Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
File: VytO2SaC1xio_ESIFAAnQGlgeV8.mft (raw, json)
Hash identifier: yBFOkYGqzLa0dk43PwUU9I2O6elfhsHVBrrWoPvHAOo=
Subject key identifier: ED:01:83:AE:A5:08:5F:A3:59:44:33:5A:69:30:92:AA:3A:93:5C:13
Authority key identifier: 57:2B:4E:D9:26:82:D7:18:A8:FC:44:88:14:00:27:40:69:60:79:5F
Certificate issuer: /CN=572b4ed92682d718a8fc4488140027406960795f
Certificate serial: 019655A55CD0B2264671A4B0B0615B0168F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
Manifest number: 0B57
Signing time: Mon 21 Apr 2025 00:00:22 +0000
Manifest this update: Mon 21 Apr 2025 00:00:22 +0000
Manifest next update: Tue 22 Apr 2025 00:00:22 +0000
Files and hashes: 1: VytO2SaC1xio_ESIFAAnQGlgeV8.crl (hash: EHCVsmVsZE/MK/dglXkYncfAiKXKJyPAgxLzupsGBOc=)
2: xc-UZLTq46CsoQwfrFH96loErL8.roa (hash: imTueTgO4U1HucCZCJDX7it/v879nWtNhBcC9zIM6Z8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 00:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:a5:5c:d0:b2:26:46:71:a4:b0:b0:61:5b:01:68:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=572b4ed92682d718a8fc4488140027406960795f
Validity
Not Before: Apr 21 00:00:22 2025 GMT
Not After : Apr 22 00:00:22 2025 GMT
Subject: CN=ed0183aea5085fa35944335a693092aa3a935c13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:13:50:1e:d5:8a:96:34:96:25:0e:10:de:3c:
e3:e7:bd:1a:37:fa:10:7b:f0:90:b6:d9:d3:8a:04:
20:be:8d:2a:14:59:67:63:ef:a3:fb:6b:56:eb:76:
bd:ff:43:4e:c8:03:ce:0c:2a:7a:86:4a:81:7f:b8:
77:9f:19:98:09:37:e4:b3:7b:c7:78:46:0a:dd:4a:
ef:36:52:95:b8:98:08:8c:42:0c:ec:3e:08:33:08:
67:82:d2:d7:aa:5e:bb:c1:6f:04:19:5e:13:da:c3:
93:93:2c:fe:0a:ce:b7:03:b7:48:38:e9:ad:bb:c7:
be:8e:3c:10:f1:9c:7c:04:e0:a3:99:31:53:78:82:
60:c9:28:56:c6:c2:e2:39:b0:1d:46:52:51:8a:ae:
5b:a7:a6:d4:e4:77:f1:ff:b1:79:32:85:97:66:13:
03:fa:8f:94:54:3e:8a:7f:81:fd:08:0b:b4:5c:04:
6b:ad:d1:f4:4f:9b:58:64:c5:a6:b5:69:df:3a:fd:
f3:37:7f:16:df:cd:79:c8:6f:ce:48:40:ff:67:7b:
6d:13:a2:94:e6:07:5b:48:a7:df:b5:11:40:21:7b:
85:83:55:f0:cb:88:62:c4:50:9d:0c:33:ba:74:d0:
90:df:ac:3d:74:bf:e8:8c:ae:ba:e0:fd:a9:79:4f:
b8:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:01:83:AE:A5:08:5F:A3:59:44:33:5A:69:30:92:AA:3A:93:5C:13
X509v3 Authority Key Identifier:
keyid:57:2B:4E:D9:26:82:D7:18:A8:FC:44:88:14:00:27:40:69:60:79:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:82:90:c4:6d:db:bd:9b:a3:52:06:1c:2d:1e:34:36:66:38:
af:19:80:47:63:2d:6d:f6:20:ef:37:27:91:7e:6b:86:5f:1c:
49:7e:50:16:66:01:9e:09:fc:29:e5:cb:17:c9:b5:93:93:cf:
6d:3e:06:71:fc:60:b5:65:01:26:df:9c:4b:23:27:6d:63:b0:
8f:8d:20:26:8b:b6:c6:29:5c:fd:b6:e7:9f:c6:0c:99:d7:91:
59:57:0a:1d:7e:96:b3:9a:d6:98:ee:89:ff:e1:8c:dd:f6:eb:
ac:ac:5c:26:73:7b:3c:00:71:17:22:15:e4:83:c9:b0:17:f1:
67:27:29:86:92:0a:7f:27:ab:5d:d9:7b:94:a1:20:34:5d:e1:
df:af:ac:ba:c2:ed:f8:f7:75:76:e6:1e:19:f7:97:f6:76:25:
ac:22:3b:64:fe:55:cc:ef:43:1a:17:60:7e:ec:b3:ae:ac:86:
db:a9:af:41:0b:0e:20:61:86:56:1d:d2:ca:2d:62:a8:95:c7:
63:82:c5:aa:87:87:bb:8c:07:f0:66:cc:e8:6a:c2:57:57:6f:
87:b9:d0:2c:cd:90:6e:c3:87:1b:b9:53:41:08:40:c5:77:cb:
a2:45:b0:5b:63:ec:2b:05:75:72:e9:6e:ad:1f:d9:f6:88:97:
34:5a:dd:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 06:46:21 2025 by rpki-client