Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
File: IQm0ddOrXNHMHElnHnf_nbXOGfE.mft (raw, json)
Hash identifier: VY0lbaAAtYoWijr7bnIqs+pnWSxganp75e9aUClpvLE=
Subject key identifier: 62:19:71:1B:B4:7E:46:21:5C:8A:07:B9:5E:AC:0B:79:FB:6B:55:2F
Authority key identifier: 21:09:B4:75:D3:AB:5C:D1:CC:1C:49:67:1E:77:FF:9D:B5:CE:19:F1
Certificate issuer: /CN=2109b475d3ab5cd1cc1c49671e77ff9db5ce19f1
Certificate serial: 01958B168C257B696FC64B556D52FF24C26C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
Manifest number: 0E90
Signing time: Wed 12 Mar 2025 16:01:05 +0000
Manifest this update: Wed 12 Mar 2025 16:01:05 +0000
Manifest next update: Thu 13 Mar 2025 16:01:05 +0000
Files and hashes: 1: IQm0ddOrXNHMHElnHnf_nbXOGfE.crl (hash: g84ZC22G/Elmq2OXxTddPLoYvMKJPMc/hZ+PJSdU28Y=)
2: gxfPyS5KakpFEwmfLQLrUMtzDuA.roa (hash: rxllc4raZ48lNaZN0VdX0i2mHb0wFctajLKxvoGGQes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 16:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:16:8c:25:7b:69:6f:c6:4b:55:6d:52:ff:24:c2:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2109b475d3ab5cd1cc1c49671e77ff9db5ce19f1
Validity
Not Before: Mar 12 16:01:05 2025 GMT
Not After : Mar 13 16:01:05 2025 GMT
Subject: CN=6219711bb47e46215c8a07b95eac0b79fb6b552f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:68:d8:5c:81:1b:04:c4:9e:29:24:08:0a:ab:
8f:0d:e6:2f:76:14:67:1e:2f:a1:c7:57:86:30:fe:
2d:ef:a2:8b:e2:df:dd:09:be:3e:4e:57:5b:45:73:
92:11:e7:21:5a:51:c4:a7:a2:de:cf:a1:37:63:19:
16:03:3d:5a:73:f5:74:65:e2:84:55:17:40:a0:69:
f7:1c:c5:25:ed:90:33:3a:77:fe:8d:d8:6a:5b:0d:
92:12:80:ba:60:6c:7d:94:9f:59:d2:aa:45:54:b4:
99:86:e2:3d:af:d1:fb:93:d8:04:5e:7c:27:a5:22:
f7:8b:00:c8:5e:29:29:b6:8b:29:79:18:ad:31:6f:
37:98:ef:cd:d2:d4:4d:2a:90:35:cc:36:76:88:8b:
b7:76:bf:fd:04:c6:15:8c:31:82:52:59:b1:12:02:
33:ff:83:fb:d0:20:79:03:3e:55:98:cc:27:71:82:
a5:08:88:39:26:01:d7:0b:22:39:6c:14:91:4b:73:
78:08:3d:78:24:5d:69:06:fa:32:2f:c0:45:8c:26:
a4:90:e1:af:e9:33:a6:0f:9f:ae:cd:e1:43:5c:8a:
ab:07:0f:ca:42:b6:47:34:25:da:d2:75:74:65:d2:
1e:2a:ed:02:c5:52:b4:bf:b4:c8:95:06:a1:3f:f2:
e6:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:19:71:1B:B4:7E:46:21:5C:8A:07:B9:5E:AC:0B:79:FB:6B:55:2F
X509v3 Authority Key Identifier:
keyid:21:09:B4:75:D3:AB:5C:D1:CC:1C:49:67:1E:77:FF:9D:B5:CE:19:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:0c:a9:ce:f1:22:d3:b7:ef:ea:1b:8a:14:6a:56:42:91:99:
a6:1e:a8:40:2b:18:a1:59:81:28:d2:2c:7e:aa:4f:b1:79:70:
d7:47:3b:4a:82:23:01:80:44:4b:7f:3e:42:e8:f6:58:2e:aa:
38:56:42:f7:05:01:34:47:93:b6:17:81:86:2d:48:c8:da:08:
bf:44:58:a6:ae:aa:86:2b:a8:24:00:d4:fe:bf:42:19:b7:75:
16:0f:dc:1c:73:25:34:fe:6a:d2:25:50:1f:c1:34:a9:9f:52:
7b:cd:55:e4:7c:30:cb:fa:5f:27:95:28:d2:03:76:56:98:0a:
94:4b:1b:58:ae:8b:16:cb:c1:2e:36:e9:6e:0f:55:6a:c0:b2:
f4:79:f2:0d:cd:29:03:ed:84:f0:4e:cd:30:93:37:10:34:fa:
dc:cb:59:05:fb:4c:fd:9f:f4:7b:4e:12:69:11:b3:ae:97:c0:
9c:e4:84:28:f2:0e:5e:ed:e4:91:7c:ce:11:45:96:96:c9:61:
f0:8b:43:73:c8:d5:22:e8:48:8a:ab:6b:a7:7a:10:0e:8a:d9:
ac:98:3d:33:5f:bc:cf:68:6f:98:28:86:be:d8:9c:af:1c:b6:
87:ad:71:3b:7b:80:74:90:9c:4c:0b:fc:2c:4c:cb:37:92:88:
50:a1:09:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:47:19 2025 by rpki-client