Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.mft
File: iDa9j605PlExoCNykxWzVgFOZjc.mft (raw, json)
Hash identifier: tQAMVByrHeZbjH2DuS8HaZ08sNo9nCJjZHMFZfUCBPk=
Subject key identifier: C4:12:4F:43:38:10:C5:1E:B3:88:DA:A4:E3:67:95:A8:2B:FE:6B:C7
Authority key identifier: 88:36:BD:8F:AD:39:3E:51:31:A0:23:72:93:15:B3:56:01:4E:66:37
Certificate issuer: /CN=8836bd8fad393e5131a023729315b356014e6637
Certificate serial: 0196564A70A7A837F86547F4B01C9C054621
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDa9j605PlExoCNykxWzVgFOZjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.mft
Manifest number: 14FE
Signing time: Mon 21 Apr 2025 03:00:40 +0000
Manifest this update: Mon 21 Apr 2025 03:00:40 +0000
Manifest next update: Tue 22 Apr 2025 03:00:40 +0000
Files and hashes: 1: UKX34TFCd0figIbF32wm6M0tdxE.roa (hash: BFLvjvBRECITaOdgL/U7OU6npGQVInzdalw4vhrK37A=)
2: iDa9j605PlExoCNykxWzVgFOZjc.crl (hash: Urm5eGFUWi5QZYZNXjo0JePxUkmOyl91CFyNZkxMfWw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDa9j605PlExoCNykxWzVgFOZjc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:4a:70:a7:a8:37:f8:65:47:f4:b0:1c:9c:05:46:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8836bd8fad393e5131a023729315b356014e6637
Validity
Not Before: Apr 21 03:00:40 2025 GMT
Not After : Apr 22 03:00:40 2025 GMT
Subject: CN=c4124f433810c51eb388daa4e36795a82bfe6bc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:11:33:bb:c1:5f:96:43:9a:e2:99:5f:1a:0d:
ff:31:11:80:f1:93:56:b8:ac:f5:d4:d5:5b:54:40:
25:46:d1:7e:c6:bc:16:27:b3:f5:f1:64:bf:33:cd:
a6:13:56:19:25:02:64:d8:cd:b6:39:a1:34:c4:8f:
43:da:23:5c:b0:fe:fb:ff:0a:01:46:a9:7e:59:e9:
df:e6:3f:73:3b:65:d4:fb:55:74:97:f1:b4:db:fa:
18:54:d3:9b:c7:ca:e8:93:eb:e9:50:0a:df:52:ec:
19:c4:b4:bf:40:e8:fa:b9:82:05:20:5b:a8:df:c2:
49:39:d6:cd:32:41:0c:94:ba:66:f6:3e:96:a4:99:
bf:52:82:57:12:85:7f:76:fe:4b:14:a7:c6:6d:ff:
fd:62:da:0a:45:7a:d1:aa:21:99:a7:ad:45:74:fd:
31:1c:eb:9a:fc:f9:f5:42:27:97:f7:37:d5:25:d4:
2a:51:83:dd:7d:b3:3a:4b:c8:d2:84:71:53:d7:76:
75:23:fe:60:3c:40:4f:b0:3f:90:75:bb:11:2b:e7:
bb:0d:28:09:a7:ba:8e:38:43:6e:bc:9b:67:24:6a:
06:2e:fc:16:e4:d9:9f:a2:4e:61:3b:aa:32:86:df:
1b:70:b7:f5:d8:e1:ae:5b:ee:76:b8:7f:70:5e:d5:
fb:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:12:4F:43:38:10:C5:1E:B3:88:DA:A4:E3:67:95:A8:2B:FE:6B:C7
X509v3 Authority Key Identifier:
keyid:88:36:BD:8F:AD:39:3E:51:31:A0:23:72:93:15:B3:56:01:4E:66:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDa9j605PlExoCNykxWzVgFOZjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/129a5b-b7f6-49d0-95c2-12f9cb0a2118/1/iDa9j605PlExoCNykxWzVgFOZjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:cb:34:ea:54:99:8c:31:be:db:14:e5:5d:ba:1a:b5:4e:69:
b9:a3:87:17:f4:cc:f9:31:46:40:e2:72:34:4a:e0:2f:87:9c:
c3:77:a6:d7:55:76:25:33:53:55:7a:cd:5d:72:1b:96:93:4e:
e7:b4:cd:fc:2c:25:5e:c4:9a:03:26:e1:6f:4c:90:66:df:c3:
ed:6e:93:b3:eb:a4:44:c9:c0:5b:94:f9:0e:b2:83:d2:2b:66:
1f:1e:71:57:b8:00:03:19:b9:6d:66:6a:21:cd:7e:42:f5:34:
ec:59:2c:61:01:be:ce:eb:94:d9:a6:63:bc:b7:58:83:74:55:
35:96:a1:09:63:98:0f:f8:ab:69:97:7b:de:df:d5:ef:30:a0:
2a:60:67:51:22:ad:ae:55:86:68:b5:e4:9b:68:ae:fb:f0:f2:
12:a9:5e:c1:21:b4:c9:08:73:40:65:b2:de:bb:71:11:71:bd:
02:ac:61:59:85:18:8f:71:99:3d:48:dc:a5:c5:e5:38:0e:00:
71:79:b1:61:90:6c:79:4a:be:11:d6:ed:36:ca:ad:c7:05:49:
ea:f0:4e:b2:2a:d9:ee:ba:bd:ae:af:60:df:15:76:8f:be:67:
8b:60:06:41:5f:60:31:78:96:4a:c6:f4:3f:d3:df:6c:b8:c3:
02:2d:e1:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:40:53 2025 by rpki-client