Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
File: sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft (raw, json)
Hash identifier: W8vYKuLZtLdTcCsFzSDbAqz0EZOS+keyj4YpQFQ5aqY=
Subject key identifier: CF:CF:22:71:84:39:D3:76:16:15:24:95:6C:A2:55:8B:D7:9C:1D:A8
Authority key identifier: B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98
Certificate issuer: /CN=b01a59d0a61aa6174438988cc83598dbfea5a998
Certificate serial: 01964C6BFAA9C6BD34D67190C14127C83C42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
Manifest number: 106B
Signing time: Sat 19 Apr 2025 05:01:06 +0000
Manifest this update: Sat 19 Apr 2025 05:01:06 +0000
Manifest next update: Sun 20 Apr 2025 05:01:06 +0000
Files and hashes: 1: HSNefFgXaRWCGcIv1fjoOpFklrI.roa (hash: cKpMHes+RehvKJ31+pA2N64A397k3fGtWACpN0dogjA=)
2: sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl (hash: jxsmaT0wRRRsEAVU89CgNNye4oYMXt1i9DsWAZpvUZ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:6b:fa:a9:c6:bd:34:d6:71:90:c1:41:27:c8:3c:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b01a59d0a61aa6174438988cc83598dbfea5a998
Validity
Not Before: Apr 19 05:01:06 2025 GMT
Not After : Apr 20 05:01:06 2025 GMT
Subject: CN=cfcf22718439d376161524956ca2558bd79c1da8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:11:87:f5:ec:ee:b0:44:10:a3:1b:ba:09:65:
56:f6:2b:62:82:da:b3:94:68:1e:26:a6:75:8c:04:
d8:4d:e9:f1:3f:83:e7:36:d1:03:e2:3e:9f:c4:7f:
d6:55:7e:cd:83:0c:0c:f2:fc:65:be:44:dd:1c:55:
fe:4f:be:f7:7e:07:b7:3b:84:b8:26:51:dd:54:cf:
57:a4:0f:88:b9:0d:38:86:ff:a4:ef:f7:e4:4c:40:
98:fe:72:53:46:d5:6f:f7:09:69:ed:d4:ee:0f:cd:
ff:ea:69:ff:4f:fc:b4:e9:b4:49:f2:3c:2c:20:b6:
3c:6b:9e:eb:a5:8e:35:7c:b4:f1:ba:ee:ec:18:25:
32:20:7b:01:44:47:ee:e9:32:aa:16:87:04:3d:43:
f0:88:2f:57:7e:a0:3e:9e:06:50:cf:72:a8:ed:d8:
4a:c7:c5:5d:ae:5b:b2:af:ed:16:a6:63:e0:72:c8:
87:79:c4:e8:39:37:59:c0:bf:e7:8f:16:05:79:9c:
78:9c:70:20:a8:42:22:73:61:18:b3:9d:fe:cb:97:
78:93:97:88:db:0d:c0:b0:30:9f:07:22:5a:b0:74:
18:f8:02:67:2c:d7:10:a7:0f:19:04:04:aa:25:6c:
3d:a2:8f:d0:ad:06:29:76:00:4c:08:39:59:af:f2:
42:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:CF:22:71:84:39:D3:76:16:15:24:95:6C:A2:55:8B:D7:9C:1D:A8
X509v3 Authority Key Identifier:
keyid:B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:40:09:b3:5a:b6:8d:a3:2d:42:f9:a6:9c:80:f7:15:4e:7f:
fc:02:3c:5f:37:7e:99:91:6e:5b:17:ea:b3:e4:15:1f:91:e6:
f0:14:51:30:79:98:17:c9:ed:90:27:ce:09:82:b5:1f:d6:b3:
70:c5:38:4a:06:7e:3b:37:b1:5d:b7:d3:d5:86:54:10:12:14:
0d:84:8e:54:a7:2f:0d:bb:5c:25:31:a4:9a:62:27:2c:e4:3a:
d4:34:8a:97:45:7f:ea:93:e9:74:c4:e9:cf:a6:67:d6:cb:a1:
54:6d:fd:c6:40:5f:cd:28:06:de:db:18:66:24:59:6a:3b:2e:
4b:18:8b:fe:19:ef:f4:f3:2e:ef:6f:65:42:00:e9:24:ae:b7:
e8:1f:e4:2c:fd:9a:11:76:87:10:2c:3d:52:96:29:07:ae:0c:
55:58:52:f8:77:61:69:50:22:6d:78:09:03:45:8c:75:cb:fa:
1f:dc:73:4d:85:0e:f6:b1:37:de:ee:80:28:0f:c3:3c:0d:07:
f2:fd:53:1c:34:2d:30:48:c8:b2:c4:78:cd:5e:4b:7d:e8:59:
d0:a8:f2:30:d3:23:91:0f:86:93:23:51:9b:d3:48:0b:15:73:
98:83:fd:34:ef:b9:19:93:bc:c5:a8:79:bd:e5:3b:aa:16:fd:
04:5a:31:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:08:41 2025 by rpki-client