Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
File: rN3HO1mh_N7iLiWCTUCswnKGqlI.mft (raw, json)
Hash identifier: YxsTAMofPLduitfGGd2IbWzHr0gZsQf8bpOuqVHRvYQ=
Subject key identifier: BB:F6:A0:CD:10:83:D5:CA:85:CD:8B:2A:AB:4C:67:E0:52:A3:99:0E
Authority key identifier: AC:DD:C7:3B:59:A1:FC:DE:E2:2E:25:82:4D:40:AC:C2:72:86:AA:52
Certificate issuer: /CN=acddc73b59a1fcdee22e25824d40acc27286aa52
Certificate serial: 019675D5178012A91092477063B82367DA04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rN3HO1mh_N7iLiWCTUCswnKGqlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
Manifest number: 0163
Signing time: Sun 27 Apr 2025 06:00:21 +0000
Manifest this update: Sun 27 Apr 2025 06:00:21 +0000
Manifest next update: Mon 28 Apr 2025 06:00:21 +0000
Files and hashes: 1: oo8iJLtCvQj5tOxPs0jWtfp64Qc.roa (hash: XKlJdTZMxFrgX9Jc6CyAN7uX/wDP3zOgo6gX8cl2wYU=)
2: rN3HO1mh_N7iLiWCTUCswnKGqlI.crl (hash: NXVadpVHidUFbtBLc9DM/wyTvw+TeRS3qZwrVflVTP4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/rN3HO1mh_N7iLiWCTUCswnKGqlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:d5:17:80:12:a9:10:92:47:70:63:b8:23:67:da:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acddc73b59a1fcdee22e25824d40acc27286aa52
Validity
Not Before: Apr 27 06:00:21 2025 GMT
Not After : Apr 28 06:00:21 2025 GMT
Subject: CN=bbf6a0cd1083d5ca85cd8b2aab4c67e052a3990e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:e2:c4:7d:00:16:b1:d7:c0:84:0d:65:92:38:
c0:07:d7:0b:2d:c3:0b:38:b8:eb:06:ff:0d:d9:1c:
a7:27:d1:32:cd:58:21:27:69:a6:d9:5e:1f:7e:51:
b1:70:35:b1:d2:40:ca:77:be:d9:e6:4c:db:2d:c9:
92:6f:45:ee:98:c0:90:f5:7b:e2:5e:b7:b2:8f:3d:
cb:f8:28:da:d6:ab:c0:67:36:a1:78:44:6f:a6:90:
6e:4f:a5:02:3c:9e:09:0a:bf:fd:25:29:87:cc:18:
a6:06:28:16:3e:7f:a6:e1:21:f3:6e:ae:58:b4:f3:
43:56:03:12:76:26:ae:ec:b2:c5:9c:c1:ab:7f:a8:
b2:98:1c:21:2a:11:b3:3e:87:4a:34:ff:cc:d9:d0:
aa:aa:1b:af:82:38:48:75:08:a5:9c:14:55:7f:5d:
a7:8e:cf:87:dd:9b:97:5f:08:37:36:54:7e:61:dd:
3b:dc:dc:d1:c7:4a:f5:c9:be:c7:26:ae:17:52:80:
11:07:05:b9:83:06:91:d9:74:f4:d3:8d:2f:33:5e:
1c:55:b3:4c:5d:87:19:84:68:f4:cd:67:06:5a:76:
1a:30:43:62:50:c1:c0:44:4c:16:79:92:eb:8a:af:
80:8b:84:e3:bb:9f:4e:26:ed:bd:5d:89:af:b4:41:
f0:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:F6:A0:CD:10:83:D5:CA:85:CD:8B:2A:AB:4C:67:E0:52:A3:99:0E
X509v3 Authority Key Identifier:
keyid:AC:DD:C7:3B:59:A1:FC:DE:E2:2E:25:82:4D:40:AC:C2:72:86:AA:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rN3HO1mh_N7iLiWCTUCswnKGqlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:8a:53:00:9f:f4:ec:c9:57:06:8d:06:fc:d6:24:3e:be:a6:
96:2d:21:01:33:25:9f:67:7b:8b:86:a5:b4:e2:d2:7f:11:5e:
e6:c1:2f:68:83:3f:c3:f2:6e:4d:7c:9c:90:db:6f:84:53:f5:
9b:eb:b9:48:f4:68:06:4f:87:3a:bf:db:3e:1f:0f:95:aa:e5:
15:ec:32:43:f2:06:c4:3c:cb:5b:f6:ce:86:e0:e8:75:86:b5:
9d:bc:02:87:91:89:2e:1e:5f:5b:fb:2d:21:27:f5:90:b2:d1:
b5:a5:e5:a2:b9:b6:6a:d5:89:8c:7b:23:3d:ab:2c:29:53:85:
b1:37:c2:9a:56:3a:b8:7a:6d:34:db:bd:e7:7b:be:74:72:57:
61:b0:f1:c1:24:c0:2d:0e:4a:74:25:4d:05:04:ec:29:8b:b5:
b9:13:42:91:30:f8:dc:91:81:26:4a:81:93:99:48:ae:e9:39:
6c:f2:0b:b2:0a:71:28:89:60:13:3d:5a:62:92:b2:50:23:37:
d3:1c:01:c2:4d:6a:46:58:16:fb:cd:32:fe:1c:df:b7:9f:cf:
55:76:8b:a7:d9:91:e5:18:c8:82:90:c8:ac:79:52:b6:a4:94:
88:67:73:ce:13:6d:da:01:dc:4b:b2:07:55:9e:41:90:2a:b1:
22:9f:ea:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:11:13 2025 by rpki-client