Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft
File: wQdbeoGvSd7_tsg1xWCO4LiEMso.mft (raw, json)
Hash identifier: hsTqTkIoz/+lzMoYs1FYMAjtD1He8+dEfCAmGxfaaNs=
Subject key identifier: 88:87:B3:9A:AD:0F:90:4A:F1:A8:8A:E6:BB:BE:E6:A7:14:83:AD:25
Authority key identifier: C1:07:5B:7A:81:AF:49:DE:FF:B6:C8:35:C5:60:8E:E0:B8:84:32:CA
Certificate issuer: /CN=c1075b7a81af49deffb6c835c5608ee0b88432ca
Certificate serial: 019652A4B61DB03E25769E7E1F7440C2B56E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wQdbeoGvSd7_tsg1xWCO4LiEMso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft
Manifest number: 2D
Signing time: Sun 20 Apr 2025 10:00:48 +0000
Manifest this update: Sun 20 Apr 2025 10:00:48 +0000
Manifest next update: Mon 21 Apr 2025 10:00:48 +0000
Files and hashes: 1: YfJtBuAEzwrAwSN_J7xGNSKCjCE.roa (hash: XmpRYRo5Vs4yfW8P8k8ClzDTbvhLktOQ+0fCN4Fj/SI=)
2: wQdbeoGvSd7_tsg1xWCO4LiEMso.crl (hash: 6tMMsGlIAj8DnoIU6AH53t91zHD+i/67APdROqbXZls=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft
rsync://rpki.ripe.net/repository/DEFAULT/wQdbeoGvSd7_tsg1xWCO4LiEMso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:a4:b6:1d:b0:3e:25:76:9e:7e:1f:74:40:c2:b5:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1075b7a81af49deffb6c835c5608ee0b88432ca
Validity
Not Before: Apr 20 10:00:48 2025 GMT
Not After : Apr 21 10:00:48 2025 GMT
Subject: CN=8887b39aad0f904af1a88ae6bbbee6a71483ad25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:ae:78:e8:21:e0:b5:a5:6c:55:20:3a:9a:a0:
fc:ea:3a:b5:b6:7c:a6:11:27:19:65:e2:09:03:6f:
8e:63:e8:a1:ee:f8:6e:97:15:f2:cc:69:38:67:e5:
9f:f9:a5:54:87:9a:75:1f:38:8c:18:90:75:29:93:
76:4a:26:0e:ec:38:c8:78:5f:13:d1:70:0e:37:be:
d8:08:58:e4:30:6a:51:b0:93:5f:a5:d2:d7:69:f9:
8b:57:2a:6b:0f:07:7b:f3:80:b9:6d:21:95:5d:c9:
88:e6:92:66:c1:31:85:ef:ca:e4:31:0f:ac:df:2b:
82:0a:02:71:98:48:d7:17:83:97:50:dc:0b:4e:70:
b1:5a:3e:03:84:22:c6:1d:1d:ef:3c:2d:b6:76:f9:
3d:20:11:e4:14:e6:d5:ac:4d:ed:04:e4:b0:c7:e2:
86:8b:28:3f:f6:19:7e:89:d2:df:15:61:2f:e3:0a:
d6:88:d7:c6:36:11:b6:68:25:f5:a8:6f:6b:77:66:
01:2e:f3:de:71:05:6e:23:c5:e0:51:81:83:2f:23:
f2:ad:97:25:52:6e:05:0e:8d:f8:a3:34:6c:ee:ce:
b9:06:ba:82:68:8f:f2:68:5f:45:3b:74:74:e4:23:
cc:2b:c0:bf:4f:4d:0e:17:87:dc:52:bf:fa:c5:46:
14:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:87:B3:9A:AD:0F:90:4A:F1:A8:8A:E6:BB:BE:E6:A7:14:83:AD:25
X509v3 Authority Key Identifier:
keyid:C1:07:5B:7A:81:AF:49:DE:FF:B6:C8:35:C5:60:8E:E0:B8:84:32:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wQdbeoGvSd7_tsg1xWCO4LiEMso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/2a829b-32b3-496a-80ce-a02467f6425f/1/wQdbeoGvSd7_tsg1xWCO4LiEMso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:36:7b:ff:5d:6b:56:a6:90:41:4d:49:8a:46:8b:7a:80:ae:
cc:1b:3b:0f:f9:e2:9f:f2:6e:3f:6e:ad:f5:6b:c0:d2:b5:05:
13:d4:87:bf:97:09:77:09:e3:ba:c4:98:88:05:4c:dd:13:06:
c5:30:d4:74:fa:49:dd:69:dc:db:9f:77:99:37:fc:c1:eb:c0:
e3:75:12:65:6d:66:88:e9:c8:bf:e6:37:1c:ac:5a:ef:3d:51:
6b:fa:75:56:51:3e:98:ab:a3:69:be:03:82:61:3e:5e:55:2d:
6b:90:7e:f5:87:83:c3:8f:45:27:ba:57:dd:14:61:f1:33:3b:
3b:4d:5e:14:d0:54:87:3c:a6:79:d0:f9:3c:58:cd:f5:30:e7:
c0:35:7d:a9:ba:c5:a9:43:a6:78:b0:5f:b6:c8:9e:84:11:40:
ff:21:8a:1b:88:7f:4f:7c:50:af:3c:92:2e:51:08:71:80:5e:
a5:29:e7:ea:65:1d:d5:17:ab:78:8b:d8:5c:03:82:2b:6e:ce:
54:1a:10:78:92:77:02:18:6c:da:58:04:b7:59:4c:82:a6:ff:
a2:0d:7f:34:6e:af:8b:b6:30:a8:55:0e:15:3b:7b:47:79:35:
6f:3d:c4:f2:07:11:09:7a:3a:02:f6:13:c6:25:0d:61:02:ca:
6a:0a:87:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:15:45 2025 by rpki-client