Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft
File: 2fwL7GDQus4YiWd72buQGQzE_SI.mft (raw, json)
Hash identifier: ieFjNF71bbbNL+AbZoPhwofbbPaldC/PP5QpDM3nxKE=
Subject key identifier: CA:66:EA:D0:B0:7D:93:52:B3:A4:8A:85:08:5E:CC:FB:1A:B9:68:25
Authority key identifier: D9:FC:0B:EC:60:D0:BA:CE:18:89:67:7B:D9:BB:90:19:0C:C4:FD:22
Certificate issuer: /CN=d9fc0bec60d0bace1889677bd9bb90190cc4fd22
Certificate serial: 01963DD432B0103904F445F9EB1532318D07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft
Manifest number: 14F7
Signing time: Wed 16 Apr 2025 09:00:38 +0000
Manifest this update: Wed 16 Apr 2025 09:00:38 +0000
Manifest next update: Thu 17 Apr 2025 09:00:38 +0000
Files and hashes: 1: 0I8Tv0UylD63i4vV2xwB6rppwxI.roa (hash: QA7YvKS+a4NHe+cVmaIAaBQvm5w2dBSibTU49pm5mxM=)
2: 2fwL7GDQus4YiWd72buQGQzE_SI.crl (hash: 4XiGgrNXzzX2IGmdu3GbDPNOd+iG4WI68uSMmN23kAU=)
3: 8Dt0TuVJVMCN6RnRhXhKGlf_lII.roa (hash: sSGLTETKxbNSq3MrBGV2DgOI7we1i0Q8mkHNa5K3SUY=)
4: BvWnnBlWW44V8sVOxm98LqahBBA.roa (hash: 6mRHK+yOMdXINEIp3lFBzgdVlSN/9ntwMd5HVLaTroY=)
5: GSlFodh40GWtFXJ0cvtNrC5QQZs.roa (hash: OLiyxfNtsv2LTCfXCwftWJpdQJ+N0fnXvmkjqgnZmno=)
6: pVnXYoxQriC-WtOLcwsA6Za2gDI.roa (hash: 1qcQ0hH+Vk55dAqX/63+B6qLf3cPHgQEfJdfgWLNx0w=)
7: q_VxYTNksLn-A2DiKrfsqvcSMaw.roa (hash: 9v/49noAVbeRiYCi+xkrBzJwESjZSadJSkvsw1PN9x8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft
rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3d:d4:32:b0:10:39:04:f4:45:f9:eb:15:32:31:8d:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9fc0bec60d0bace1889677bd9bb90190cc4fd22
Validity
Not Before: Apr 16 09:00:38 2025 GMT
Not After : Apr 17 09:00:38 2025 GMT
Subject: CN=ca66ead0b07d9352b3a48a85085eccfb1ab96825
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:db:97:9c:f5:9b:7b:14:f0:19:36:5a:c6:99:
13:b7:18:56:ae:c6:5c:aa:a9:68:9d:48:b2:b8:94:
d1:68:b1:6f:01:e1:b5:20:cc:bb:3a:ed:1f:7a:e3:
db:31:d7:40:ae:41:fa:f4:51:1e:f1:48:51:86:52:
a2:43:74:a5:84:c3:15:17:e9:df:55:4b:75:e6:c9:
5d:6a:8f:ab:60:5e:63:d3:7c:55:ff:f2:b3:17:b1:
be:f4:4d:2d:86:44:5e:05:8e:70:09:b5:bd:ca:d0:
1d:0f:85:b1:45:81:00:38:15:37:07:f2:23:a5:94:
c0:0c:73:8b:40:d0:79:17:90:f8:2c:4c:8c:d1:ce:
f7:31:e0:bc:73:6b:7f:96:bf:66:af:5a:d1:f8:c3:
94:ff:1c:38:fc:ea:62:94:63:90:1f:01:c2:72:b0:
2b:db:ff:22:e3:68:dd:9c:58:d2:8b:d9:e4:fe:91:
4e:63:cf:ad:10:3a:a6:eb:d7:90:ee:5e:c2:23:c4:
16:07:2a:3e:85:af:ae:30:d9:93:f9:c9:ca:bc:86:
cd:90:cb:a3:7e:15:70:cb:fe:ec:06:95:ea:7f:78:
2b:d5:f0:47:2c:d1:09:7c:ba:21:8b:28:ab:8c:f5:
90:0a:fd:8d:4b:59:a2:cd:90:d1:61:ac:80:57:c9:
79:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:66:EA:D0:B0:7D:93:52:B3:A4:8A:85:08:5E:CC:FB:1A:B9:68:25
X509v3 Authority Key Identifier:
keyid:D9:FC:0B:EC:60:D0:BA:CE:18:89:67:7B:D9:BB:90:19:0C:C4:FD:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2fwL7GDQus4YiWd72buQGQzE_SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b0d6e6-2ed7-4928-ad69-3469034fa441/1/2fwL7GDQus4YiWd72buQGQzE_SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:24:57:98:83:f9:0b:e1:22:1e:0e:2a:28:a2:ed:47:5f:41:
ed:5a:ea:56:d0:0b:98:8e:82:f1:d9:1b:6e:8e:2b:fd:5a:b5:
5f:de:00:40:af:da:15:cf:32:0f:dc:91:8d:60:86:e8:a1:fa:
1e:9d:7e:48:1a:53:03:7b:82:68:98:5b:56:07:43:f5:97:bf:
8b:25:76:86:a6:53:2d:93:22:3c:51:35:3d:76:c0:8a:e8:b4:
ad:8a:0d:de:e5:1c:74:92:75:d1:3c:0a:ce:60:a2:2c:71:c2:
41:a1:52:2b:7f:18:a5:e1:86:25:d3:6c:28:a4:4b:b1:a3:26:
0f:c8:41:23:b7:57:a5:6b:f0:e1:c2:42:ed:df:f2:9d:af:ab:
41:0a:a6:6a:e0:8a:36:bd:7e:80:77:b0:3d:da:8a:42:f2:83:
32:c8:82:7c:24:3f:04:25:55:ab:ce:92:6f:ed:21:d9:35:6f:
ad:de:a9:ba:18:9b:99:d3:5b:1a:0f:4d:40:7b:96:56:53:f8:
47:17:b2:14:60:30:30:2b:e8:1c:69:ac:db:29:bd:b9:fc:44:
37:80:db:d8:f2:63:c4:d1:2d:58:7b:b3:6c:ad:58:0e:c2:80:
93:42:8c:f8:e2:93:2b:b6:0a:26:d7:a8:db:61:bd:f2:8f:20:
38:b5:b5:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 19:39:08 2025 by rpki-client