Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
File: mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft (raw, json)
Hash identifier: C25BlZoeP1mQGPnyFwlmOwL/WyMkgqn8zroArCfCBwA=
Subject key identifier: 12:6E:6C:D3:6F:77:B4:3F:48:3A:0A:61:59:95:85:98:90:E2:BB:D8
Authority key identifier: 98:63:35:4A:11:1A:F6:D5:E1:AD:10:DA:38:AD:81:44:B6:BE:86:8E
Certificate issuer: /CN=9863354a111af6d5e1ad10da38ad8144b6be868e
Certificate serial: 019672D3F1872E55DDE1B776551F595E6149
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
Manifest number: 0605
Signing time: Sat 26 Apr 2025 16:00:14 +0000
Manifest this update: Sat 26 Apr 2025 16:00:14 +0000
Manifest next update: Sun 27 Apr 2025 16:00:14 +0000
Files and hashes: 1: J5SKCaGOc1EmK2ciMl5AsL0Yt6k.roa (hash: G1OhQbiptYNimu4j0r+tzGfxHpXqGX5AtlwZt3l6QBs=)
2: TMwrQ9VEC3dWwdOdSzhchqd9LKU.roa (hash: ddLT4suSyGT63FePBoB4o2Q5fl/qPXcvtKn+r4yKT0g=)
3: mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl (hash: 39Qgefu/eGUIrkX8Pitehi7w1xIxnAOZRo+Z1LW8ByI=)
4: qjXXTFXVdVVWr7-MSHZr7AQqbSo.roa (hash: Sp8Mn3EU/O89RIW7deIN1lZCT2/D8tgJU4hIx0BHNRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 11:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:72:d3:f1:87:2e:55:dd:e1:b7:76:55:1f:59:5e:61:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9863354a111af6d5e1ad10da38ad8144b6be868e
Validity
Not Before: Apr 26 16:00:14 2025 GMT
Not After : Apr 27 16:00:14 2025 GMT
Subject: CN=126e6cd36f77b43f483a0a615995859890e2bbd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:43:f8:2a:4d:84:39:c6:40:0d:36:d8:04:a0:
12:aa:bb:d3:9c:a3:fe:96:46:8c:d3:0b:aa:e5:6c:
d6:4f:6b:43:9a:fe:dc:e4:67:2b:c1:b5:36:b0:db:
5e:b1:91:70:31:9b:7a:c6:d1:5e:6b:9f:15:c9:21:
9c:33:06:8f:13:0d:cb:e8:7d:ad:db:44:cb:c3:8b:
80:8c:47:65:64:b1:2c:7b:4b:8c:6d:bc:22:01:d5:
55:4a:cc:0d:91:e3:62:b6:86:1e:29:ca:19:93:14:
39:3e:8a:f5:cd:e7:8f:bc:72:e3:52:30:81:6e:47:
1b:81:dc:34:51:3f:8d:e3:26:83:42:bc:3a:4e:ec:
8b:2c:32:c4:75:60:2a:6b:d1:a0:29:b1:71:7a:1b:
32:2d:1f:a2:72:b2:df:63:f4:2b:83:0a:4d:bf:0f:
e9:72:40:0a:68:7f:b5:cf:63:bd:51:7c:ce:33:cc:
12:58:76:a1:bb:97:10:63:3a:0d:ac:cf:c9:ce:4c:
53:6e:e1:51:8d:85:db:75:83:dd:cb:e8:6a:0e:2d:
1e:0f:ef:d1:45:cd:48:9e:df:b4:dc:dd:63:ae:a7:
2f:0e:4c:30:48:a2:78:0a:ea:80:a4:a0:4d:e6:9d:
fb:98:2e:24:30:fd:5a:70:8f:8f:41:9b:a2:9e:27:
47:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:6E:6C:D3:6F:77:B4:3F:48:3A:0A:61:59:95:85:98:90:E2:BB:D8
X509v3 Authority Key Identifier:
keyid:98:63:35:4A:11:1A:F6:D5:E1:AD:10:DA:38:AD:81:44:B6:BE:86:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:fb:ed:81:27:ee:72:1b:8b:5c:5c:51:28:46:ac:84:05:b5:
76:a3:cc:23:b9:3f:52:e5:d1:b8:a0:33:75:3a:34:19:bd:5c:
05:56:5e:82:b9:bb:71:77:0a:98:41:8e:0a:c9:6c:a9:e6:f6:
35:c8:3e:e7:88:0e:0a:a9:24:46:9d:97:35:10:4b:88:12:bf:
7a:f7:a2:e8:b3:ba:72:8f:9b:9f:90:cf:4b:6a:80:99:54:1b:
59:17:f8:a6:d3:2b:01:4e:4f:6f:f2:ab:13:e9:90:31:28:ac:
f6:71:57:65:61:da:60:f1:7c:34:43:d2:9f:9c:c3:2f:ec:42:
5e:77:61:61:a7:48:31:34:4d:57:94:d6:cd:55:b1:81:b5:a1:
5f:22:8c:bf:fb:ae:b8:e9:87:6e:dc:a6:75:4b:bf:64:ca:fa:
3f:f1:d5:4c:0d:c1:17:83:90:6b:62:86:d3:c3:4a:ae:1b:7f:
73:26:59:b4:38:38:2a:68:15:c2:d9:cd:57:2d:b8:e2:b9:e9:
c3:cb:62:00:50:28:23:bd:e4:94:60:63:75:cd:90:0d:5e:8a:
1b:e4:49:13:7b:76:2f:40:26:67:84:96:cd:5a:cf:26:cc:0d:
84:aa:04:41:63:2b:34:32:a5:9e:ec:cc:1b:52:02:7a:02:a3:
0e:e6:6f:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 18:07:53 2025 by rpki-client