Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
File: vYUnKkCAkE914jWkevC0EmbipgM.mft (raw, json)
Hash identifier: Mh3IdV+ARRnKsxDQM2xTHHvudeQA3uJU7ZHH4yNxXns=
Subject key identifier: E5:8F:DC:AC:8C:CD:4F:A1:F2:84:1B:A9:BB:44:56:AF:28:B9:F1:1A
Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
Certificate issuer: /CN=bd85272a4080904f75e235a47af0b41266e2a603
Certificate serial: 0195108FBF8471B65040D90231585CD0E4BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
Manifest number: 0780
Signing time: Sun 16 Feb 2025 21:00:10 +0000
Manifest this update: Sun 16 Feb 2025 21:00:10 +0000
Manifest next update: Mon 17 Feb 2025 21:00:10 +0000
Files and hashes: 1: qUq_q62qYu3qxVOMe_F0xihpmUw.roa (hash: SovqRJc4ePvthgrrsQXCalBtYnWMU+TdM7o0xgmwIiE=)
2: vYUnKkCAkE914jWkevC0EmbipgM.crl (hash: QZ151Sr9gMV4xHjzK9ntzpuHKHIzVWQuZkLybyAKhNM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:8f:bf:84:71:b6:50:40:d9:02:31:58:5c:d0:e4:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603
Validity
Not Before: Feb 16 21:00:10 2025 GMT
Not After : Feb 17 21:00:10 2025 GMT
Subject: CN=e58fdcac8ccd4fa1f2841ba9bb4456af28b9f11a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:df:2d:49:d3:a3:2f:cc:e4:2e:bb:3c:d4:bb:
ac:e4:72:7c:de:d3:94:ed:15:57:d5:7a:c3:d7:c8:
16:5c:87:c7:7c:c5:69:b7:04:9b:1a:0c:15:98:29:
22:dc:4b:d5:c0:d3:81:d1:7c:c1:a2:4c:39:1e:c0:
07:41:2b:e7:4f:4a:74:11:e8:58:08:28:3c:9f:be:
0b:e0:9d:be:ab:ad:da:a7:ec:33:ce:76:74:84:17:
5d:85:89:95:05:40:84:d5:ca:f6:81:7b:3e:eb:b8:
04:a3:22:44:cc:01:81:c8:06:1b:4e:53:5f:0f:73:
42:ac:13:43:6e:0b:4a:4d:81:09:b7:13:8c:b9:ea:
23:6f:29:9a:95:1f:27:e9:ab:89:2f:9a:c6:22:24:
8d:07:26:d0:26:d0:71:98:a8:63:9d:85:88:f9:0a:
1e:be:0b:93:d5:19:b2:a5:53:2e:fd:85:9d:c4:e5:
fb:cb:a9:9b:3c:91:55:4d:7e:7b:aa:ed:b0:d1:5f:
63:94:f9:5d:a9:a8:85:67:96:13:35:2e:67:03:f9:
b2:01:a9:72:03:1b:2a:37:00:b9:8b:36:45:dd:a7:
6d:dd:d9:c7:c0:af:34:f9:ee:ff:74:a9:ef:0b:ba:
dd:33:3b:bd:18:c1:a6:1c:00:16:5b:eb:73:14:50:
cf:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:8F:DC:AC:8C:CD:4F:A1:F2:84:1B:A9:BB:44:56:AF:28:B9:F1:1A
X509v3 Authority Key Identifier:
keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:8c:6c:da:33:9f:e9:b9:0d:b9:86:6b:ba:f9:17:b3:31:c5:
e0:ac:73:4a:e6:ce:18:f5:fc:3a:c1:fe:ab:87:df:df:71:42:
9e:85:0b:43:80:2a:99:38:6a:51:5a:f9:73:28:cc:75:1e:cf:
c5:43:62:b1:b5:b1:e1:1b:be:5a:16:0f:40:84:cb:6d:53:fe:
34:5b:56:8f:b9:78:1f:8a:bb:02:18:90:6b:80:8b:ed:c2:fe:
ed:9b:8a:36:b2:fb:dd:eb:df:59:04:13:58:03:97:54:20:ec:
1b:09:a8:80:9c:31:00:2d:bb:66:3e:0f:3f:54:2f:b0:34:a1:
69:6d:34:b4:d8:b9:9f:55:30:4f:87:f9:39:c5:4a:b1:ea:f5:
ab:d6:b6:3a:83:08:b7:61:3a:38:aa:3a:77:cf:17:fd:f3:b3:
2d:84:53:38:15:f8:3d:0c:e1:1f:89:a3:c6:3c:9a:2e:4f:cb:
56:73:99:7c:99:c5:34:93:d6:e5:7f:33:fa:62:92:0c:c1:75:
0a:46:42:c5:b7:8f:c0:8f:0e:56:9d:ad:4d:fd:d5:10:09:d0:
01:e3:b4:a5:58:0b:31:a0:2d:a6:23:77:06:43:f0:16:9d:10:
4a:7a:77:da:ae:cd:b6:de:db:22:97:18:1a:66:b6:68:4d:e8:
b6:cf:60:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:03:01 2025 by rpki-client