Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
File: POwGHF7VbcoHdT_ktbjAkNl60OE.mft (raw, json)
Hash identifier: Gb9zUhSvJk92RkDTEDxnAaNa5k1vVFMePHOwc1IiEpY=
Subject key identifier: D8:41:24:DD:A3:C1:BD:7D:46:52:84:90:A4:BA:D7:80:D2:AC:26:7D
Authority key identifier: 3C:EC:06:1C:5E:D5:6D:CA:07:75:3F:E4:B5:B8:C0:90:D9:7A:D0:E1
Certificate issuer: /CN=3cec061c5ed56dca07753fe4b5b8c090d97ad0e1
Certificate serial: 01964FA324FC862F44424BEC86B36B3CC3E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
Manifest number: 049D
Signing time: Sat 19 Apr 2025 20:00:13 +0000
Manifest this update: Sat 19 Apr 2025 20:00:13 +0000
Manifest next update: Sun 20 Apr 2025 20:00:13 +0000
Files and hashes: 1: J--9FTqyd7jwis3viXw5cnMN5-o.roa (hash: DC3T7Frr+GR57cEYLFoZVlKHfiR/SiiUWqjetZEXAWY=)
2: POwGHF7VbcoHdT_ktbjAkNl60OE.crl (hash: IPHMfZVrpFAVrV86CBBhbDNGsgxOOEjOQV7yvd/cQsc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:a3:24:fc:86:2f:44:42:4b:ec:86:b3:6b:3c:c3:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cec061c5ed56dca07753fe4b5b8c090d97ad0e1
Validity
Not Before: Apr 19 20:00:13 2025 GMT
Not After : Apr 20 20:00:13 2025 GMT
Subject: CN=d84124dda3c1bd7d46528490a4bad780d2ac267d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:13:d4:8f:54:34:41:68:ba:86:25:be:eb:a2:
f5:a9:02:53:d2:31:36:f4:83:0b:41:e0:ba:3d:aa:
f6:05:a6:fd:64:55:d7:e8:d7:56:99:1c:28:18:84:
bd:31:44:e6:81:11:56:7e:b1:60:27:bd:36:73:c8:
a0:8d:85:b7:c0:e6:c1:17:52:a8:e6:97:32:d0:1c:
77:55:88:52:19:55:76:bd:11:4e:88:8b:b7:41:5b:
30:6d:56:5f:d8:0f:12:27:ba:96:06:37:c8:ce:7f:
f8:ff:94:c8:ac:6b:68:5e:6b:bd:c4:72:8d:00:12:
c1:28:79:65:f7:f3:73:72:7e:d4:c6:6a:d2:55:58:
50:e5:b5:d8:e2:4a:6b:1a:7c:15:65:9a:aa:8b:eb:
07:2c:99:42:1b:13:6a:3b:56:d0:15:35:75:39:9e:
6b:dc:ed:0e:a7:84:d8:85:a3:d1:5f:b8:ec:19:c2:
c8:16:32:30:80:9a:97:1a:a9:48:20:b0:f1:72:2a:
b6:f0:15:60:30:69:27:4c:9b:71:b1:79:15:a0:3c:
81:cf:79:8a:a7:b3:8c:e1:ec:df:f0:8c:e7:67:a1:
ce:cf:48:ab:53:82:82:7a:65:4a:4d:e0:67:06:14:
84:1b:f3:fa:58:5f:6e:1a:8a:7b:9b:4b:94:88:db:
98:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:41:24:DD:A3:C1:BD:7D:46:52:84:90:A4:BA:D7:80:D2:AC:26:7D
X509v3 Authority Key Identifier:
keyid:3C:EC:06:1C:5E:D5:6D:CA:07:75:3F:E4:B5:B8:C0:90:D9:7A:D0:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/POwGHF7VbcoHdT_ktbjAkNl60OE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/47d7f7-b019-42e9-bb08-d69c0134f5a8/1/POwGHF7VbcoHdT_ktbjAkNl60OE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:8d:5f:64:7c:c2:18:fd:7e:ca:9f:a0:b4:20:43:12:ea:34:
63:66:a1:e9:ab:f5:4f:63:21:49:2e:b9:97:01:96:27:4f:af:
98:f4:41:0f:29:1c:7a:77:2d:01:e4:5b:8f:57:db:ef:35:0c:
e6:6b:3f:54:4e:6e:39:b2:a4:a3:e7:6d:ab:1f:bd:ef:68:15:
d5:c4:32:2a:ef:7e:a2:09:de:36:ee:d7:61:85:b8:5b:39:ca:
57:d1:e7:ed:eb:f9:1d:c5:fc:e8:89:e6:46:01:38:21:18:6e:
1a:42:4a:31:54:8a:25:55:0f:e2:90:4e:d3:db:ad:f2:df:5e:
1a:f5:03:ea:7c:8f:f0:78:07:82:c8:b5:23:22:7d:91:30:d8:
e7:aa:df:56:b6:6b:43:47:5c:b9:a8:77:8c:8a:ae:92:4b:cc:
b7:ca:bd:7f:3b:ba:bb:7a:0e:d8:7d:df:1a:e1:76:a5:36:18:
f0:d8:3f:aa:55:5c:5f:18:e9:de:32:d7:63:de:f2:55:91:31:
76:23:67:fe:87:db:54:5c:61:26:bc:38:9c:4d:0b:2c:94:a0:
c1:60:94:a7:73:75:d8:d9:af:40:ce:de:f7:19:b0:5c:55:cf:
8e:cc:d2:17:d9:86:e3:d2:0f:2d:d6:ec:28:7b:62:b0:5c:1b:
a7:0b:89:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:05:26 2025 by rpki-client