Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.mft
File: mbj9KSyKG4lrh1I0Sj2pI3jyrlo.mft (raw, json)
Hash identifier: ENZtjJjWIBmCG5JW6kadK5inD2+KSB/zy56UwdgEQ0c=
Subject key identifier: 12:EB:27:2F:83:D1:2C:0F:A3:17:DD:AE:C2:2E:20:5A:2D:A7:4E:C1
Authority key identifier: 99:B8:FD:29:2C:8A:1B:89:6B:87:52:34:4A:3D:A9:23:78:F2:AE:5A
Certificate issuer: /CN=99b8fd292c8a1b896b8752344a3da92378f2ae5a
Certificate serial: 01964F6C7C5831A9B39CC9FDF97BCB31365E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.mft
Manifest number: 03EF
Signing time: Sat 19 Apr 2025 19:00:31 +0000
Manifest this update: Sat 19 Apr 2025 19:00:31 +0000
Manifest next update: Sun 20 Apr 2025 19:00:31 +0000
Files and hashes: 1: VANQMbS9wJfHpjxNeVPpV7NpFIQ.roa (hash: UNFy8NT1hW32lKijy2cCpAEH6HPMdcOUxJumaoALuL8=)
2: mbj9KSyKG4lrh1I0Sj2pI3jyrlo.crl (hash: hLEpZM8ebDm6AJz4dQGnU4HfT+KXFZLc6sLDT+M4rQQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.mft
rsync://rpki.ripe.net/repository/DEFAULT/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 19:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:6c:7c:58:31:a9:b3:9c:c9:fd:f9:7b:cb:31:36:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99b8fd292c8a1b896b8752344a3da92378f2ae5a
Validity
Not Before: Apr 19 19:00:31 2025 GMT
Not After : Apr 20 19:00:31 2025 GMT
Subject: CN=12eb272f83d12c0fa317ddaec22e205a2da74ec1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:aa:4b:d2:eb:89:62:da:7c:33:14:78:9d:97:
cc:22:58:25:0a:58:13:73:8f:ac:64:2c:01:87:2b:
0f:ab:8e:32:db:7f:19:ad:70:52:9e:2c:af:a7:2a:
ee:51:bb:60:ba:c5:3e:56:8e:e0:30:bd:8e:24:24:
66:d8:c9:d7:42:5c:93:bf:f8:85:69:39:23:c5:be:
08:c4:86:ab:a6:32:0a:ed:fa:ef:7c:b8:09:b0:29:
30:cb:2a:1c:46:1d:2e:8e:4e:78:8c:4b:85:fc:be:
e1:c2:d0:ad:87:92:2f:7e:64:cc:b6:54:b3:f5:c1:
1c:8a:0e:5d:16:ff:c3:15:0b:a1:ae:ee:65:23:87:
21:70:e5:35:a1:a0:38:79:9a:d3:a8:57:14:45:c2:
3c:97:a0:a2:b5:b5:ed:bc:db:72:dd:b1:74:13:bc:
8d:a5:04:66:d8:7a:fd:01:8b:11:38:68:dd:d3:92:
70:f9:46:94:31:cc:6e:b2:6c:80:e5:42:74:ec:4b:
e2:b6:2b:7a:b5:86:ec:4d:41:d9:f0:81:2b:80:57:
c6:5c:bd:8d:b2:d1:4a:39:dc:c7:df:76:af:a9:63:
49:3f:b0:4d:22:28:3c:8d:53:13:a7:74:e1:b0:72:
8c:b7:0e:f3:cd:2e:ae:d7:f3:e9:97:ef:4f:12:df:
93:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:EB:27:2F:83:D1:2C:0F:A3:17:DD:AE:C2:2E:20:5A:2D:A7:4E:C1
X509v3 Authority Key Identifier:
keyid:99:B8:FD:29:2C:8A:1B:89:6B:87:52:34:4A:3D:A9:23:78:F2:AE:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a28ca6-af2f-40cd-b549-7eead1461a54/1/mbj9KSyKG4lrh1I0Sj2pI3jyrlo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:df:aa:6c:85:16:97:ef:6e:1f:10:04:2a:30:69:80:ad:8a:
47:69:4d:34:36:06:b6:86:c8:cd:98:4b:28:69:cb:d2:b8:1e:
c4:ba:51:34:d4:c7:70:55:80:40:f0:d1:07:23:3a:b9:3f:3f:
29:df:ff:53:a4:9e:9c:63:f1:23:56:28:af:aa:e5:cd:3e:9d:
2b:12:fc:49:03:1a:b7:52:8e:b3:28:82:af:66:a1:24:2b:75:
66:e0:f8:b9:83:07:b3:dc:3f:19:5e:cf:84:6d:7c:ba:90:72:
2d:be:55:4c:a9:41:99:70:b2:c8:54:99:19:af:f7:47:f7:d6:
6a:48:9e:c6:06:07:4f:6f:72:ec:80:2e:30:9a:5c:3c:7a:17:
8c:f3:a1:48:4b:83:4a:93:7d:5a:4f:fe:33:75:87:cf:6f:96:
90:c7:3e:9a:f9:3a:f4:11:bd:26:74:51:52:12:fd:6c:76:37:
99:69:f4:bb:ef:0e:e9:8c:94:6d:c0:1a:51:f3:e7:70:9f:49:
ca:6d:de:c6:6c:41:98:19:89:99:a5:a5:05:c4:27:69:4b:e5:
39:2e:ef:87:1f:c6:77:a4:39:4e:e6:15:b7:be:68:99:16:0a:
13:3b:44:c2:0e:2e:0e:5e:04:85:b2:18:4c:2a:be:cd:4f:14:
23:75:aa:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 05:02:43 2025 by rpki-client