Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
File: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft (raw, json)
Hash identifier: GyI9vnTBlPofeALRyuZfoaKkw/9bg3aU5ksxfN4N3Us=
Subject key identifier: 51:E3:B7:53:12:77:EA:EF:5F:9B:5D:FA:6D:89:6B:07:33:89:BF:4D
Authority key identifier: EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D
Certificate issuer: /CN=ea2f671f10834dae48ea8d987342c375cab3316d
Certificate serial: 01967C7BDBF70C21CC7A29CDD0EFD0167876
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
Manifest number: 010C
Signing time: Mon 28 Apr 2025 13:00:14 +0000
Manifest this update: Mon 28 Apr 2025 13:00:14 +0000
Manifest next update: Tue 29 Apr 2025 13:00:14 +0000
Files and hashes: 1: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl (hash: wqaqEMIx7aZlk17Rdm43jtKxuulHmMyoW+fxL67dR78=)
2: As2aEQ-Qc40w6qz5lbdZOvfcUl4.roa (hash: wBu3pTqJ+Uf9xdHuwPeUbe92Udv+KfCa1hQtrwjxXdk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 13:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:7b:db:f7:0c:21:cc:7a:29:cd:d0:ef:d0:16:78:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea2f671f10834dae48ea8d987342c375cab3316d
Validity
Not Before: Apr 28 13:00:14 2025 GMT
Not After : Apr 29 13:00:14 2025 GMT
Subject: CN=51e3b7531277eaef5f9b5dfa6d896b073389bf4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:f8:45:1b:7e:4d:26:32:99:a8:1d:ce:0d:32:
d3:ae:4e:02:12:26:25:b2:bf:08:e6:46:37:5d:e8:
40:a4:98:c2:42:ac:0f:14:4d:1e:6e:78:50:b9:3a:
1a:2c:51:e0:cc:56:45:6c:79:f5:c0:ca:ae:5a:bc:
f3:f6:0c:dc:56:83:ef:7e:cf:05:2a:8b:a1:d4:0f:
9d:40:6c:de:0a:65:43:d3:00:e6:4b:57:91:b7:41:
3b:c8:df:a7:a8:34:f4:31:30:1b:e7:e1:bc:eb:d5:
5b:ee:fb:fa:09:6d:26:55:11:b4:07:ee:80:98:af:
59:8a:2d:55:47:d3:da:07:45:a7:a2:ea:01:5a:59:
d7:ec:61:30:78:66:86:2b:bb:f4:3f:46:18:46:88:
2a:67:ee:86:03:97:1c:72:df:8b:48:61:31:1c:38:
20:fa:91:03:b4:f4:de:7f:ef:69:ac:c2:af:f6:a7:
c8:0e:89:77:91:7a:f4:8c:29:2a:9c:28:17:26:ec:
22:7c:a8:53:43:8a:cf:9b:b0:60:ce:60:fd:f1:c6:
00:2f:88:fb:9a:d6:6f:cb:93:bb:40:5a:10:75:32:
05:59:5a:3b:1c:d6:fd:6c:db:d8:ce:00:c8:8f:60:
37:35:32:31:e3:20:6a:bb:bf:6d:c9:65:60:60:01:
f0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:E3:B7:53:12:77:EA:EF:5F:9B:5D:FA:6D:89:6B:07:33:89:BF:4D
X509v3 Authority Key Identifier:
keyid:EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:52:cd:03:f3:8e:6b:e4:25:24:95:77:87:e4:71:83:37:72:
73:65:b0:69:a3:37:95:0d:f1:27:d9:f9:a3:92:90:9e:75:e0:
ea:a1:c0:e8:44:86:3c:bc:43:3c:5d:b8:a1:f6:9c:da:11:10:
f6:c0:66:e5:56:a9:b2:dc:17:6c:2b:b7:12:3f:13:9f:b3:ed:
cc:44:99:ad:f1:f1:ca:34:0e:3f:d7:6b:3b:e5:18:0d:e3:ad:
d0:87:9a:c4:1c:51:f1:c0:0a:ec:63:e5:5c:e4:95:51:d4:06:
b3:f1:79:75:a1:11:77:6f:af:1d:1b:f3:b2:6b:82:cc:26:63:
5f:bf:71:d9:5d:f3:82:4b:1e:6f:ca:e1:c1:b7:f1:bf:93:75:
78:a4:84:6e:9b:64:c1:7d:7e:54:ad:f4:71:f1:14:d3:36:ad:
2f:6f:49:61:52:d8:0c:cb:c1:10:94:e5:fe:62:f2:48:e6:2c:
48:16:84:70:c1:5e:c8:2b:0a:75:ae:a5:8f:7c:86:a0:bc:32:
37:2c:f1:f9:d9:9e:e2:ae:b6:51:8b:18:b7:45:9d:1f:db:e8:
34:32:44:7f:9d:80:4f:89:49:e9:1b:71:1d:82:f8:9c:5d:19:
26:a7:ae:3b:42:78:db:cf:5b:80:ac:55:4b:e7:37:81:d3:e0:
5f:10:94:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 19:52:32 2025 by rpki-client