Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
File: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft (raw, json)
Hash identifier: bl8chdPGEeDIkIt1JE7y7+8lt8K1jsLJ4l0X74u+nFs=
Subject key identifier: E0:D6:00:F7:18:C4:69:B5:B7:A9:7A:A0:93:6C:3D:C9:E2:2F:8E:C4
Authority key identifier: DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B
Certificate issuer: /CN=dd5b224b6593e558038a9e40e660c77142755c1b
Certificate serial: 01964B224206DB7CF0C7E5A9D47F3754313C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
Manifest number: 090A
Signing time: Fri 18 Apr 2025 23:00:58 +0000
Manifest this update: Fri 18 Apr 2025 23:00:58 +0000
Manifest next update: Sat 19 Apr 2025 23:00:58 +0000
Files and hashes: 1: 3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl (hash: nF55n2YCJ4lHwqQoeNydyoglDXiznox0M5xw94LuiWo=)
2: jU0yi7PHweJFHYaEaX0jg-4Q_RU.roa (hash: 8PA9xbvSb0ZvYzYhTOCmIzBIyrP4FgGrFueLXskDR54=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:22:42:06:db:7c:f0:c7:e5:a9:d4:7f:37:54:31:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd5b224b6593e558038a9e40e660c77142755c1b
Validity
Not Before: Apr 18 23:00:58 2025 GMT
Not After : Apr 19 23:00:58 2025 GMT
Subject: CN=e0d600f718c469b5b7a97aa0936c3dc9e22f8ec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a1:1c:65:18:42:ba:91:e2:4f:7f:bd:04:a1:
8c:d6:8e:5c:03:e9:22:fb:29:66:34:9b:25:8d:3c:
75:86:1f:de:41:37:d1:ec:84:8f:8d:ae:ea:6a:4a:
8c:8d:24:99:90:7c:96:fa:1e:2e:49:1f:fa:3d:62:
02:f0:9f:34:00:95:5c:8a:01:eb:80:13:10:c2:4f:
9f:a6:5d:d5:85:6c:e1:a2:59:c4:fb:ec:62:36:ce:
6b:60:68:b4:50:1e:2d:4f:c6:33:80:43:a0:c2:c2:
5b:a7:8f:13:7f:11:89:aa:30:59:4a:fe:c7:f1:fc:
c0:da:8f:3e:00:15:87:ca:62:37:4d:cc:05:8b:42:
7a:61:d4:93:99:b3:8c:43:1c:f6:e7:9e:2d:7d:86:
2a:8d:bf:40:ce:2d:cd:ff:49:5b:49:0f:66:01:c5:
d7:0c:94:04:ac:e5:4a:69:c9:a4:29:52:82:83:07:
37:2c:f3:5c:44:14:58:2e:42:f3:60:be:17:1f:00:
b1:5b:58:ed:20:ce:95:ff:11:f0:93:c9:3a:d1:67:
c8:9f:d7:0f:cc:56:f1:2a:b7:29:b2:d4:73:a5:65:
90:2e:da:f8:4b:b5:80:52:69:d2:92:e1:30:2d:d8:
48:7c:ee:bd:22:15:01:9f:7b:e5:a5:ad:44:29:e4:
8e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:D6:00:F7:18:C4:69:B5:B7:A9:7A:A0:93:6C:3D:C9:E2:2F:8E:C4
X509v3 Authority Key Identifier:
keyid:DD:5B:22:4B:65:93:E5:58:03:8A:9E:40:E6:60:C7:71:42:75:5C:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3VsiS2WT5VgDip5A5mDHcUJ1XBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/652dfe-acae-4243-bf33-30bbfc0855e4/1/3VsiS2WT5VgDip5A5mDHcUJ1XBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:4f:7c:24:a7:8c:4e:8c:59:87:c4:1b:69:de:7b:0f:3c:fc:
0d:0e:9a:72:3e:ef:85:bf:7f:81:9f:15:d5:67:1d:9a:01:6a:
73:f8:d3:3d:70:8c:79:ea:5c:9e:2e:10:72:79:40:a7:21:db:
e4:8b:74:43:35:99:2f:e4:3b:d1:88:ce:6e:90:8e:a4:83:df:
a2:36:85:68:a8:30:9c:e4:63:ee:78:61:84:27:26:0a:4d:79:
05:66:54:d8:90:be:e2:b3:ec:75:dd:a6:1e:64:50:70:f5:d6:
ca:78:ff:12:b4:09:0f:25:a9:33:59:c9:63:42:d9:3d:bc:00:
d7:ee:64:d9:85:ef:96:1b:a1:4e:89:88:92:70:3d:f3:d5:db:
9e:b9:10:01:6f:05:f2:b6:15:21:75:9f:69:d7:dd:dc:71:54:
fc:fa:59:ab:24:35:73:5b:6e:30:0e:c2:b3:e0:66:ed:2d:f8:
a3:7e:79:24:91:15:d7:f7:3d:ca:35:29:37:ad:2d:f7:7e:fd:
ac:b2:7b:d0:e3:41:0c:9d:4c:6f:01:bc:c4:a4:a0:f1:8d:d7:
06:3f:9d:61:fa:64:a3:c3:73:a6:e2:44:cb:1c:06:62:17:0c:
83:13:88:d2:5c:fb:9f:7e:15:05:d3:e3:62:aa:d2:49:44:c6:
a9:40:c5:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 05:10:48 2025 by rpki-client