Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
File: sdLmgf8j3d89UXhY4cZKHa0phyk.mft (raw, json)
Hash identifier: jW+ulsRSQhp5fy4X0f7aLHD4V4ELjDzBrebV+FH4Wzo=
Subject key identifier: FE:94:27:7E:67:72:C8:2A:F0:5A:96:32:C8:B0:6B:FA:E5:E8:94:9E
Authority key identifier: B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
Certificate issuer: /CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Certificate serial: 0196760BF05B7878685F3A3052ED085F4F3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
Manifest number: 135C
Signing time: Sun 27 Apr 2025 07:00:15 +0000
Manifest this update: Sun 27 Apr 2025 07:00:15 +0000
Manifest next update: Mon 28 Apr 2025 07:00:15 +0000
Files and hashes: 1: hDoqXFR8UibPRuqFY2xn-m_-15I.roa (hash: qknu8HOpVZZ1hKraF3WMV/fgLgKt1U80KJN/d09ixdI=)
2: sdLmgf8j3d89UXhY4cZKHa0phyk.crl (hash: GUwCnZVnrVY8/TItV3UFTT3aW5WVzaDTsfpKhLdv+PQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0b:f0:5b:78:78:68:5f:3a:30:52:ed:08:5f:4f:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Validity
Not Before: Apr 27 07:00:15 2025 GMT
Not After : Apr 28 07:00:15 2025 GMT
Subject: CN=fe94277e6772c82af05a9632c8b06bfae5e8949e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4d:df:6b:6e:6b:06:b9:84:d7:fb:df:72:93:
64:65:e1:14:54:1b:9e:90:e8:ca:db:3d:f6:81:ac:
7b:f2:24:01:61:9e:1b:0c:c5:eb:e8:ee:64:5f:20:
e4:1d:0b:87:d4:a6:e1:08:b5:02:d8:ef:a8:67:2d:
2a:d9:7d:9c:92:c0:4f:d1:24:8c:29:f7:10:af:83:
3a:c2:2f:7c:57:e0:2e:f8:53:ea:e7:53:51:a7:3e:
99:c8:9d:d0:44:99:d5:ea:d0:c3:6d:98:0b:21:38:
34:0c:71:e0:cb:9c:e6:e9:7f:99:81:30:03:90:ca:
f4:04:ef:0b:ec:8e:f9:b8:ef:08:e6:78:c2:a8:9b:
09:26:52:11:97:10:e1:46:3f:7d:3c:15:78:dd:db:
20:96:f3:79:21:90:e5:ec:5e:22:41:6b:ea:50:55:
c2:a0:56:3f:bf:6b:93:2c:18:22:28:71:c7:a9:59:
b7:a8:4d:7b:8a:89:5b:7f:e0:f6:ae:2b:4c:a3:a9:
72:0d:ec:8e:3e:d4:13:6e:83:34:a0:ac:a5:9e:00:
4d:56:7a:72:d0:3d:28:0a:45:d0:d0:81:d0:31:49:
68:88:8f:a1:c9:b9:c0:5c:01:45:6b:54:66:2a:90:
cd:de:74:c5:b2:67:5e:fc:6e:c3:a8:2e:4e:fc:49:
1f:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:94:27:7E:67:72:C8:2A:F0:5A:96:32:C8:B0:6B:FA:E5:E8:94:9E
X509v3 Authority Key Identifier:
keyid:B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:e9:92:72:4d:d8:35:cd:b5:67:2c:d1:49:97:46:ab:24:31:
61:e0:90:06:bd:59:70:26:a6:2d:b6:ed:f3:93:48:71:17:4b:
c7:98:97:1b:f3:39:16:e8:89:8c:47:9d:23:3b:52:82:6d:8a:
27:99:60:0c:ed:d6:28:59:76:c3:03:5f:8a:eb:2b:40:bc:fe:
05:33:69:07:e9:1a:d2:d2:a2:6d:09:ce:66:f9:00:13:10:7d:
94:18:ae:af:fb:d7:db:38:8c:67:80:87:27:b8:51:e1:fc:b6:
8f:7a:a4:b4:7f:f4:45:97:b5:2f:d5:cb:42:0d:2d:8d:f6:33:
3a:a8:43:84:c7:5f:c0:df:60:a8:5f:2b:ee:97:7b:64:e2:f3:
f6:8b:c1:06:7a:f0:42:af:a8:59:bb:0f:bf:07:d4:5c:5a:8f:
63:f4:b0:9b:b4:61:a3:fe:53:03:ea:ac:94:d0:b1:21:d5:80:
3d:33:1a:8d:36:04:a5:99:e9:a9:1c:49:e6:1a:1a:ea:06:24:
ba:6d:24:07:8b:67:17:e6:a6:a7:0c:23:63:2b:66:04:52:2c:
56:eb:bf:bc:9d:ad:12:9d:2a:97:c0:10:30:22:d1:40:26:e4:
ab:d3:5a:23:f4:c7:1c:44:a8:cd:40:16:e8:75:0c:0d:60:f7:
7b:e0:a5:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 14:35:45 2025 by rpki-client