Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
File: bJSdK9ZO4X711H-WPj1depgrEq8.mft (raw, json)
Hash identifier: cr8FiIJI4M4LHUBrShHD64AfddUnSz8b7DcXBPuIYko=
Subject key identifier: 65:29:56:98:AB:F3:AF:0C:93:8E:D0:C1:14:69:5D:74:3D:21:4F:BD
Authority key identifier: 6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
Certificate issuer: /CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Certificate serial: 01967A569168FFA078120D746D9F724B1D1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
Manifest number: 097D
Signing time: Mon 28 Apr 2025 03:00:15 +0000
Manifest this update: Mon 28 Apr 2025 03:00:15 +0000
Manifest next update: Tue 29 Apr 2025 03:00:15 +0000
Files and hashes: 1: OyVcB1brzSxuoeEjBo4fT0W9OFc.roa (hash: sut6tQHQTuBMJAc0/1shERZEk1RWFKSSDeDy5cd5Klo=)
2: bJSdK9ZO4X711H-WPj1depgrEq8.crl (hash: t4SQ9FrMc5WzxPC196IOBtJreeww+wE7iL7h+peEHKg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7a:56:91:68:ff:a0:78:12:0d:74:6d:9f:72:4b:1d:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Validity
Not Before: Apr 28 03:00:15 2025 GMT
Not After : Apr 29 03:00:15 2025 GMT
Subject: CN=65295698abf3af0c938ed0c114695d743d214fbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a5:ae:ba:05:60:d5:57:6d:9d:8f:64:11:2d:
22:53:cd:7c:ad:c9:40:6c:06:e2:bf:32:56:36:4a:
f3:b2:7b:22:d1:d5:14:4c:da:69:f5:62:b9:8b:d1:
1a:84:c4:9e:8c:32:b4:ba:62:72:35:d8:e3:b9:5c:
bd:22:3b:61:e9:5e:d8:d8:3c:18:1f:93:d1:ec:4e:
73:ca:4b:54:af:e8:a6:6e:83:24:55:1d:29:d2:71:
ef:35:15:3a:86:d9:ba:44:17:36:f2:a5:78:f4:4d:
e9:8b:b3:ef:d6:04:77:dd:d1:56:8f:39:dd:38:cf:
a8:13:0f:ec:71:68:9e:29:37:1c:34:18:58:c0:9b:
c4:c7:68:8a:49:b6:63:39:a7:5b:c9:60:10:93:91:
ce:36:0f:8a:7f:a8:aa:ac:3c:e2:4b:1b:c7:3f:ec:
3e:c3:f3:8b:75:1c:a1:95:7d:7d:94:fc:ab:57:89:
5a:94:bb:99:ea:c2:83:26:9a:5b:5d:78:70:6a:09:
73:39:28:87:17:61:a6:c7:d5:88:c8:d3:44:eb:d6:
7d:fe:12:95:37:ca:5b:f0:34:58:e7:7d:4d:74:01:
21:18:33:34:f0:1c:a0:66:c5:60:f3:7e:b7:1d:40:
d2:80:f4:1a:83:0d:08:8f:26:bf:51:17:73:6a:d4:
4b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:29:56:98:AB:F3:AF:0C:93:8E:D0:C1:14:69:5D:74:3D:21:4F:BD
X509v3 Authority Key Identifier:
keyid:6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:8e:f7:3b:93:90:73:d6:53:e5:09:cc:75:e0:ac:1c:d9:ed:
9b:77:1c:3a:c7:bf:b0:38:14:c3:be:46:45:6a:00:ee:ed:05:
be:ad:c3:1a:c4:e4:0d:a0:f6:f3:ac:78:4e:fa:0c:dd:a1:58:
ba:28:54:3e:71:a2:56:11:ba:ed:fa:dc:31:da:c5:80:f8:b1:
f7:fc:0b:75:6d:4a:64:d3:af:6d:8d:44:0b:51:8e:21:3d:54:
66:c8:36:a1:b0:d3:fc:68:b7:52:17:ef:b7:8c:1a:23:d3:ff:
83:06:d7:6e:f7:ca:c7:bb:f1:7a:c4:24:7c:c7:fc:e4:ce:eb:
64:a7:1a:4d:76:e0:ad:f0:a4:d0:bc:49:c0:bb:f5:c1:df:a0:
c9:b1:7c:90:c1:0c:c3:1a:05:62:ff:5d:e4:f8:4f:04:06:d3:
86:e3:81:c2:79:fe:f7:81:67:09:98:9a:22:36:d3:16:c8:5b:
0d:d2:c5:2c:c6:27:52:16:8b:2c:cb:2a:36:58:4b:95:1a:ad:
35:ba:7a:44:f7:89:5c:e9:20:de:14:43:e3:19:9e:d2:c9:60:
6a:7f:00:f2:ff:05:1b:b4:05:ca:c4:24:2a:eb:a3:66:24:a6:
92:26:df:59:3a:e9:54:fe:61:b1:f5:48:6e:c8:be:ee:27:05:
91:c1:31:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 06:09:35 2025 by rpki-client