Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
File: F3khM2kRpWiNeOk__l5HIRO7Gb4.mft (raw, json)
Hash identifier: OpZXaYENdcjekrvnHrLyjHwB9Jxfh6Nq2l0rjjxGETs=
Subject key identifier: E2:85:47:94:AA:43:00:8A:41:61:06:5E:A2:FD:7C:C9:96:3C:E4:5B
Authority key identifier: 17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE
Certificate issuer: /CN=177921336911a5688d78e93ffe5e472113bb19be
Certificate serial: 01964B58B9E5DD469E609CF6A87D3269AF6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
Manifest number: 04DA
Signing time: Sat 19 Apr 2025 00:00:28 +0000
Manifest this update: Sat 19 Apr 2025 00:00:28 +0000
Manifest next update: Sun 20 Apr 2025 00:00:28 +0000
Files and hashes: 1: F3khM2kRpWiNeOk__l5HIRO7Gb4.crl (hash: Zrxc9RhtpaKAKQbqMj+wmpJmQq43rBVsj6RcQAB8NUk=)
2: WN1QsY4J0xzhzXI37At9k24AG4s.roa (hash: aONG4etXL5aCmGtS97ulkTYk4UjXjlB6E7tpLdYeDEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:58:b9:e5:dd:46:9e:60:9c:f6:a8:7d:32:69:af:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=177921336911a5688d78e93ffe5e472113bb19be
Validity
Not Before: Apr 19 00:00:28 2025 GMT
Not After : Apr 20 00:00:28 2025 GMT
Subject: CN=e2854794aa43008a4161065ea2fd7cc9963ce45b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:d9:c5:62:77:83:56:9d:87:b1:5d:8f:bf:27:
78:e8:db:63:b2:11:4a:c8:a9:28:5d:43:b8:75:dc:
d9:64:96:b1:fc:89:94:21:4b:c8:bf:33:56:11:2f:
7d:bf:ef:4b:bd:17:94:29:95:d4:4c:15:ec:9b:78:
c8:88:29:7d:5c:b5:e7:b8:fe:8b:7d:02:6f:e0:74:
e1:b6:dd:bd:9d:e6:82:60:c9:05:04:0f:ce:29:12:
de:7e:2f:b9:7d:fb:f1:87:d0:0f:29:fd:73:3a:f9:
f6:ef:31:6b:b6:7d:a7:0c:67:fd:3e:78:bd:33:f4:
d7:53:52:94:ab:51:bb:50:e0:8c:dd:7e:9a:43:e2:
53:44:1f:a1:cb:fd:fe:48:76:32:b8:3a:ff:91:9a:
6e:a0:a6:75:93:e0:1b:3d:74:85:ff:48:cf:1d:7a:
59:cb:08:fb:62:d1:4a:0d:95:a7:83:e9:d9:a7:1b:
21:de:aa:9f:e9:12:2d:cd:f3:47:c1:54:2c:10:03:
1d:1f:a3:50:e3:83:fa:ef:61:b5:51:0c:81:2c:fd:
00:e9:fd:44:9e:04:35:6c:20:3c:19:b6:1e:c9:76:
5c:0b:68:71:af:b0:9e:8b:62:08:07:36:25:90:f7:
08:55:ef:b1:25:43:5b:e8:b8:c9:50:5b:ba:83:44:
3b:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:85:47:94:AA:43:00:8A:41:61:06:5E:A2:FD:7C:C9:96:3C:E4:5B
X509v3 Authority Key Identifier:
keyid:17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:ad:b7:fe:ea:d0:dd:9f:3f:af:83:00:be:96:c1:fe:8f:f7:
7a:65:12:37:9f:73:8e:ce:81:bc:70:76:4f:8f:f1:7b:3b:be:
47:68:59:38:ef:29:a4:84:56:0f:98:c3:c8:5c:0f:68:8a:19:
13:c7:70:72:66:b1:73:fa:a6:6b:ef:aa:7e:6d:1f:06:70:e8:
af:eb:4f:e0:27:59:d5:a6:3c:1b:52:b1:b6:0f:3f:e5:54:dd:
cd:c4:af:7a:ff:9c:b8:59:54:74:6a:f1:a4:33:c6:0f:5f:ba:
7f:99:e0:11:9c:60:6a:44:5d:58:8f:3e:f7:a7:58:ab:c2:2a:
43:02:36:b0:c8:46:20:e1:1d:54:1e:b1:f9:a6:3e:ec:c8:5d:
6a:a7:7d:f9:d5:69:06:c4:a4:71:4e:c3:c6:db:d3:1b:ee:6a:
d3:f9:8f:86:bb:5c:07:5a:c5:f2:28:e9:d0:1a:06:f2:02:5d:
aa:f6:0a:29:a4:cc:6f:5a:b7:d8:7d:06:60:56:fe:08:b5:0d:
05:66:68:03:67:ee:ad:e9:92:1e:44:3d:32:92:5d:07:a6:da:
28:f6:b9:06:aa:ef:92:c5:f9:1a:69:32:bd:c5:60:cf:bc:b4:
f8:3c:56:63:d5:36:45:89:d9:2c:0a:dd:cc:10:0e:20:d8:ef:
9e:70:ae:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:09:48 2025 by rpki-client