Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
File: 4rvHBn-KfFfWhtZ160aOmbhr1i0.mft (raw, json)
Hash identifier: m8SYcKeQojxP9NE4XGvtTqJXozK42yPz7uz60qMlB2M=
Subject key identifier: 6A:E4:85:5E:88:B9:52:33:65:6B:DD:96:F3:5E:33:20:85:96:6E:E0
Authority key identifier: E2:BB:C7:06:7F:8A:7C:57:D6:86:D6:75:EB:46:8E:99:B8:6B:D6:2D
Certificate issuer: /CN=e2bbc7067f8a7c57d686d675eb468e99b86bd62d
Certificate serial: 0196515BA3A2DDA6ACA000FC447930AFD6F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
Manifest number: 14CF
Signing time: Sun 20 Apr 2025 04:01:22 +0000
Manifest this update: Sun 20 Apr 2025 04:01:22 +0000
Manifest next update: Mon 21 Apr 2025 04:01:22 +0000
Files and hashes: 1: 4rvHBn-KfFfWhtZ160aOmbhr1i0.crl (hash: FzrxmRQVFaHZBXrcx+4msD8y+WDvURWgI4QiDSUfN7s=)
2: S9IbEuckGJ-9L5NueHluP1etdYo.roa (hash: 3hI+07Eg5raje1kn4kUfDxud5d5a2unK+1/vO0g99aY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 04:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:5b:a3:a2:dd:a6:ac:a0:00:fc:44:79:30:af:d6:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2bbc7067f8a7c57d686d675eb468e99b86bd62d
Validity
Not Before: Apr 20 04:01:22 2025 GMT
Not After : Apr 21 04:01:22 2025 GMT
Subject: CN=6ae4855e88b95233656bdd96f35e332085966ee0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:98:10:0f:b5:f4:e8:d6:61:ed:61:fc:a9:52:
58:aa:a4:52:74:5b:5e:fc:29:a1:63:ac:4d:6f:04:
ec:65:5e:2e:2e:6d:af:ae:97:ae:83:55:17:61:8d:
81:48:ea:1b:95:57:36:83:ff:ca:ab:5a:78:cc:b6:
fd:e9:43:72:ac:ab:94:c8:a2:cf:68:cc:91:af:c3:
d1:e1:c1:ab:d9:95:f0:fc:35:71:7f:ac:bc:a5:fd:
29:80:fa:fe:a2:74:7f:f6:e3:25:05:ca:bf:d9:82:
f9:ae:9a:a1:4e:c9:d7:78:9c:1c:5c:c1:82:9f:a2:
bd:26:ef:e7:d8:8b:f1:d7:4b:37:ac:6d:4d:0d:39:
cb:94:13:68:65:e7:3f:f9:08:92:49:5a:9c:26:11:
e9:eb:93:17:6d:29:41:84:3a:df:18:df:aa:a5:3b:
f6:49:a8:a9:e5:c2:28:e5:0a:d9:2a:f0:0e:9a:b0:
4a:27:e3:d8:6f:0f:ae:ac:c1:7f:54:6f:17:98:70:
1c:f9:ee:f4:c6:c3:f6:1a:fb:e3:bc:3e:17:d2:ba:
c5:16:5e:f4:f3:2d:fb:68:fd:b7:a6:c6:41:25:3f:
0a:09:90:32:28:68:13:e2:8a:4c:a4:48:2c:43:6e:
ef:d2:69:05:59:20:23:5d:02:47:81:bb:6f:5d:9b:
94:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:E4:85:5E:88:B9:52:33:65:6B:DD:96:F3:5E:33:20:85:96:6E:E0
X509v3 Authority Key Identifier:
keyid:E2:BB:C7:06:7F:8A:7C:57:D6:86:D6:75:EB:46:8E:99:B8:6B:D6:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4rvHBn-KfFfWhtZ160aOmbhr1i0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/2dac8b-76cd-40f0-854e-1da2acc76e11/1/4rvHBn-KfFfWhtZ160aOmbhr1i0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:e3:97:2a:30:12:58:b7:96:c3:fb:26:7b:33:ca:b1:ad:4c:
40:a9:32:88:ce:16:e5:7b:e5:a2:db:ac:fe:c7:41:50:0c:19:
6e:c0:74:05:f9:61:2d:6c:ae:d1:2a:7c:40:28:8a:b3:0b:46:
65:72:b9:79:79:d0:63:c2:34:d4:d4:b2:20:c4:be:f9:89:5c:
8d:9e:ae:e3:f9:8b:fc:89:51:cb:46:6c:9a:87:fb:b1:d8:ce:
1e:89:94:2a:5a:04:17:ec:47:cb:ad:37:f7:30:69:35:9d:a9:
ec:e3:3c:6f:37:1f:f4:57:d1:01:f5:6e:59:f7:8e:ce:98:b3:
e0:93:3f:f3:cb:44:bb:73:96:5e:1d:dd:24:bc:39:4a:e8:15:
94:49:96:43:c7:c7:68:24:26:22:fc:c2:c4:b8:1a:9a:b6:40:
b8:18:9f:7d:63:13:ed:c3:fd:2f:8f:b1:5f:e3:c3:5a:08:0d:
ae:ef:9f:dd:cc:78:e5:d9:8f:97:56:8a:3d:01:73:d3:75:61:
16:46:b4:63:71:1f:3d:f6:e4:01:ca:64:ce:82:3d:e3:30:90:
cd:fc:74:44:c3:b9:24:ca:e4:3d:42:c1:e3:a3:d3:7b:32:fe:
d6:5b:51:fe:27:8b:78:7f:b9:9a:da:e6:c8:ba:83:b2:8c:0c:
af:dd:cd:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:41:52 2025 by rpki-client