Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
File: 0ffNDsTDvFTFlDEwfuw27wOCdzM.mft (raw, json)
Hash identifier: zNAXJddPCpxlyVVWgj3QasBwVFtpYSJfuXLdnDXN3ks=
Subject key identifier: 75:F6:0D:11:DC:2B:46:BC:FD:DC:ED:90:70:36:35:C9:EC:D4:58:26
Authority key identifier: D1:F7:CD:0E:C4:C3:BC:54:C5:94:31:30:7E:EC:36:EF:03:82:77:33
Certificate issuer: /CN=d1f7cd0ec4c3bc54c59431307eec36ef03827733
Certificate serial: 01964FDA9335F0ECA944FE361434ACE387AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
Manifest number: 14FA
Signing time: Sat 19 Apr 2025 21:00:46 +0000
Manifest this update: Sat 19 Apr 2025 21:00:46 +0000
Manifest next update: Sun 20 Apr 2025 21:00:46 +0000
Files and hashes: 1: 0ffNDsTDvFTFlDEwfuw27wOCdzM.crl (hash: gP0QS8KHFjSg6CR4vFbHAfD9zu1m8TzJClcOjlR18zk=)
2: On0cxXdpQvZ_jJI1Rkh3ZfuLUxc.roa (hash: 9kDdHzwM7pfMm0bFoQEb02mFtUGZEAgcsF0RvK2rnzM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 21:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:da:93:35:f0:ec:a9:44:fe:36:14:34:ac:e3:87:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f7cd0ec4c3bc54c59431307eec36ef03827733
Validity
Not Before: Apr 19 21:00:46 2025 GMT
Not After : Apr 20 21:00:46 2025 GMT
Subject: CN=75f60d11dc2b46bcfddced90703635c9ecd45826
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ad:58:33:f2:7f:00:86:09:c5:2a:b5:3a:ab:
e6:42:01:f1:12:33:eb:6e:be:4c:bf:e4:1a:c3:8c:
3b:f7:c1:b4:12:dd:6c:17:d8:8a:0e:b6:b2:20:f1:
ed:ea:ff:17:43:bd:f3:0e:15:b4:46:2d:13:f9:c8:
49:d7:7c:5a:88:37:35:4a:e5:2d:32:b6:7b:68:b2:
27:a9:02:f7:0a:b4:6a:04:c5:5a:83:0a:7b:32:a7:
2d:3b:d2:f4:1b:6c:a8:0d:e6:0b:50:17:76:3d:36:
ba:66:25:f8:07:b0:c8:6f:7c:20:ea:a7:8c:3b:58:
34:05:25:81:64:e2:64:b0:dd:17:cd:6f:f7:60:71:
38:f8:34:68:02:2d:70:ff:9c:24:55:01:65:b3:bf:
5f:0f:ca:42:83:54:7e:a9:70:54:04:e3:45:05:36:
a6:ad:33:0a:25:f1:ba:5b:0b:91:65:1a:5c:93:17:
6c:f8:0f:93:8f:dc:2d:64:c5:77:29:98:47:99:82:
26:51:75:cd:15:79:f4:55:ff:ab:76:73:74:7a:5d:
ab:c1:de:bd:2e:89:22:42:a9:63:0b:b6:89:db:37:
c2:ba:3a:a9:e2:27:e6:a8:86:25:ec:75:5f:3b:1f:
2f:3d:0a:f2:fe:c4:cc:ce:e5:bc:4c:f1:0b:20:b7:
62:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:F6:0D:11:DC:2B:46:BC:FD:DC:ED:90:70:36:35:C9:EC:D4:58:26
X509v3 Authority Key Identifier:
keyid:D1:F7:CD:0E:C4:C3:BC:54:C5:94:31:30:7E:EC:36:EF:03:82:77:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:c8:18:12:e0:46:57:7f:1b:6d:df:9c:9a:15:42:51:e8:4f:
19:12:86:25:10:73:b2:2d:2d:48:17:ff:aa:51:3b:03:b1:5d:
6d:35:9a:5b:dc:56:74:98:1d:34:dc:42:61:96:bd:b7:03:8c:
dd:6a:19:b7:60:eb:a6:01:06:bd:df:b4:26:ec:16:9e:46:15:
b5:7c:65:b5:1b:5f:94:c4:25:a9:17:8b:c3:1c:31:0c:a0:f3:
b0:9d:d3:73:05:78:5a:98:11:70:80:cf:15:12:d7:2d:50:11:
7d:87:a3:d2:54:47:62:58:4c:54:a4:13:c3:ca:b4:3a:32:e0:
8a:15:61:28:77:1a:01:96:c4:19:36:c9:ac:83:cf:a0:e9:d0:
2f:b7:66:4d:5b:f2:a1:98:9e:b9:b2:dc:76:c5:bf:a1:fc:b0:
33:1d:27:a2:3b:5e:94:88:d4:62:0f:80:52:17:95:6f:05:18:
9c:87:9e:11:40:06:61:59:05:ea:37:16:2e:59:2a:be:13:53:
4a:3a:4b:ee:37:26:61:ca:30:28:ff:5f:27:f5:26:a8:86:66:
ca:4d:b0:49:6c:94:07:cb:ca:a7:7c:26:04:b7:19:a6:34:2a:
07:d8:1a:e0:72:c6:1b:8e:5a:41:24:49:73:f5:5d:4f:51:68:
53:8e:cf:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 05:00:02 2025 by rpki-client