Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
File: stCgxoogOf8MpRQCQRUnHIoEZgg.mft (raw, json)
Hash identifier: zzFGVh2prZHGEeDj58Cb1vKibcM9uem705oj9A7154E=
Subject key identifier: 3A:FA:D4:AB:4B:7D:54:89:95:E2:41:84:65:D3:BA:D8:99:87:4B:97
Authority key identifier: B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08
Certificate issuer: /CN=b2d0a0c68a2039ff0ca514024115271c8a046608
Certificate serial: 01962E2ACC0754DB11A7A60B7A1B5A40C0C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
Manifest number: 1479
Signing time: Sun 13 Apr 2025 08:01:18 +0000
Manifest this update: Sun 13 Apr 2025 08:01:18 +0000
Manifest next update: Mon 14 Apr 2025 08:01:18 +0000
Files and hashes: 1: 98pSG03PsWjsaovooO14-BTQ9Vo.roa (hash: Nos0vMcOhKzLe90FJjKrPfa+9LXdDpzz5DlngxI3jBk=)
2: stCgxoogOf8MpRQCQRUnHIoEZgg.crl (hash: sy/ENTl1bNtiMRQf4HG2rcfmIjNgxNmPwDO8LYFSlss=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 14 Apr 2025 03:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2e:2a:cc:07:54:db:11:a7:a6:0b:7a:1b:5a:40:c0:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d0a0c68a2039ff0ca514024115271c8a046608
Validity
Not Before: Apr 13 08:01:18 2025 GMT
Not After : Apr 14 08:01:18 2025 GMT
Subject: CN=3afad4ab4b7d548995e2418465d3bad899874b97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5d:da:74:25:96:a4:f9:6f:1d:96:5d:32:f3:
3b:da:a4:71:94:7b:03:eb:44:be:2a:75:ae:f9:65:
23:49:27:3c:a6:cb:14:af:c0:c6:bd:3c:52:7e:05:
93:79:ec:0c:a3:ec:42:14:f7:9b:46:fd:26:d2:d3:
9b:e9:1e:3a:36:2b:1b:ed:90:b4:a3:6a:69:6e:12:
e3:90:3e:0c:d5:fc:ea:8b:8b:ef:e0:e4:43:03:18:
86:a8:98:53:28:1c:52:7e:ae:31:15:1c:1f:13:b8:
76:77:9d:1d:bd:7e:27:fa:8d:1c:8b:5a:77:0e:48:
b4:64:28:30:6b:c6:87:53:62:0b:c7:2b:58:19:90:
86:24:67:ad:95:df:76:e7:ac:9a:17:f5:07:6d:ec:
82:b8:3a:80:5b:bd:3b:65:64:56:00:34:d9:f2:47:
59:70:4b:4c:2f:fe:38:d2:2e:8e:60:08:81:83:bb:
cc:ca:5f:b3:27:8c:61:49:a6:c9:dd:7c:e4:9a:62:
20:78:43:40:c0:c7:00:ad:94:d8:5c:5f:c7:99:91:
3d:90:62:bb:90:e8:e5:60:67:30:75:c5:23:56:f5:
dc:59:5c:e6:f4:83:39:a8:ac:da:f0:66:f7:72:6c:
f9:ae:ee:b2:48:b8:30:46:c3:8f:d7:aa:dc:81:ea:
84:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:FA:D4:AB:4B:7D:54:89:95:E2:41:84:65:D3:BA:D8:99:87:4B:97
X509v3 Authority Key Identifier:
keyid:B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:da:6f:c9:02:16:3b:ca:79:ed:0e:78:31:f9:ec:5d:b3:1d:
66:b2:49:ca:82:34:31:27:a2:1a:26:0e:de:3b:dd:de:d8:5b:
d1:3e:e6:c0:7e:5b:8c:7f:91:e9:37:a5:67:31:f6:3f:4a:8a:
b0:04:b9:6d:5b:59:b6:57:b3:d1:cf:af:74:9f:c0:c9:a7:10:
34:45:f7:ea:01:09:d6:df:6d:9e:13:5e:e7:4f:fa:db:5b:6a:
4f:e1:d4:26:5a:5f:1e:d0:9e:b2:ca:8e:f0:00:c9:f1:2b:b4:
ee:9b:4f:70:b4:b5:9a:43:ab:94:ca:39:35:6e:5d:ab:24:c9:
c5:cb:ba:5b:12:ac:2f:f2:05:c1:3e:3e:12:aa:be:f1:13:65:
4b:f1:40:1b:4d:17:51:37:ad:6a:3b:19:cf:32:e1:02:fd:d0:
16:06:39:53:f6:3d:b4:e1:94:7f:7c:ca:02:b7:e0:d3:d4:ab:
22:d3:f5:fa:64:ee:4c:01:5a:c7:50:a4:da:8c:2c:66:fa:67:
78:d3:c8:ab:ee:7e:8d:08:b8:d0:12:00:3d:38:d7:78:87:da:
a2:d6:74:ad:2e:b6:41:11:3c:5b:db:0a:b7:f6:14:6c:84:c3:
0b:60:bc:58:35:bb:b8:9e:62:84:2a:d1:94:fd:57:67:d9:39:
e9:fe:96:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 10:06:22 2025 by rpki-client