Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
File: D3jqRswh1F7WEmjUqfVnMsheIVA.mft (raw, json)
Hash identifier: RHBq1ItIEdoq0kJwG7r5WuoZvdPtAYuEgp6/ieXKDxc=
Subject key identifier: A3:89:4D:12:BF:62:63:43:51:02:AD:5C:09:01:20:76:20:C4:E9:47
Authority key identifier: 0F:78:EA:46:CC:21:D4:5E:D6:12:68:D4:A9:F5:67:32:C8:5E:21:50
Certificate issuer: /CN=0f78ea46cc21d45ed61268d4a9f56732c85e2150
Certificate serial: 01960FE936261D8FDFF6E409C81608FB580C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
Manifest number: 14D9
Signing time: Mon 07 Apr 2025 11:01:04 +0000
Manifest this update: Mon 07 Apr 2025 11:01:04 +0000
Manifest next update: Tue 08 Apr 2025 11:01:04 +0000
Files and hashes: 1: 8SQTxy_p8cY9en9UR93vjFnnH74.roa (hash: LPCNfHY24fbVR2x4GxfhYD0c8Fxi97g9FBcWFfU2h/o=)
2: D3jqRswh1F7WEmjUqfVnMsheIVA.crl (hash: tqXOm3K+YliGjiJV8FvGonh7aLzn5EXU6A924grDvGA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 11:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0f:e9:36:26:1d:8f:df:f6:e4:09:c8:16:08:fb:58:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f78ea46cc21d45ed61268d4a9f56732c85e2150
Validity
Not Before: Apr 7 11:01:04 2025 GMT
Not After : Apr 8 11:01:04 2025 GMT
Subject: CN=a3894d12bf6263435102ad5c0901207620c4e947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:8e:02:a0:0d:05:ff:0c:63:e8:f9:73:c3:a2:
91:7b:7a:1c:83:fe:6e:ce:06:3d:b6:89:45:93:75:
13:e0:2c:bd:fe:9b:09:4a:92:27:49:c3:98:12:e4:
44:71:22:02:b9:d5:f8:45:16:1c:32:4a:bc:51:1d:
22:a5:7c:46:9f:cc:57:61:3d:b3:34:3e:72:dc:9f:
7b:3d:e3:bb:e4:8e:c6:b3:9a:f2:41:9f:8f:2e:6b:
39:b3:0e:9e:52:79:49:67:d9:2f:92:1f:9a:84:52:
40:ae:a0:dc:df:a4:91:12:fe:f6:8f:67:a6:f2:7d:
78:b7:6b:e1:d6:e9:ea:b8:68:78:d4:e9:0a:59:08:
77:04:2c:a9:a0:32:30:ce:ec:6f:04:df:40:c8:71:
82:e7:c4:d4:f7:2e:48:ac:4e:17:4e:c7:b6:8f:7f:
ab:0a:ed:a7:9c:91:5d:9e:18:ca:35:e2:ae:87:47:
58:0e:92:21:e1:c9:10:16:88:04:db:cd:f4:cf:17:
34:48:58:61:6b:80:31:d1:2f:58:28:16:a6:3a:18:
04:7d:ac:ab:d5:3a:35:e9:2d:46:92:b4:a7:0a:92:
6d:45:b6:6e:89:dd:65:93:2c:f7:c2:3d:65:e0:72:
43:86:8e:bc:ea:16:b7:0a:ce:53:99:5f:9a:bb:16:
7f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:89:4D:12:BF:62:63:43:51:02:AD:5C:09:01:20:76:20:C4:E9:47
X509v3 Authority Key Identifier:
keyid:0F:78:EA:46:CC:21:D4:5E:D6:12:68:D4:A9:F5:67:32:C8:5E:21:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3jqRswh1F7WEmjUqfVnMsheIVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0219c1-a551-4b91-9ca3-032b3b614dd8/1/D3jqRswh1F7WEmjUqfVnMsheIVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:04:17:15:e5:08:4b:77:14:b9:ec:32:85:8c:02:6f:c8:14:
f8:be:17:ea:87:92:10:91:5a:ed:a7:6d:98:2e:e8:13:72:70:
04:f0:ee:3f:ad:e8:b0:3a:e1:10:49:50:54:0d:55:10:33:fb:
4d:06:3e:d8:79:dc:06:58:e8:29:55:e2:86:05:0d:10:f6:33:
2e:df:ca:eb:26:53:75:57:64:0a:65:1c:c0:a9:e8:2e:e8:39:
28:ab:a0:af:7d:db:06:e9:65:92:a5:74:2e:c5:1c:87:1e:7e:
38:39:d2:38:50:a9:ea:92:84:b5:0a:e2:cc:4c:98:d6:ca:72:
00:0a:28:ed:11:28:02:af:6a:10:a9:64:de:44:c6:26:e8:12:
48:dc:fe:ca:33:57:ad:aa:2c:05:19:aa:98:2c:c0:f6:f5:f5:
18:e8:66:41:b5:76:a5:8e:75:75:7f:a8:70:65:fc:ec:aa:a3:
32:25:c7:a3:d1:c0:97:1e:0c:b4:5b:f0:3a:99:e7:ea:25:5a:
8d:51:83:43:fb:ae:e7:56:51:b7:4a:5a:80:dc:e6:25:c5:90:
8d:2b:18:23:e6:c7:43:84:cc:69:0f:a9:ea:5b:62:c2:fa:86:
ea:6d:29:ba:1c:43:10:e6:7c:47:95:70:1d:b6:fa:98:60:8c:
84:e9:95:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:15:25 2025 by rpki-client