Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
File: bs1crU0zBsT3LEKvwG5c0fuv46M.mft (raw, json)
Hash identifier: XQCI0nswut/xwwZVQyu/+d0WChY8LY6ydH8RrK2omxs=
Subject key identifier: 1A:7C:7E:A1:D0:43:FE:2D:5A:61:C3:61:B7:B9:81:DF:99:EA:FF:92
Authority key identifier: 6E:CD:5C:AD:4D:33:06:C4:F7:2C:42:AF:C0:6E:5C:D1:FB:AF:E3:A3
Certificate issuer: /CN=6ecd5cad4d3306c4f72c42afc06e5cd1fbafe3a3
Certificate serial: 01968323302C48FC758DD1D74F774737E3E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
Manifest number: 151A
Signing time: Tue 29 Apr 2025 20:00:43 +0000
Manifest this update: Tue 29 Apr 2025 20:00:43 +0000
Manifest next update: Wed 30 Apr 2025 20:00:43 +0000
Files and hashes: 1: IVWLNAUIsWDuNfRfR17vH-v5XfI.roa (hash: OmbLmtXQG4MyTcSNnTCa+QZsFqNmOgdwU2G3Jors4PA=)
2: bs1crU0zBsT3LEKvwG5c0fuv46M.crl (hash: fgEkyD13kKW6SghqYj8IQdMWFDE0j0Pi70NXSl3udB8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 20:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:23:30:2c:48:fc:75:8d:d1:d7:4f:77:47:37:e3:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ecd5cad4d3306c4f72c42afc06e5cd1fbafe3a3
Validity
Not Before: Apr 29 20:00:43 2025 GMT
Not After : Apr 30 20:00:43 2025 GMT
Subject: CN=1a7c7ea1d043fe2d5a61c361b7b981df99eaff92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ae:dc:0c:d0:ac:a2:39:59:4f:5f:e9:98:1d:
87:e1:99:bf:ef:dc:ed:a0:2f:c9:a6:55:c7:fe:16:
58:bd:f0:c3:6d:8b:9d:1f:ed:27:a4:97:af:5d:6d:
f8:90:dd:ab:b0:e2:3c:b5:98:93:2e:4e:39:75:7e:
5f:7d:b2:1a:1c:27:f1:a5:e7:c4:4d:5c:d8:09:77:
2b:f3:d6:e4:47:bf:0f:c5:f8:81:b5:2f:0f:8c:9d:
8d:f1:ef:b8:77:ac:b3:ae:9d:1d:a4:f7:7e:80:be:
0e:28:18:db:25:22:8a:50:e7:bc:02:ae:72:51:ee:
91:f0:38:50:d9:49:3c:1a:7a:89:07:9d:d3:9d:c6:
96:8e:72:6d:cf:65:51:e5:76:df:66:27:25:b8:64:
ed:e4:3d:2a:60:0c:cf:36:c1:ca:32:34:d4:06:b0:
f8:0a:4d:0d:28:ca:8b:14:2d:32:f3:5a:01:6a:a1:
75:25:3d:e3:db:f8:5d:1a:7e:4d:bb:a4:07:1f:71:
58:7d:ca:3f:21:55:0b:f6:ee:fa:55:7d:eb:64:ff:
51:55:e8:ac:34:38:1d:47:fc:cd:2d:ca:f4:ee:ce:
88:61:8d:b7:23:8a:2a:7f:52:e3:ce:09:46:b2:eb:
42:b3:09:64:f7:1f:78:e7:39:a1:42:b6:d8:4c:15:
58:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:7C:7E:A1:D0:43:FE:2D:5A:61:C3:61:B7:B9:81:DF:99:EA:FF:92
X509v3 Authority Key Identifier:
keyid:6E:CD:5C:AD:4D:33:06:C4:F7:2C:42:AF:C0:6E:5C:D1:FB:AF:E3:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:65:f5:8b:91:1a:28:52:93:e7:ae:5c:d7:4e:10:4e:fa:88:
32:db:43:54:a0:97:cc:9d:35:3b:4b:32:8d:53:e1:98:d9:a8:
57:a5:0d:d5:ba:4f:ba:38:7e:11:5b:06:f6:03:97:18:3d:f9:
23:0d:ce:8c:f5:72:dc:ac:c3:d6:33:76:2f:79:c6:d7:c5:5d:
aa:13:7f:e5:67:e4:11:53:23:16:4f:30:21:28:29:54:66:60:
32:e3:be:2a:a1:90:60:b9:b8:88:9a:ac:48:1c:7e:28:3a:5f:
5c:51:43:32:ab:f6:f3:a3:11:f0:df:85:cc:b1:2d:3f:5c:38:
bd:08:de:b7:74:52:fd:33:e7:c2:14:0d:c7:cd:35:3e:75:d0:
01:d2:8c:ae:bc:2b:19:7a:a2:25:87:8b:98:f9:19:8c:16:57:
db:e9:b9:32:f4:b1:95:d6:98:65:8f:61:f2:34:be:8a:b4:f5:
81:8f:1c:58:52:72:00:26:8f:9a:3f:98:d0:84:c1:87:01:83:
f0:f5:df:45:30:16:63:64:91:31:12:3a:8a:40:cc:33:bd:6c:
2b:9f:8e:92:60:3b:5f:62:83:be:73:93:20:98:5a:1a:c5:e3:
12:56:28:a2:d7:be:67:2d:2e:b7:05:f0:a6:fe:bf:ba:0d:01:
37:fd:60:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 05:09:09 2025 by rpki-client