Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
File: 0q5eM4eU5g1di1I72yto7ErHYs4.mft (raw, json)
Hash identifier: nfAETODhS+ZmfVLyFsiEMOp7mqU5ncBFePmS7N7h9yA=
Subject key identifier: 78:60:99:09:84:BC:03:A5:0C:4A:E4:50:F7:A8:E0:EE:03:C6:A4:DB
Authority key identifier: D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE
Certificate issuer: /CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce
Certificate serial: 0196447B0F3A1DDE0963CCC7C57D9520B83E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
Manifest number: 14F7
Signing time: Thu 17 Apr 2025 16:00:37 +0000
Manifest this update: Thu 17 Apr 2025 16:00:37 +0000
Manifest next update: Fri 18 Apr 2025 16:00:37 +0000
Files and hashes: 1: 0q5eM4eU5g1di1I72yto7ErHYs4.crl (hash: fAY0IqledJin1npzrBwjMtqpgSLHAPQbgCynKWXR4VY=)
2: 5JInjtJs-s2-yK_dBCuc4HDNHSk.roa (hash: JUxQOg0RzN7jHCpHsSZf+phi3+AooD9Ty47K9VLPoKw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:7b:0f:3a:1d:de:09:63:cc:c7:c5:7d:95:20:b8:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ae5e338794e60d5d8b523bdb2b68ec4ac762ce
Validity
Not Before: Apr 17 16:00:37 2025 GMT
Not After : Apr 18 16:00:37 2025 GMT
Subject: CN=7860990984bc03a50c4ae450f7a8e0ee03c6a4db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:67:0b:63:38:61:b0:9f:3e:d0:52:0d:52:06:
1d:dd:eb:9d:dc:43:ee:01:d8:02:70:05:8e:e3:7a:
2c:a7:46:f5:76:b9:d7:a2:25:74:87:f8:26:c4:be:
4d:ef:28:95:4d:a5:91:1e:be:da:ee:fa:83:d7:e8:
62:5a:12:1e:ce:80:c1:fd:f9:4e:6f:cb:a4:df:6d:
8d:3b:74:4a:27:9d:65:22:06:7d:41:78:42:07:52:
a4:b0:14:81:42:c3:1c:82:a9:2e:4d:6b:3a:2b:05:
47:ef:06:cb:f8:a6:94:7d:57:96:45:23:d7:7b:2a:
07:00:3e:6d:66:a1:fa:7d:10:4e:9e:f3:5b:b1:93:
e7:7d:73:e9:97:3f:10:6b:fa:46:1c:15:13:31:67:
2c:44:a3:a7:23:cc:d6:c0:dd:76:de:dc:0b:78:6e:
59:79:0c:82:a6:1c:0c:bb:7b:81:73:e7:c0:35:1d:
c7:65:11:cc:6a:fc:ff:21:e4:fa:93:48:73:9d:ec:
86:a1:03:65:ef:ab:a8:3e:40:de:2a:5b:d8:58:ca:
4b:4f:9b:19:df:82:e0:e2:61:f5:d8:94:8e:f1:89:
fe:cc:d7:ea:71:c9:1f:35:70:d2:bb:05:4a:0e:d3:
47:c2:c4:5d:03:98:1f:ad:72:0c:18:99:7f:79:ed:
7e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:60:99:09:84:BC:03:A5:0C:4A:E4:50:F7:A8:E0:EE:03:C6:A4:DB
X509v3 Authority Key Identifier:
keyid:D2:AE:5E:33:87:94:E6:0D:5D:8B:52:3B:DB:2B:68:EC:4A:C7:62:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0q5eM4eU5g1di1I72yto7ErHYs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/d5df03-b5ee-4bf7-aedf-8d8e9ea14325/1/0q5eM4eU5g1di1I72yto7ErHYs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:0b:c1:43:b4:7a:76:ac:a7:44:e8:34:af:fd:4d:19:3d:ad:
ed:ee:fa:e4:5c:ae:bb:72:73:11:f4:f7:78:07:b9:02:5c:7d:
0e:0e:1e:2d:9e:ed:00:0b:04:27:8b:9e:59:e7:0e:28:e4:7e:
67:d7:bd:6f:1c:61:73:f3:43:b2:92:82:cd:f0:ee:6b:05:b6:
5a:77:4a:d1:fb:ea:86:d9:9a:2c:1a:f5:17:dd:50:73:b3:ea:
46:b0:b2:54:7d:ad:56:c8:cc:d6:c4:b2:40:13:40:52:89:ff:
56:bf:29:19:5f:fb:14:ab:39:39:85:ca:80:d4:15:da:ab:3e:
ae:2b:2b:ab:36:da:5c:f1:69:84:af:44:87:9d:46:ff:6f:04:
35:0f:9a:05:08:80:1f:10:89:20:27:21:37:97:ac:29:56:14:
7b:e6:07:38:14:7f:cf:74:f2:6f:ad:78:73:fd:05:a9:93:78:
ec:79:2d:41:b4:03:02:8f:c3:97:37:19:b4:16:08:ce:10:fd:
70:86:e6:87:b1:3d:e0:d5:63:f2:60:0a:aa:cb:0f:8c:73:c9:
2f:cb:79:5e:4d:16:c6:24:83:72:ec:74:a0:f4:4a:77:b2:56:
f1:2e:1d:9f:37:33:32:5f:35:11:5e:8e:70:78:aa:8c:0e:87:
2c:e7:d0:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 01:55:24 2025 by rpki-client