Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
File: jrsOsZ53d9cDgAD2wS053tEgQkI.mft (raw, json)
Hash identifier: leOi2xhxSNeNsXUIXV6ejc8zQ3LW39Dqi73qp54SXb8=
Subject key identifier: 83:8A:70:B8:43:7A:1D:6E:82:A2:D8:D1:92:E3:4E:C8:D3:91:38:D8
Authority key identifier: 8E:BB:0E:B1:9E:77:77:D7:03:80:00:F6:C1:2D:39:DE:D1:20:42:42
Certificate issuer: /CN=8ebb0eb19e7777d7038000f6c12d39ded1204242
Certificate serial: 01968B13C04A7DECDC21F022F33219D9FF0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
Manifest number: 0B54
Signing time: Thu 01 May 2025 09:00:49 +0000
Manifest this update: Thu 01 May 2025 09:00:49 +0000
Manifest next update: Fri 02 May 2025 09:00:49 +0000
Files and hashes: 1: 68-2o2gnqeFje-83JI2NL7vcFCs.roa (hash: 5XT1BGaZiWzYIBY9EJMQdD9z2CvFYvirF/G5S8/gceM=)
2: jrsOsZ53d9cDgAD2wS053tEgQkI.crl (hash: 0r7Qie0aRoVM1kCjPaV7XxN5+UcNNmXT+vN7ljL3rZA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8b:13:c0:4a:7d:ec:dc:21:f0:22:f3:32:19:d9:ff:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ebb0eb19e7777d7038000f6c12d39ded1204242
Validity
Not Before: May 1 09:00:49 2025 GMT
Not After : May 2 09:00:49 2025 GMT
Subject: CN=838a70b8437a1d6e82a2d8d192e34ec8d39138d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:71:ce:b7:43:e1:58:d9:15:a1:63:32:c7:b8:
9c:cf:cf:73:de:a2:08:c5:a1:02:a7:57:d7:03:d7:
6d:bb:5e:20:3c:5b:19:5b:db:26:3f:c9:24:25:f0:
92:3a:c2:d2:23:18:57:43:9c:34:08:27:e1:e9:81:
79:af:60:0e:82:46:6a:7f:a4:e0:99:d3:7d:6f:50:
37:e2:22:c5:4d:d8:a3:34:1b:8d:2e:a4:35:4a:74:
d0:32:76:91:35:3b:c7:b3:3d:29:4d:51:16:87:25:
eb:7e:15:5c:12:e4:f7:54:21:6b:24:55:ef:2b:6b:
4a:4f:9b:bd:05:6b:13:a6:65:b0:47:c1:f8:bf:0c:
db:f4:55:7b:47:d8:ff:cb:74:61:f6:39:88:60:2a:
75:0c:de:16:72:3e:1d:30:f9:de:2c:4b:65:32:e1:
a4:54:26:ff:12:9a:4f:5d:49:52:18:9c:73:b4:e5:
65:0c:f0:dd:db:53:71:fc:a1:9e:1d:76:32:f6:ac:
21:40:75:ae:cc:b5:d0:f0:37:79:ff:18:6c:c0:3d:
fe:ec:31:f0:5e:b3:0e:11:bd:68:e6:0e:3f:cf:97:
26:76:3a:d9:8e:72:1a:c3:0a:7f:c0:fb:d3:4b:ea:
3a:5e:f1:10:fa:78:a5:60:ba:20:e5:67:91:0b:53:
1e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:8A:70:B8:43:7A:1D:6E:82:A2:D8:D1:92:E3:4E:C8:D3:91:38:D8
X509v3 Authority Key Identifier:
keyid:8E:BB:0E:B1:9E:77:77:D7:03:80:00:F6:C1:2D:39:DE:D1:20:42:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jrsOsZ53d9cDgAD2wS053tEgQkI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/3b157d-8196-4e40-ab36-15141c66854d/1/jrsOsZ53d9cDgAD2wS053tEgQkI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:e2:f5:68:53:c1:10:9f:34:82:9e:d3:f3:9c:c1:a7:42:c2:
fb:b5:31:b6:89:98:c5:75:ac:5e:d5:ef:e4:4e:85:ec:e5:c8:
83:a4:ae:62:08:e1:1b:9d:2c:5f:1c:cd:16:e4:a4:33:a7:28:
9d:e4:f6:28:e9:3c:0f:f0:a4:7b:b1:ae:eb:84:33:c3:14:46:
d2:d2:34:32:b5:f1:7b:5f:78:ba:9c:cc:d7:9d:d3:69:fd:1e:
03:9b:63:95:7e:3f:e0:88:29:81:b3:48:44:48:98:15:54:ac:
e4:70:23:d1:98:c3:3d:b1:74:01:1b:f4:52:69:40:f1:d7:38:
64:97:07:9c:fc:d3:94:07:b5:c4:09:4c:78:29:30:00:95:d8:
80:f4:c7:9a:7a:4c:38:58:94:45:99:dd:2b:7d:5b:7c:f5:7e:
3c:fc:01:52:c9:36:69:14:36:63:b4:ad:51:07:01:66:0f:bb:
45:e8:b9:73:22:20:9e:50:97:67:b7:bc:9e:96:ac:73:77:cf:
a2:a9:b6:83:2a:d9:4a:ee:04:8d:33:ae:7d:73:d6:cf:a6:5e:
0a:b0:09:96:25:e4:5a:37:f3:03:0c:ee:8f:2c:e5:18:8d:80:
1b:20:77:56:c5:fc:01:a8:65:b2:69:33:ac:80:e9:94:79:58:
e5:f7:49:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 13:35:30 2025 by rpki-client