Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
File: rysOIXo1FoOSIGvac85hlTWgLzU.mft (raw, json)
Hash identifier: AAPm1cc0musrBQTUqckmXWVldV23SH5pdpoVP7MbtO0=
Subject key identifier: 51:5B:33:79:55:4F:15:17:D3:40:93:59:71:C6:59:29:7D:B1:26:34
Authority key identifier: AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
Certificate issuer: /CN=af2b0e217a35168392206bda73ce619535a02f35
Certificate serial: 01963F8B48A25FCEA01205482827C889E174
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
Manifest number: 099A
Signing time: Wed 16 Apr 2025 17:00:14 +0000
Manifest this update: Wed 16 Apr 2025 17:00:14 +0000
Manifest next update: Thu 17 Apr 2025 17:00:14 +0000
Files and hashes: 1: rysOIXo1FoOSIGvac85hlTWgLzU.crl (hash: SVDmXWKsq+09Ewe8g+VW07PtsFuDZhEGs+XsB1SPogA=)
2: tKwKl17jXwIeAtAZEyALLLwTexA.roa (hash: E9CmZ9NzF2HrbXjpDzFF0Gs0klh/PHaYx1PKsYvWrwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 17:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:8b:48:a2:5f:ce:a0:12:05:48:28:27:c8:89:e1:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b0e217a35168392206bda73ce619535a02f35
Validity
Not Before: Apr 16 17:00:14 2025 GMT
Not After : Apr 17 17:00:14 2025 GMT
Subject: CN=515b3379554f1517d340935971c659297db12634
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:16:b2:cf:fe:76:62:cc:11:b3:ba:db:88:c3:
cf:5d:6e:e0:4e:a0:81:c2:d2:f8:ce:02:45:aa:fa:
08:79:a6:2a:70:1d:d1:3b:c8:4f:9d:76:e0:5e:9c:
5b:d3:e8:07:29:35:8c:ae:84:c0:9c:36:b6:3c:9f:
8b:4d:00:1a:31:02:81:fc:f9:9a:a0:3d:f7:cd:d0:
58:2d:71:be:62:13:b8:0a:cf:b6:17:f9:a9:a5:58:
f6:be:2c:f6:8d:4d:fd:8b:d4:28:dc:cf:2c:ca:46:
76:9f:52:aa:ee:24:3d:32:81:e2:ed:2b:d4:ac:7d:
e3:50:d5:9f:c7:15:39:9b:ea:e4:31:0b:91:ce:6c:
21:a9:92:14:ac:60:5e:11:16:fc:8f:e5:93:c4:91:
db:83:3d:29:e7:9e:66:a1:e0:38:41:ca:b0:e9:e0:
96:7a:eb:dd:f7:bb:07:fa:aa:09:ad:5b:8d:9d:1a:
df:4f:ed:58:52:d8:3b:64:a2:95:20:f0:da:4b:be:
3e:7d:3e:d5:03:a7:68:b3:5e:f4:95:c8:da:94:27:
c4:cb:c7:77:f0:3d:62:f1:e8:78:f1:36:90:27:b2:
e0:25:87:db:b6:e0:e9:60:6d:47:22:e7:00:d4:0b:
e7:99:3e:41:1e:9a:9d:dd:d1:0f:15:89:1f:81:7e:
80:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:5B:33:79:55:4F:15:17:D3:40:93:59:71:C6:59:29:7D:B1:26:34
X509v3 Authority Key Identifier:
keyid:AF:2B:0E:21:7A:35:16:83:92:20:6B:DA:73:CE:61:95:35:A0:2F:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rysOIXo1FoOSIGvac85hlTWgLzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d2541e-7597-4820-bed7-f0d19809874a/1/rysOIXo1FoOSIGvac85hlTWgLzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:cb:34:b8:ad:5d:f4:a6:1c:41:6e:a5:c8:40:59:b6:7f:d9:
6a:48:17:83:41:3a:d3:c6:2c:01:28:8d:dd:53:79:05:25:f1:
9e:fc:f7:9d:11:c4:97:59:67:fe:9a:be:f4:aa:28:9b:bb:1f:
17:5f:3b:27:d1:77:a6:a0:70:d9:02:7a:f7:76:ce:ff:ad:ab:
4c:86:d5:61:82:ec:03:5e:fa:0d:b3:7b:1b:94:77:58:da:b0:
6a:78:6c:57:f4:fd:ab:b4:44:17:01:8c:0b:d0:1f:20:e0:8d:
f5:a3:05:87:1a:e1:86:45:86:02:22:6e:9d:1b:84:68:3f:ae:
a6:4a:ec:75:58:15:a9:0e:ac:4f:48:08:87:b0:e3:51:6c:c1:
cc:bd:4e:0d:78:f7:2d:72:f1:6a:95:54:fa:3e:a0:7a:6b:b9:
3b:43:a5:29:b8:d5:ef:89:1a:21:bc:4c:8e:0b:f1:42:61:83:
f2:28:b4:90:3b:45:3d:6b:9b:c3:cc:08:14:ef:49:84:9f:7c:
f0:41:f6:e5:7a:0d:d3:b9:9f:40:bf:a7:a9:98:81:ad:06:b5:
d1:19:3c:3d:d0:ed:97:83:c2:6d:f5:ff:2d:41:62:e5:28:e3:
2a:fd:21:ea:46:9d:1f:04:85:63:53:82:8c:c5:c8:bc:3e:70:
9e:ae:f3:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 01:56:02 2025 by rpki-client