Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft
File: 1QibzgjFXapXtPOjyQcPs5GFPM8.mft (raw, json)
Hash identifier: cK9RhDBcsSXF+tpR7idZ6csJKTwBqZezTE/NPhid9mI=
Subject key identifier: D4:BC:C7:9C:F3:D1:3D:0A:4F:13:F2:DC:A9:B1:EA:68:B0:93:35:C5
Authority key identifier: D5:08:9B:CE:08:C5:5D:AA:57:B4:F3:A3:C9:07:0F:B3:91:85:3C:CF
Certificate issuer: /CN=d5089bce08c55daa57b4f3a3c9070fb391853ccf
Certificate serial: 01962ABCBBE2CAE7E07AFC8B77E1AE113E71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QibzgjFXapXtPOjyQcPs5GFPM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft
Manifest number: 09BC
Signing time: Sat 12 Apr 2025 16:02:13 +0000
Manifest this update: Sat 12 Apr 2025 16:02:13 +0000
Manifest next update: Sun 13 Apr 2025 16:02:13 +0000
Files and hashes: 1: 1QibzgjFXapXtPOjyQcPs5GFPM8.crl (hash: YuYHvDDtD0Oe9eCEZZxv0xHPFMmzryagOyGrEd7Zq7c=)
2: k0ebJfx4OX3BZ7FmMcHzT8cxLzs.roa (hash: P7VX1AhbYROtx+X+LjgL53+vnOlf5ehxXgKP01/WArk=)
3: x75CgHaNcNlIrskWea67UxRrM1c.roa (hash: xJt3cVolGlaYguNEQZsOwCLANVkSIZwIfqNsviXM16Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/1QibzgjFXapXtPOjyQcPs5GFPM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 14:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2a:bc:bb:e2:ca:e7:e0:7a:fc:8b:77:e1:ae:11:3e:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5089bce08c55daa57b4f3a3c9070fb391853ccf
Validity
Not Before: Apr 12 16:02:13 2025 GMT
Not After : Apr 13 16:02:13 2025 GMT
Subject: CN=d4bcc79cf3d13d0a4f13f2dca9b1ea68b09335c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:5f:a7:f8:d3:5d:d7:68:bd:12:a9:8a:07:06:
28:3c:3b:d2:f5:07:0c:b6:a3:9c:b6:bb:89:6e:1d:
8d:db:a9:fb:d6:6a:70:d1:53:fe:5d:05:fa:f0:8a:
88:b3:d3:97:73:ee:a7:c4:c2:fe:9d:33:38:14:37:
2f:3b:05:ff:2f:96:40:20:43:96:c3:47:b0:91:d2:
d5:98:66:03:3e:1f:54:40:c9:c8:5b:34:74:7b:20:
ae:cd:bb:68:75:36:f9:99:a6:2f:be:2d:6c:53:91:
ce:04:e5:f9:38:d4:26:66:ea:61:34:cf:72:06:81:
9f:cc:65:8b:98:c0:a7:f7:87:2b:2b:59:17:6d:dc:
82:1b:0e:2c:ca:7b:a9:a3:b9:6f:14:05:86:e9:bc:
e0:0e:27:e3:72:fd:70:22:e3:a1:50:4c:57:44:d9:
c6:3b:29:77:f6:50:a4:ec:6e:99:ca:36:7d:51:2c:
2e:65:f8:ca:30:61:8f:fe:3f:db:e9:d4:3b:7a:09:
66:44:94:11:18:26:49:cb:23:40:4e:72:bf:95:4b:
f6:70:4b:6b:13:c2:a4:68:97:8b:55:c9:8d:c2:3a:
e7:2f:87:10:31:8e:93:1a:96:8e:d6:88:e2:f8:c2:
a3:ab:ac:ad:ff:ba:16:a5:5a:9c:ad:c9:4b:55:38:
30:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:BC:C7:9C:F3:D1:3D:0A:4F:13:F2:DC:A9:B1:EA:68:B0:93:35:C5
X509v3 Authority Key Identifier:
keyid:D5:08:9B:CE:08:C5:5D:AA:57:B4:F3:A3:C9:07:0F:B3:91:85:3C:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QibzgjFXapXtPOjyQcPs5GFPM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/02fde7-d326-43de-8520-6d71fe13d61d/1/1QibzgjFXapXtPOjyQcPs5GFPM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:ba:87:ac:63:d1:8d:54:74:45:5e:7c:b1:23:51:35:41:0d:
57:08:1f:05:73:be:c7:e5:f3:77:e7:13:36:3a:fa:f4:1a:3f:
10:e9:c8:c4:8a:26:14:2a:86:70:40:2f:62:ea:5d:6e:79:fd:
3e:9e:a7:04:4a:a9:a7:d1:ec:c8:dd:4f:ec:da:75:0f:4e:b4:
12:f6:cb:ed:30:07:48:10:c9:fc:1f:18:b9:41:33:a6:c4:30:
22:e1:cb:03:b8:13:3d:36:7a:b9:4c:ea:40:31:f3:e4:fd:ef:
0d:64:56:72:4a:ef:53:f2:4b:37:55:e9:80:6f:7a:83:0d:d1:
03:01:5d:e0:b7:d1:92:5a:dc:3d:04:5a:ed:61:df:58:64:07:
74:8f:97:eb:1e:4d:50:c1:3f:c8:86:00:7a:d5:40:43:97:bf:
91:3e:c3:57:ab:6e:25:d0:56:59:54:11:c7:13:7e:48:fd:87:
24:8a:b9:49:b2:25:52:9a:1d:34:da:87:22:68:49:0f:2f:9a:
67:da:83:40:27:5d:04:d7:1d:29:cb:1c:0e:f2:2d:2a:93:39:
d0:0b:71:c7:7c:de:db:47:ee:90:2a:c3:ab:86:a4:61:e3:14:
7a:34:c7:a1:ed:2c:f7:31:8b:81:a0:36:e7:cd:ad:56:61:23:
b3:ee:4b:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 20:47:46 2025 by rpki-client