Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
File: 2gszzdt5m3vPXT3OAE_bqMPoZP8.mft (raw, json)
Hash identifier: QxlNiI1MlA9z+C+gyC5GQ9Q6l1CtjBDZFqQdy7oiMGg=
Subject key identifier: 93:BF:73:4B:DF:54:1D:2B:66:70:D0:3C:E7:CE:B7:D4:94:67:4F:BB
Authority key identifier: DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF
Certificate issuer: /CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff
Certificate serial: 019659F02E12576076F7B4EFB1B24826C4F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
Manifest number: 0B6A
Signing time: Mon 21 Apr 2025 20:00:34 +0000
Manifest this update: Mon 21 Apr 2025 20:00:34 +0000
Manifest next update: Tue 22 Apr 2025 20:00:34 +0000
Files and hashes: 1: 17FLk26rZWNpnvEJucbEAG-7zqY.roa (hash: qMmpcRGKwOqOR5+GsVwNkgRbdBAdNorVpaMiale+nXI=)
2: 2gszzdt5m3vPXT3OAE_bqMPoZP8.crl (hash: jFJvSUpsviEXAxlqC8JYxMc0mIQfHZxJXdFyLnaWsas=)
3: bBGzNd5qGUUIPYH3-5zWMnwwyJg.roa (hash: 290Z2J6Jo9xanYpdqpciKr53wSmtU/PW4k3Qs+NnOTs=)
4: k29cbE30TGhu-1q8rRu7-jpqTg4.roa (hash: 9mQL8HUgIQzEZ7MXmoS/sUavd/K/UaaalJ5/ztoLSTk=)
5: s7mUu7WrVHVPJEBCCdi0H3bHpis.roa (hash: ExGJpFM76OJZURK1GFJNiBKKffY4pIrBrUBBm9tcC8g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:f0:2e:12:57:60:76:f7:b4:ef:b1:b2:48:26:c4:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0b33cddb799b7bcf5d3dce004fdba8c3e864ff
Validity
Not Before: Apr 21 20:00:34 2025 GMT
Not After : Apr 22 20:00:34 2025 GMT
Subject: CN=93bf734bdf541d2b6670d03ce7ceb7d494674fbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f7:72:88:76:58:8b:1a:d9:fc:f2:a1:79:18:
3b:60:05:77:0c:b2:eb:80:5d:a1:78:a5:da:0d:eb:
bb:82:24:62:2c:e9:24:9f:08:8f:3a:c3:ae:2d:90:
ca:76:b8:80:dc:e1:3f:10:19:36:cf:68:2d:a5:0b:
c5:28:33:e0:fc:57:7a:fb:96:da:38:2d:6f:37:18:
dd:7b:3e:45:65:db:0f:ce:d5:13:f8:98:4a:3d:94:
b1:9c:fb:c7:2d:2e:5b:a0:53:45:c4:b1:35:31:36:
35:c2:21:09:c9:62:cb:6b:6e:e2:db:33:a0:25:89:
c6:90:19:c9:0d:62:d7:86:28:71:4a:e2:0d:80:b6:
ba:37:41:59:78:2e:5e:47:62:1f:3e:70:14:ac:db:
b8:d4:62:99:32:0d:53:42:65:fe:73:65:ba:e3:5b:
b5:b7:3b:e5:e4:48:66:ff:71:17:89:c4:39:3e:b6:
91:cf:37:33:7d:2e:08:00:50:0f:fe:9c:11:de:e1:
23:3d:46:f7:99:f4:be:02:36:be:78:40:e3:ab:e3:
d5:eb:89:7c:d4:7e:45:8d:a8:63:9b:d8:19:30:a3:
bc:1c:72:fd:cf:0c:a0:28:20:7a:35:68:92:89:b1:
38:53:de:57:a2:86:68:7b:24:bc:24:e7:ac:b5:ec:
f1:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:BF:73:4B:DF:54:1D:2B:66:70:D0:3C:E7:CE:B7:D4:94:67:4F:BB
X509v3 Authority Key Identifier:
keyid:DA:0B:33:CD:DB:79:9B:7B:CF:5D:3D:CE:00:4F:DB:A8:C3:E8:64:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gszzdt5m3vPXT3OAE_bqMPoZP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/032d8b-4881-46fa-b674-7733bd888e28/1/2gszzdt5m3vPXT3OAE_bqMPoZP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:6b:8b:80:fd:8a:e1:d1:13:9d:f7:11:da:e7:c9:95:6b:18:
8e:14:c9:ce:15:fb:f3:4c:5b:e3:43:84:32:db:f5:07:70:ae:
0b:36:71:ae:59:52:d9:aa:4b:d8:ae:e4:d9:bd:5e:04:7b:45:
03:e6:f4:b1:4c:fe:55:f0:fd:d6:6f:0b:a9:a1:c0:fb:c0:36:
8e:6b:63:ab:ed:9f:2c:09:97:b2:4b:1a:20:6e:ed:8c:d0:ec:
00:03:31:dd:1c:4a:77:c6:8d:bf:a3:1a:2b:bd:4f:1c:ec:3d:
31:bb:09:30:d1:a8:ed:81:43:51:f7:30:f5:8b:dd:27:7d:20:
c9:94:38:48:5c:aa:1b:05:ba:fd:a8:91:dd:0f:b0:4e:48:91:
10:0e:93:81:28:78:67:2b:82:7e:ea:dd:7e:cd:dd:b7:fb:99:
41:6d:c4:af:2f:04:a7:33:7a:3c:f3:d5:ae:7a:d1:09:83:9c:
a1:60:c6:8e:4c:cc:9e:d5:78:7c:ea:a0:87:ad:8f:fa:49:ea:
dc:a5:19:74:28:8f:68:bd:60:6d:f8:a5:3b:d8:16:f5:a3:9d:
23:cd:ca:d2:c5:ef:de:35:3e:ee:cd:58:78:c1:93:6b:59:60:
d9:7a:9f:67:8b:4c:fd:f6:35:d0:b6:d2:f0:89:5e:38:4b:36:
5a:e2:a4:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 03:53:03 2025 by rpki-client