Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
File: 1a8gwCbeEE2W8XrLr054fvnTAgY.mft (raw, json)
Hash identifier: vAgF8CaZUVgpL5lvL+3BHNTR6ax4Dte9oqeM0l0kgac=
Subject key identifier: 24:4E:C2:30:06:16:CA:F5:CD:6D:0A:78:C3:B5:24:FD:7A:47:CE:1E
Authority key identifier: D5:AF:20:C0:26:DE:10:4D:96:F1:7A:CB:AF:4E:78:7E:F9:D3:02:06
Certificate issuer: /CN=d5af20c026de104d96f17acbaf4e787ef9d30206
Certificate serial: 0196108E5C0C5CFCA3F7D6875D5420993CD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
Manifest number: 0919
Signing time: Mon 07 Apr 2025 14:01:27 +0000
Manifest this update: Mon 07 Apr 2025 14:01:27 +0000
Manifest next update: Tue 08 Apr 2025 14:01:27 +0000
Files and hashes: 1: 1a8gwCbeEE2W8XrLr054fvnTAgY.crl (hash: Db7pUqldgnuTHZ0+XBUL4tRXeuN+/QTiifeE9UoSSNw=)
2: ZntZKX2L_8Ma0koJ3HPW10lURHI.roa (hash: OJbq7vowsXJwKs2XlYdhIC+ZaJvxn8OPWmKWbar3xew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:10:8e:5c:0c:5c:fc:a3:f7:d6:87:5d:54:20:99:3c:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5af20c026de104d96f17acbaf4e787ef9d30206
Validity
Not Before: Apr 7 14:01:27 2025 GMT
Not After : Apr 8 14:01:27 2025 GMT
Subject: CN=244ec2300616caf5cd6d0a78c3b524fd7a47ce1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:02:ee:3d:35:31:53:40:6f:e5:0b:a2:0f:ae:
70:f5:54:aa:b0:50:f9:ea:b1:1a:79:e2:dc:c0:d1:
17:01:b4:49:b2:eb:33:25:d6:3e:9e:85:57:b6:cb:
f2:ed:30:e0:92:73:1e:fc:b5:a3:3c:76:6a:3c:7a:
a3:f3:43:62:3d:d2:cd:e6:c9:c3:15:38:c6:d5:e9:
08:be:46:96:45:b6:5f:7f:4c:e4:6f:68:7f:2b:53:
6e:2e:96:3f:16:2a:8a:4e:06:7a:82:12:11:d4:05:
13:22:3d:36:24:49:2c:34:49:78:5f:df:19:e0:a5:
29:4b:43:f1:09:03:35:30:db:54:71:42:89:80:6e:
47:36:a6:f5:21:88:ba:3b:6a:ee:50:52:b9:89:4e:
1a:b6:0c:fa:4a:76:66:8a:66:6b:a0:84:aa:6a:1a:
8c:5a:cb:63:ba:fe:6c:30:d1:71:a3:da:f0:d1:83:
22:fd:15:1b:1b:0c:40:8e:9e:f2:4e:72:8a:df:9c:
8e:e5:b5:d6:7c:6e:bd:00:e5:96:75:e8:0d:99:0c:
e1:83:90:7e:3f:a4:c4:ea:9f:ac:f4:c8:bf:4e:84:
50:46:35:e9:ea:b5:41:31:29:d5:18:49:36:b3:77:
2d:78:51:8d:80:8c:fb:6c:e1:64:2c:66:c3:df:c4:
04:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:4E:C2:30:06:16:CA:F5:CD:6D:0A:78:C3:B5:24:FD:7A:47:CE:1E
X509v3 Authority Key Identifier:
keyid:D5:AF:20:C0:26:DE:10:4D:96:F1:7A:CB:AF:4E:78:7E:F9:D3:02:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:00:6b:05:0d:03:64:09:c5:fb:ce:16:cd:19:5a:9a:4a:37:
45:aa:b9:43:b5:00:97:15:09:ca:43:66:ea:2d:b6:09:b1:60:
6e:18:df:cc:83:a8:7b:8b:3f:41:da:5b:0e:e5:fa:4b:5f:8d:
65:88:af:c9:f0:24:d3:9b:0f:f8:59:f3:37:e7:7e:ba:75:14:
aa:a0:3f:97:ad:7d:0f:d3:6a:7f:58:7a:37:f0:64:a2:8e:72:
21:85:ca:e4:55:20:1d:b7:8a:2c:0d:16:d1:d4:a5:7e:02:19:
b6:19:68:8e:c8:71:aa:cb:59:4f:ec:27:4a:b4:0a:12:5b:46:
75:70:19:44:bc:9a:83:b4:fc:36:67:94:58:ff:46:4a:b9:48:
36:0f:b1:2a:98:96:23:ff:1b:25:dd:7b:26:8c:3c:51:e3:d9:
57:af:65:77:56:a5:61:c8:25:7a:38:f9:f6:1e:4b:d5:87:d4:
a2:c0:f9:54:f6:95:d6:db:ab:b4:e1:f3:8e:22:8f:b9:6b:34:
0a:60:e8:f8:45:52:66:c2:2e:d7:b7:02:69:a4:ee:39:3b:e9:
bc:46:50:09:06:4e:21:d5:2b:e3:60:3c:e7:ff:86:f6:8c:f0:
4e:9c:2d:7b:bd:a8:a8:77:5a:70:31:49:43:48:79:7a:a1:63:
6c:7e:62:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:12:26 2025 by rpki-client