Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.mft
File: sXtEkEx2lKVAig0pcsOf8LGwPqU.mft (raw, json)
Hash identifier: Cc4xdKoZgsCBfht8VgbGWBFsd0XRHnwEb2oM/0EbZNo=
Subject key identifier: BA:EB:A1:F0:22:40:1E:A9:EE:A7:2F:C1:B6:DC:5F:36:50:16:E8:7A
Authority key identifier: B1:7B:44:90:4C:76:94:A5:40:8A:0D:29:72:C3:9F:F0:B1:B0:3E:A5
Certificate issuer: /CN=b17b44904c7694a5408a0d2972c39ff0b1b03ea5
Certificate serial: 0196120EB759CED0DE11E0DAC3B99AF77C9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXtEkEx2lKVAig0pcsOf8LGwPqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.mft
Manifest number: 0D25
Signing time: Mon 07 Apr 2025 21:01:16 +0000
Manifest this update: Mon 07 Apr 2025 21:01:16 +0000
Manifest next update: Tue 08 Apr 2025 21:01:16 +0000
Files and hashes: 1: UDhX8BuvHOYMS5e9vYOFjWjGBYk.roa (hash: C1cyztzqKdd1lIZCQFArU9xrG3gU6hCt1VPEU5YkilM=)
2: sXtEkEx2lKVAig0pcsOf8LGwPqU.crl (hash: i9i9K+DspE2aC2fv8FnRb7dxeWcSiS2x2JlegV4ZR28=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXtEkEx2lKVAig0pcsOf8LGwPqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:28:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:12:0e:b7:59:ce:d0:de:11:e0:da:c3:b9:9a:f7:7c:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b17b44904c7694a5408a0d2972c39ff0b1b03ea5
Validity
Not Before: Apr 7 21:01:16 2025 GMT
Not After : Apr 8 21:01:16 2025 GMT
Subject: CN=baeba1f022401ea9eea72fc1b6dc5f365016e87a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a5:c3:f3:63:13:06:c6:28:3e:3c:ce:10:10:
d5:55:68:6b:f0:aa:78:30:14:ff:6b:8b:2d:a6:f5:
57:dd:fc:a1:95:81:be:52:76:97:3e:a4:be:4e:42:
43:86:c1:fe:f6:47:db:29:6c:65:5b:6e:44:a2:fe:
ad:83:0d:f8:99:0c:be:f6:bf:a2:f9:1c:13:33:3d:
36:84:de:e7:a4:9c:f4:54:5e:f8:7c:60:42:80:47:
e0:32:6d:37:21:59:1e:64:1a:9c:03:bb:cf:d7:4e:
38:75:84:4e:39:d8:31:48:f8:02:6e:d1:3d:60:21:
48:ef:da:5f:b6:e4:3c:6e:b2:67:f3:7f:65:40:8e:
3e:c7:c8:c3:20:61:0c:a5:1e:53:ee:8f:50:a6:9a:
77:2b:47:4e:30:71:75:98:4f:a9:e7:c8:ec:40:91:
e6:72:64:28:49:f7:c8:67:6e:ff:e6:ef:d7:ed:78:
bc:9c:20:fa:7a:1e:3f:7b:4a:a0:e5:d8:c4:66:f5:
a6:eb:ef:36:05:e9:08:97:e8:0d:59:fd:83:4b:10:
b9:4c:cb:eb:59:1f:b2:03:9f:e5:27:25:1b:9d:38:
c8:f1:35:04:06:bc:44:73:89:3e:08:42:8b:5a:22:
14:96:61:87:f1:81:1e:5a:7e:8d:6b:b7:2e:3a:30:
97:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:EB:A1:F0:22:40:1E:A9:EE:A7:2F:C1:B6:DC:5F:36:50:16:E8:7A
X509v3 Authority Key Identifier:
keyid:B1:7B:44:90:4C:76:94:A5:40:8A:0D:29:72:C3:9F:F0:B1:B0:3E:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXtEkEx2lKVAig0pcsOf8LGwPqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/918245-7b50-4952-a3a7-a45916955e6f/1/sXtEkEx2lKVAig0pcsOf8LGwPqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:a2:53:55:c9:a9:d6:02:25:77:97:e3:2e:66:be:f9:82:e1:
63:fd:fd:14:cc:cd:e3:bf:7b:69:a0:d3:ed:39:da:d1:ef:70:
17:98:95:9d:76:fa:70:3e:66:66:b2:19:1f:d5:b1:c0:0b:08:
7d:61:47:af:ca:86:f8:49:8e:67:37:ca:55:35:be:7a:aa:b6:
59:ab:e8:94:26:3b:30:1c:8f:ff:2e:05:11:c8:ef:98:f5:dc:
fc:c6:a3:94:13:64:58:9a:e6:7b:49:64:65:02:04:ef:90:9d:
c3:4b:8b:db:4d:ee:59:55:39:0d:b5:eb:f1:11:15:40:d3:73:
f2:97:6c:5b:44:84:cc:9b:54:81:aa:3f:bc:4d:27:55:bc:ee:
d8:cf:6d:0b:1c:ce:31:b2:61:45:55:bc:10:19:ea:10:c8:26:
79:be:62:2a:2f:3f:87:f1:dc:9c:c0:7e:d6:0c:18:1f:6f:e0:
1b:13:bc:29:81:ba:61:18:1d:15:61:d0:a7:cb:da:66:e0:54:
7a:65:55:3a:70:6c:6b:ac:82:07:79:95:c7:d0:a4:f2:70:12:
b0:b0:8d:ac:ca:a2:93:38:00:01:d6:89:3f:ff:a4:37:71:50:
81:cb:98:8b:c1:b0:e7:1a:e3:4a:eb:5e:6a:fd:e7:20:52:90:
bf:ea:83:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:27:32 2025 by rpki-client