Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
File: mPArXPtBclCOBze_Jc1dIqAdxFo.mft (raw, json)
Hash identifier: KekQHht6l+rKESZsVHD+VFby2ZdbjGvtb2t2JJpcGHU=
Subject key identifier: 44:17:2C:67:B8:A3:5E:C8:2B:18:52:E7:3A:9E:2D:D7:27:20:46:F5
Authority key identifier: 98:F0:2B:5C:FB:41:72:50:8E:07:37:BF:25:CD:5D:22:A0:1D:C4:5A
Certificate issuer: /CN=98f02b5cfb4172508e0737bf25cd5d22a01dc45a
Certificate serial: 0195903DA8229525282360088D8DD68E2D3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
Manifest number: 05C8
Signing time: Thu 13 Mar 2025 16:01:54 +0000
Manifest this update: Thu 13 Mar 2025 16:01:54 +0000
Manifest next update: Fri 14 Mar 2025 16:01:54 +0000
Files and hashes: 1: Keu4ORQGNbpvqRyHyCkLTUO_lOA.roa (hash: 8AaJ0cxF0N1CmP6IwiLLt/ItfrvG5f97UQsDx1F7lhM=)
2: mPArXPtBclCOBze_Jc1dIqAdxFo.crl (hash: s+STc9RfIj5ZrXyp7RnwvHkIil8jKoz12IFXWGfAxg8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:3d:a8:22:95:25:28:23:60:08:8d:8d:d6:8e:2d:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98f02b5cfb4172508e0737bf25cd5d22a01dc45a
Validity
Not Before: Mar 13 16:01:54 2025 GMT
Not After : Mar 14 16:01:54 2025 GMT
Subject: CN=44172c67b8a35ec82b1852e73a9e2dd7272046f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:86:67:3a:47:18:bf:cd:4a:b5:97:56:b3:1a:
fc:73:4d:cd:61:5a:67:13:11:79:e3:4a:df:fd:18:
dd:a9:2b:59:1e:b9:87:ea:be:93:f7:f4:95:c3:03:
cf:3d:7a:d9:18:38:f3:5d:7d:95:53:20:e6:2e:ca:
42:64:3f:5e:13:2d:b3:a5:1b:25:91:1f:a3:c8:32:
dc:d5:36:fd:94:47:73:96:d6:b0:d7:af:1a:2b:e4:
d0:8b:00:24:91:c9:83:5c:c8:a4:d9:d1:de:99:a1:
02:db:c0:36:01:a4:69:4a:fe:4c:96:b2:7b:18:4a:
e5:75:b5:51:cd:72:d1:be:42:34:ec:84:de:4c:b7:
c5:7c:2d:0f:52:15:c6:72:c9:6c:32:ae:f7:b4:28:
69:d0:34:60:f9:57:bd:67:b1:c3:22:a3:88:cd:f9:
e3:e4:13:25:72:e1:7a:a4:fd:fb:33:3d:54:18:60:
d9:3f:63:2c:3e:4d:7b:56:9a:4c:98:17:ba:fc:21:
b3:23:6c:f4:e1:b9:63:a2:a1:a7:07:b5:9e:78:75:
ab:9f:6a:67:3c:6c:8e:90:08:fa:09:f4:ba:1b:97:
a1:74:f0:87:93:a6:b0:50:ef:56:d6:9c:42:ba:f4:
ce:e0:a2:b1:3c:fb:37:92:14:d3:49:18:1f:8b:bf:
fd:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:17:2C:67:B8:A3:5E:C8:2B:18:52:E7:3A:9E:2D:D7:27:20:46:F5
X509v3 Authority Key Identifier:
keyid:98:F0:2B:5C:FB:41:72:50:8E:07:37:BF:25:CD:5D:22:A0:1D:C4:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:f4:49:5b:2c:48:d0:48:86:5b:8d:7c:ab:6d:45:64:9d:14:
8b:b0:8f:b7:a1:f2:cd:ec:d7:e0:ef:a3:fc:a6:d4:0a:f1:38:
b2:93:d4:ec:c2:40:7b:3f:98:ca:af:b0:66:e6:f6:10:04:38:
cb:55:50:ea:c8:40:f3:54:6e:05:84:fe:e0:2a:50:a6:3f:a8:
a9:4e:30:07:c6:89:66:f3:1c:f0:a9:62:03:2c:11:c6:a7:28:
25:18:6d:4c:e3:9f:1c:bd:07:b7:c8:f9:d5:8c:12:14:c4:a4:
02:ea:ac:be:c6:3d:c1:61:f0:38:6c:ff:ea:d6:ed:05:72:d1:
da:af:60:e8:36:be:f6:09:3d:34:ad:21:23:04:16:b5:5d:d0:
b7:25:df:6e:6d:84:03:08:1f:7b:93:2a:82:e0:56:3c:ae:e2:
de:6b:62:65:5e:16:97:3a:a5:d8:6f:b4:b9:d1:c2:82:2e:b8:
1b:a6:6e:98:b0:81:9e:a0:26:6f:e1:8d:3d:a0:ec:6b:76:2b:
0f:99:9c:b1:92:b5:9f:22:c1:78:78:72:cb:58:16:e3:57:1f:
f5:12:98:22:63:fc:f6:8f:c2:67:b8:60:98:7a:aa:e3:11:49:
1d:5e:b6:b8:d3:a9:cf:e6:28:e2:de:14:2b:6f:3c:1e:2d:a1:
2e:2d:22:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:58:30 2025 by rpki-client