Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
File: tD1On-OlSH0g8QABkWKRUPYo86E.mft (raw, json)
Hash identifier: AxSDuc9VpmEaVpDrNIfAufGQuoHVlLlRnpatvx9pHNM=
Subject key identifier: 33:E7:71:9D:18:98:0E:20:69:8F:5F:9A:9C:5B:82:12:38:BB:07:C5
Authority key identifier: B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
Certificate issuer: /CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Certificate serial: 01968E1495D67A08792CCA7A521245FA1453
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
Manifest number: 09EC
Signing time: Thu 01 May 2025 23:00:35 +0000
Manifest this update: Thu 01 May 2025 23:00:35 +0000
Manifest next update: Fri 02 May 2025 23:00:35 +0000
Files and hashes: 1: WJX8pUUgztAx5ziEUO7pdOPaYpY.roa (hash: Zv2hcAwndmbcI8AgNFSDMAAPE42QlNQ0rd+YTdhMpog=)
2: tD1On-OlSH0g8QABkWKRUPYo86E.crl (hash: 1Y0i1j5H91Rw5iiaqfylJcQCbrA/41R0ErOabvyyAAU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 19:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8e:14:95:d6:7a:08:79:2c:ca:7a:52:12:45:fa:14:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Validity
Not Before: May 1 23:00:35 2025 GMT
Not After : May 2 23:00:35 2025 GMT
Subject: CN=33e7719d18980e20698f5f9a9c5b821238bb07c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8c:af:11:46:a6:16:5c:a2:7b:b6:95:7f:d3:
ca:cc:8e:ef:81:2d:cc:ad:59:c5:70:94:ce:20:ef:
87:a3:3d:fe:82:4c:b1:72:51:fe:b2:17:49:e9:0f:
eb:35:07:39:e8:c0:21:18:0c:70:9e:29:77:3c:61:
0c:aa:9a:1a:24:44:da:ca:e1:2b:5b:87:d7:f2:2f:
8f:f2:03:d3:86:e6:da:fb:91:79:31:25:9b:f3:2e:
20:09:1a:1b:49:50:4b:7c:97:21:05:bd:33:d9:28:
c3:1f:c2:a4:d2:ff:2b:23:c8:ca:02:8f:b2:5d:92:
72:0a:db:c2:6b:8a:1e:ed:9b:31:28:08:08:56:ad:
51:42:c1:c1:1f:85:db:23:77:0f:54:4f:66:43:52:
ec:d6:d4:c7:64:45:60:d2:77:60:90:ae:48:1c:5e:
8c:82:9d:a7:4f:69:54:57:ea:d3:80:41:9f:07:07:
20:4f:a4:38:8b:fa:73:4f:c3:1d:66:0e:ea:00:71:
a6:aa:ac:85:ca:b0:15:69:72:a5:b1:7e:95:15:21:
db:36:5b:54:09:46:9a:f3:3b:b7:81:70:19:eb:fd:
50:a2:04:b0:e6:0c:c7:c6:77:fc:ff:39:3f:d5:d1:
de:bf:44:43:d4:f8:12:b1:eb:5c:d8:3b:a8:68:d7:
69:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:E7:71:9D:18:98:0E:20:69:8F:5F:9A:9C:5B:82:12:38:BB:07:C5
X509v3 Authority Key Identifier:
keyid:B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:1f:68:d5:e7:0b:f6:49:b7:23:b1:11:a4:cc:9c:46:96:8f:
e2:14:59:b1:2c:0b:bd:04:0d:12:c0:5c:fc:62:34:d9:0c:30:
60:7e:3a:e4:32:dd:ef:3a:f9:0e:3f:f1:4f:47:8d:c2:08:00:
80:0c:0e:f8:33:07:bd:8c:29:98:99:27:5c:5e:9c:22:fd:4b:
9e:d0:71:4b:6b:5b:13:60:08:e8:27:69:f7:86:23:c4:75:e5:
26:03:b0:f2:4f:1d:9e:84:54:ab:1f:97:d4:b6:23:ab:22:98:
78:da:f4:49:02:09:4f:a1:1f:e2:ef:b6:84:c5:8a:a5:7a:4c:
d8:05:06:21:c6:28:0a:ca:1a:d8:47:9e:7c:a8:3d:5a:22:7b:
aa:31:e7:1c:9d:94:09:78:b1:84:f2:8b:72:f0:0e:10:91:20:
42:7a:68:f2:71:ce:e5:51:8b:87:09:78:90:b5:c4:ad:48:e9:
54:56:10:57:2a:cb:5a:37:c4:f3:10:54:63:ed:01:8f:44:88:
1d:f5:34:e0:23:d7:2a:cf:77:d4:b8:03:09:5e:82:d6:8a:9b:
42:93:c7:65:45:a4:6c:e6:e7:83:95:33:15:a7:d0:66:11:15:
51:b7:80:e3:53:9f:b0:63:f0:81:38:fc:b4:cb:6b:db:1e:93:
5f:ab:65:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 03:20:59 2025 by rpki-client