Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
File: vYUnKkCAkE914jWkevC0EmbipgM.mft (raw, json)
Hash identifier: 4gYH5NyQatrrr/g7/8eGK0pPDVGlBb5M9358s+ShCxA=
Subject key identifier: 16:94:D6:5F:00:CB:75:DB:7F:5B:40:9A:BE:55:73:FA:CD:50:07:2D
Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
Certificate issuer: /CN=bd85272a4080904f75e235a47af0b41266e2a603
Certificate serial: 019655008C39C6C1904394AA0CEDE7B145F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
Manifest number: 0828
Signing time: Sun 20 Apr 2025 21:00:20 +0000
Manifest this update: Sun 20 Apr 2025 21:00:20 +0000
Manifest next update: Mon 21 Apr 2025 21:00:20 +0000
Files and hashes: 1: qUq_q62qYu3qxVOMe_F0xihpmUw.roa (hash: SovqRJc4ePvthgrrsQXCalBtYnWMU+TdM7o0xgmwIiE=)
2: vYUnKkCAkE914jWkevC0EmbipgM.crl (hash: l7/RYMw5U0lyyppgfHSnGelz071ah8WHgtURxxYM+q8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:00:8c:39:c6:c1:90:43:94:aa:0c:ed:e7:b1:45:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603
Validity
Not Before: Apr 20 21:00:20 2025 GMT
Not After : Apr 21 21:00:20 2025 GMT
Subject: CN=1694d65f00cb75db7f5b409abe5573facd50072d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a7:cb:25:ec:7b:5c:24:2a:be:8f:27:ba:13:
c7:1a:4f:8a:27:c9:b6:86:6c:56:7b:48:fa:ca:73:
d5:52:53:b7:2d:0a:a4:32:e2:fc:5a:e3:0d:55:dd:
60:c9:ee:40:01:e4:f4:81:97:18:80:ea:6f:e8:ae:
4f:fa:8d:9c:1b:95:e6:3b:3d:60:54:e6:2b:f3:6d:
be:dd:33:40:6d:ea:c7:fb:a5:59:52:d3:13:87:6d:
1d:00:7b:15:6e:56:f3:eb:a9:13:aa:4b:b7:cb:2a:
79:db:cc:f5:dd:da:8a:d2:bb:5b:dc:ea:90:27:33:
cb:8d:c5:58:66:66:62:9f:23:fa:43:6e:e5:e9:d4:
42:97:f7:5d:da:e6:6c:71:78:d4:c6:3d:bf:a4:69:
1a:b7:51:3f:19:4d:b0:9b:f2:8c:a5:93:94:59:39:
5d:d2:cb:5b:29:6d:ad:e3:44:cf:5a:71:4e:06:31:
2a:f4:26:fc:ac:5e:bd:9c:91:fa:b1:22:6f:62:e3:
eb:17:b2:3a:76:f4:3d:93:e1:ca:18:4c:09:2b:47:
84:d2:bb:f9:2f:85:8e:a8:35:ad:32:57:23:67:72:
d3:81:ad:68:51:a4:07:b6:58:76:5f:f6:ef:26:a9:
d7:00:b0:f7:d7:2c:db:d2:23:de:bb:62:96:8e:e4:
19:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:94:D6:5F:00:CB:75:DB:7F:5B:40:9A:BE:55:73:FA:CD:50:07:2D
X509v3 Authority Key Identifier:
keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:d7:e4:6c:0c:d5:33:bf:4e:45:dc:07:59:e7:ea:f6:73:c6:
bf:33:16:1c:64:f1:e2:bd:07:14:5e:d0:be:41:7f:de:5b:aa:
91:9b:17:6d:d8:28:74:07:3a:87:5e:9f:d7:16:ef:22:97:a6:
71:67:c5:7b:5e:19:1d:f4:fe:61:73:dd:73:7f:84:36:6d:09:
f5:82:f8:cc:30:59:3c:84:61:1e:77:2d:1e:f7:37:9f:85:39:
d5:ed:15:7e:d0:90:4d:d9:23:7b:e4:e4:08:4c:4a:6e:6f:ce:
73:39:5f:14:8b:0e:aa:bf:f6:9f:a8:3e:8f:2a:c1:de:ac:37:
47:25:01:42:ca:52:77:95:4a:aa:c6:ee:95:d3:58:48:73:ca:
eb:a7:dd:bc:9f:2c:b9:df:7e:9a:09:55:c7:db:24:38:83:b7:
d4:a9:2d:78:82:83:22:ba:45:0a:2d:ee:e0:31:29:d3:ba:cc:
04:dc:ea:8b:5d:4f:db:ec:cc:24:58:16:9d:45:d3:c5:7a:b2:
2a:21:55:c7:b3:c9:f4:4a:1e:6f:76:fd:14:40:8a:13:ec:53:
5f:ac:14:a4:2a:e3:58:fb:5d:44:51:6b:9c:ec:69:2c:d8:58:
60:49:b0:d0:00:28:d1:ae:6f:e4:eb:e0:12:9f:e6:1f:42:29:
99:9d:9f:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:31:43 2025 by rpki-client