Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft
File: dAThbzM9iWUMZhOsbJXTSNxLeVA.mft (raw, json)
Hash identifier: anT9wU3wgyFZgjLdbWU2KpeYTZkKECID1W+kXPDOS/I=
Subject key identifier: 72:CC:22:FD:34:62:18:4B:F0:F0:9A:57:65:2B:14:74:6B:1A:CA:42
Authority key identifier: 74:04:E1:6F:33:3D:89:65:0C:66:13:AC:6C:95:D3:48:DC:4B:79:50
Certificate issuer: /CN=7404e16f333d89650c6613ac6c95d348dc4b7950
Certificate serial: 01964C6B8475BD2BD1E868DFA090F0C77F0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dAThbzM9iWUMZhOsbJXTSNxLeVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft
Manifest number: 80
Signing time: Sat 19 Apr 2025 05:00:36 +0000
Manifest this update: Sat 19 Apr 2025 05:00:36 +0000
Manifest next update: Sun 20 Apr 2025 05:00:36 +0000
Files and hashes: 1: Y_no_JXYm_8sONOzPJQGObXPjBk.roa (hash: NKcq1gGxQ5lA3RLI0cIEYW6xR0NOHkPa/1yp0GCXoIc=)
2: dAThbzM9iWUMZhOsbJXTSNxLeVA.crl (hash: 5ZjFFLdvV5eLoD4y4BPm/kFm0AkpAAd5mdO1w7EY9wQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/dAThbzM9iWUMZhOsbJXTSNxLeVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:6b:84:75:bd:2b:d1:e8:68:df:a0:90:f0:c7:7f:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7404e16f333d89650c6613ac6c95d348dc4b7950
Validity
Not Before: Apr 19 05:00:36 2025 GMT
Not After : Apr 20 05:00:36 2025 GMT
Subject: CN=72cc22fd3462184bf0f09a57652b14746b1aca42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3f:96:1d:b6:f2:36:d5:4d:6b:e5:0b:67:b3:
5f:87:31:34:14:c2:2a:45:c6:6c:d2:93:e7:f7:12:
0f:88:cd:19:2b:28:f0:d0:ea:37:51:39:16:06:1d:
36:50:08:c3:35:d8:b8:fb:9a:d1:0f:87:20:8f:cb:
da:c1:f4:26:1f:24:1d:22:72:78:82:26:56:87:2e:
01:92:4e:fb:50:a5:b0:99:fd:0f:26:c4:5c:44:63:
62:9b:fa:7c:77:18:7f:a3:15:37:bc:a6:c0:b7:14:
9c:ef:f3:6c:66:46:88:50:4d:30:19:88:c6:d7:1f:
c7:db:59:d9:3d:d2:72:ca:c5:71:93:d2:7b:9b:d8:
21:0d:71:02:b6:c2:16:7e:c1:8c:6e:48:0f:30:21:
c2:73:86:8e:fb:b2:d8:6b:61:95:69:47:fc:b1:f1:
81:cf:89:c9:cf:a1:a0:a3:64:24:21:47:3d:40:69:
89:6f:8b:b1:4e:f8:11:19:83:3e:94:35:8e:f2:6c:
f1:23:44:de:b5:e7:e1:67:37:8b:4b:19:0c:9f:1d:
e9:48:a7:2f:18:d5:29:38:9a:65:c7:32:48:01:ae:
b9:16:74:78:c4:74:14:34:aa:a3:d4:40:2f:dd:26:
73:69:26:50:0c:88:7c:b9:be:18:c9:fa:31:a8:21:
73:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:CC:22:FD:34:62:18:4B:F0:F0:9A:57:65:2B:14:74:6B:1A:CA:42
X509v3 Authority Key Identifier:
keyid:74:04:E1:6F:33:3D:89:65:0C:66:13:AC:6C:95:D3:48:DC:4B:79:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dAThbzM9iWUMZhOsbJXTSNxLeVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1532c6-a2f5-48e6-b037-18c5ebef27a8/1/dAThbzM9iWUMZhOsbJXTSNxLeVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:85:5d:80:ea:26:1d:1a:72:82:d8:9b:fb:74:64:89:f6:71:
91:fa:99:d5:ea:75:a8:28:e3:5a:76:f1:0c:6e:35:f6:09:2c:
a0:7d:06:34:2e:3a:d5:95:c3:8f:53:ba:b1:83:08:96:90:4f:
18:d8:19:d8:73:7c:33:01:f3:68:2f:79:85:53:78:f9:9b:8f:
65:1c:8f:f8:59:7f:5a:b4:58:15:6e:ac:ae:3f:e7:2e:ff:f6:
2d:10:87:80:ba:42:ff:0a:7c:14:7c:89:91:c4:69:db:21:68:
d8:e6:d5:88:6e:f5:30:fb:58:a5:78:52:da:c0:b4:8f:d6:7e:
9e:7e:8a:c3:08:7c:16:06:0b:7b:19:2a:64:e5:8e:93:9d:4b:
29:86:14:4d:aa:ff:cb:a3:8c:df:bf:a3:04:3d:38:c3:35:82:
ca:a1:75:c6:bb:80:b8:b8:fe:c5:3f:bd:be:5b:87:12:b9:a0:
53:30:5f:74:30:7f:dc:83:49:0b:55:57:4a:fa:a1:f8:67:43:
bc:88:84:9a:d5:de:ba:ed:e6:1c:9b:bf:8a:c3:4f:6e:49:11:
0f:32:d1:fe:68:39:3f:f7:13:5c:df:32:de:ac:8e:6f:41:eb:
7b:3e:df:2c:18:30:10:b8:38:f2:f2:00:62:36:3a:a2:cd:0a:
74:a2:78:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:05:56 2025 by rpki-client