Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
File: mPArXPtBclCOBze_Jc1dIqAdxFo.mft (raw, json)
Hash identifier: wOVYfRE6K7yS99txTYG+ESbLff9rfCp/DFGkln7wzic=
Subject key identifier: 59:D9:D4:73:55:07:D9:7E:88:26:87:FB:DF:69:0F:14:85:30:D3:74
Authority key identifier: 98:F0:2B:5C:FB:41:72:50:8E:07:37:BF:25:CD:5D:22:A0:1D:C4:5A
Certificate issuer: /CN=98f02b5cfb4172508e0737bf25cd5d22a01dc45a
Certificate serial: 0196515B9C21159812D1FD6691D9E88763CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
Manifest number: 062C
Signing time: Sun 20 Apr 2025 04:01:20 +0000
Manifest this update: Sun 20 Apr 2025 04:01:20 +0000
Manifest next update: Mon 21 Apr 2025 04:01:20 +0000
Files and hashes: 1: Keu4ORQGNbpvqRyHyCkLTUO_lOA.roa (hash: 8AaJ0cxF0N1CmP6IwiLLt/ItfrvG5f97UQsDx1F7lhM=)
2: mPArXPtBclCOBze_Jc1dIqAdxFo.crl (hash: qSwIHKSfwEVQOUKDBHIfAcL3J15H3ajmVoCpM2WCEYE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 04:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:5b:9c:21:15:98:12:d1:fd:66:91:d9:e8:87:63:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98f02b5cfb4172508e0737bf25cd5d22a01dc45a
Validity
Not Before: Apr 20 04:01:20 2025 GMT
Not After : Apr 21 04:01:20 2025 GMT
Subject: CN=59d9d4735507d97e882687fbdf690f148530d374
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:5f:45:46:55:9d:42:c5:3b:ae:6d:af:24:38:
9d:78:2e:e8:bf:e4:79:b3:31:09:62:79:c3:b8:5b:
14:4a:0a:46:c3:ea:8d:87:c3:64:31:dc:47:fe:21:
d0:7f:d9:24:d8:9f:dc:67:d8:96:67:cf:45:29:fb:
86:cc:4b:be:dd:88:d0:8f:04:29:d8:4e:40:2a:48:
3e:0d:73:2b:c9:88:03:11:cb:a3:0c:c8:29:db:90:
00:97:78:73:00:6a:29:55:2f:2f:9a:df:ac:46:d7:
24:ca:94:4d:6c:a3:e2:a3:f5:6a:a6:3d:92:87:39:
f3:41:93:df:68:10:e6:74:fa:b7:ea:b0:14:21:44:
80:e6:ef:81:bc:51:0f:f3:68:82:bf:ae:ae:4b:3b:
ad:3d:e2:15:be:27:60:30:3b:86:91:d2:53:43:fa:
99:92:6c:d9:59:3d:8e:42:4c:c8:47:34:e0:78:cb:
da:c6:2e:ba:e8:e8:a1:f2:ef:fb:71:93:1b:f6:19:
b3:4e:78:78:3d:83:9d:d6:5d:2c:de:cc:42:17:85:
a7:e3:63:16:ad:3b:a2:93:f6:77:aa:4b:0a:87:bb:
2a:cb:f4:e6:5a:28:38:a9:a2:8a:64:c6:57:5e:d8:
bc:88:fd:75:98:40:eb:d8:d2:5f:56:ea:2a:21:38:
bf:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:D9:D4:73:55:07:D9:7E:88:26:87:FB:DF:69:0F:14:85:30:D3:74
X509v3 Authority Key Identifier:
keyid:98:F0:2B:5C:FB:41:72:50:8E:07:37:BF:25:CD:5D:22:A0:1D:C4:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mPArXPtBclCOBze_Jc1dIqAdxFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/43d301-f81a-492e-922c-c971dc713b1f/1/mPArXPtBclCOBze_Jc1dIqAdxFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:ed:bb:82:57:4e:a3:d2:d9:f0:b7:65:82:30:9d:e6:98:af:
44:b2:7a:e9:b7:8d:66:a6:57:c0:30:30:92:1f:29:66:e8:b6:
cb:f3:ae:13:d6:8a:6d:5f:4f:6d:cd:5c:7d:dc:1b:45:b7:6b:
a8:7a:3e:d0:54:e7:d2:cd:c6:e5:c7:5a:c5:6f:44:b7:dd:11:
9b:a0:66:50:ef:47:ec:78:24:31:27:e3:57:a6:47:71:b4:62:
5a:13:62:91:dd:e8:52:22:f2:ca:4c:04:b4:bd:39:bd:9d:ba:
35:4c:5d:e7:5e:a0:0d:23:b5:3e:aa:89:19:ac:ff:eb:3e:b4:
81:54:a4:a6:70:9d:43:05:0e:30:44:7a:bd:f3:3c:ba:c3:fd:
a0:a4:fd:6c:f8:19:d5:a3:9e:57:bf:6a:cf:6c:8a:4c:1a:c3:
3a:da:0a:69:4b:da:4c:d7:eb:60:96:6a:e0:ab:13:b8:a3:b9:
33:23:93:a4:8e:1f:bc:d2:1d:b5:30:52:79:3b:7d:3f:37:a3:
4c:71:af:eb:e6:ad:6f:00:91:0a:0b:62:54:8c:7b:2f:fc:07:
ec:9c:50:62:17:eb:eb:44:1b:4b:2e:89:94:9f:e7:83:5e:3b:
82:b4:26:64:86:13:6d:da:7f:16:02:6c:78:dd:06:f4:1e:80:
3a:52:b0:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:15:58 2025 by rpki-client