0b:1e:38:57:9c:
85:13:12:f5:5b:ae:fa:8b:77:cd:5a:3d:78:ce:3c:ad:1e:7e:
ed:db:a0:dd:aa:d7:b8:95:a5:2b:7c:1f:b8:e8:29:46:ca:59:
f4:bf:79:2e:55:e9:46:bf:05:98:26:59:24:8b:5f:f8:89:76:
b7:9c:05:49:74:39:4d:fd:0f:66:aa:35:19:1d:ff:06:54:4d:
ed:c2:42:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:25:26 2025 by rpki-client