Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
File: fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft (raw, json)
Hash identifier: 4TO7mDRd+2xNpPy2aU1zLkmvgG8RctJfYePtsdTc3VY=
Subject key identifier: 94:BF:ED:0F:D2:44:7A:92:41:FB:36:5F:37:89:65:8A:3D:8F:AB:8E
Authority key identifier: 7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C
Certificate issuer: /CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c
Certificate serial: 01965B3984F88DAF4718FE97EF235DABFCD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
Manifest number: 1493
Signing time: Tue 22 Apr 2025 02:00:18 +0000
Manifest this update: Tue 22 Apr 2025 02:00:18 +0000
Manifest next update: Wed 23 Apr 2025 02:00:18 +0000
Files and hashes: 1: UkqG3VMYAz9uABWF42sKAydGWoA.roa (hash: /dg3EZ5BvktCoE6vyv9z5Q4gql01gT6XeimrmuNAS5k=)
2: fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl (hash: boLL+UM8svXtsSZlHLSnRwoDWIio6WIX6IJjgkLCD5Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 02:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5b:39:84:f8:8d:af:47:18:fe:97:ef:23:5d:ab:fc:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c
Validity
Not Before: Apr 22 02:00:18 2025 GMT
Not After : Apr 23 02:00:18 2025 GMT
Subject: CN=94bfed0fd2447a9241fb365f3789658a3d8fab8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ee:e0:f9:50:5e:df:35:68:ad:57:cc:b9:b5:
26:5f:51:f3:b6:9a:01:e1:ca:d3:a4:71:59:6d:c0:
cc:3c:4e:bd:22:e5:35:b7:ce:74:bd:c6:11:a9:45:
a5:cb:f2:bc:c6:24:8c:ed:21:73:2b:de:dc:8f:b2:
bf:2b:0d:81:64:c2:2f:13:96:ec:61:06:a9:5f:13:
3c:e2:7d:2e:3e:22:c1:c4:3e:d3:59:ff:60:32:b6:
ad:db:4e:94:70:89:63:05:ec:22:90:18:4d:b6:5b:
db:e6:d8:d1:26:15:2d:a0:04:74:f3:0b:18:cf:bf:
32:2f:2d:80:92:46:4d:e1:31:b5:44:59:fa:55:f2:
60:0b:a8:fa:7d:b7:30:81:37:ab:d5:ca:68:b1:76:
7c:1a:39:0e:98:47:c1:bc:6c:14:c1:b7:6c:b9:32:
77:7f:92:b8:f4:94:f2:f5:bd:fa:60:d4:5c:d8:68:
bb:4d:0d:d5:12:08:f2:80:56:c0:e1:18:00:e3:a6:
06:01:e0:96:c6:1f:3f:b5:bd:b3:70:8a:e4:d7:19:
88:bf:53:bc:3a:06:90:7d:8e:51:10:91:7e:28:58:
9f:03:89:a6:74:aa:02:5f:9d:22:6c:9f:fd:ff:4f:
bf:68:ae:8e:ad:b9:7d:19:00:0b:fd:be:09:76:af:
d1:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:BF:ED:0F:D2:44:7A:92:41:FB:36:5F:37:89:65:8A:3D:8F:AB:8E
X509v3 Authority Key Identifier:
keyid:7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:0b:09:5c:91:61:6d:2a:e5:cc:86:c3:65:76:19:b7:d8:62:
77:e1:f7:9c:58:9c:05:4a:6b:6e:c3:fd:8e:1e:28:30:f0:f0:
75:45:0a:21:f5:66:e8:81:83:97:3d:d3:52:aa:8e:1e:cc:39:
94:fe:ef:80:3d:c4:10:b5:d9:bb:89:de:9c:5f:8e:1f:2b:f0:
ed:c0:23:f4:54:59:38:a4:d3:8d:37:7b:6c:6c:36:f1:eb:d7:
d8:f9:b4:31:00:e8:33:30:a7:3a:5e:01:14:d3:2c:ce:32:93:
79:61:d5:a2:e2:53:1a:5d:f6:b8:64:bd:f2:44:b8:14:22:4a:
f1:c1:60:14:e7:22:8c:dd:15:3e:2d:8f:6f:52:b1:c7:e4:9b:
d2:60:ab:9c:32:69:31:d2:44:50:4e:18:86:de:e9:25:ca:bb:
cf:a1:59:a5:b7:e7:34:11:46:a1:0c:13:e1:36:b5:83:cf:1f:
fa:ed:0a:c1:ca:31:7c:16:fb:94:68:c5:f7:39:93:cd:d9:a8:
b6:af:8b:6b:14:ea:a0:4c:9f:ff:98:0f:72:7f:50:a5:99:0b:
72:03:d0:20:e1:d2:1e:cc:91:d6:a1:24:5c:db:d8:81:e4:f5:
c0:27:eb:84:6d:e6:8d:7f:e4:c5:52:cb:eb:6c:16:46:f6:10:
42:ef:bd:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 12:36:44 2025 by rpki-client