Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
File: T03F1MB2_YQmOrcubxe1_0rLhEg.mft (raw, json)
Hash identifier: mC22A0+wkN421JOo2mCeov0mQeZGecxPBFAL61UnG9I=
Subject key identifier: E5:F6:DE:40:4B:C8:8B:82:96:12:A7:74:CC:68:8E:37:7B:FF:A1:05
Authority key identifier: 4F:4D:C5:D4:C0:76:FD:84:26:3A:B7:2E:6F:17:B5:FF:4A:CB:84:48
Certificate issuer: /CN=4f4dc5d4c076fd84263ab72e6f17b5ff4acb8448
Certificate serial: 0196771F0DA5CDB0B0D68A3ACAFDE9F17D70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
Manifest number: 082C
Signing time: Sun 27 Apr 2025 12:00:45 +0000
Manifest this update: Sun 27 Apr 2025 12:00:45 +0000
Manifest next update: Mon 28 Apr 2025 12:00:45 +0000
Files and hashes: 1: 5iUoguj_iK1nNW8vHsVzOldAdSU.roa (hash: pKY+cX83EfJeSDoR6xrNZru3sgyhL3gHqEm0luVXgrc=)
2: T03F1MB2_YQmOrcubxe1_0rLhEg.crl (hash: X4qGxmjtpymeED+fi8SgZiE25qWSpBf7iAl0EtTABPg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 12:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:1f:0d:a5:cd:b0:b0:d6:8a:3a:ca:fd:e9:f1:7d:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f4dc5d4c076fd84263ab72e6f17b5ff4acb8448
Validity
Not Before: Apr 27 12:00:45 2025 GMT
Not After : Apr 28 12:00:45 2025 GMT
Subject: CN=e5f6de404bc88b829612a774cc688e377bffa105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9d:19:5f:9c:ea:63:4c:bb:f1:73:1e:aa:09:
75:2a:08:2d:45:e6:06:c8:eb:90:42:e7:62:66:1d:
59:53:d0:0b:db:c3:29:fc:d8:32:fa:68:82:62:fa:
47:b8:d9:e8:e7:7f:9d:99:5d:e5:5d:ce:1e:8c:27:
bb:78:ca:fc:98:ca:84:b9:8a:d5:07:97:17:51:5b:
54:e5:52:8c:9e:31:25:60:8b:c2:3b:f3:c1:44:c7:
00:68:ee:5a:cc:d0:e1:9f:a7:7c:fc:84:b6:5d:5c:
11:9e:e3:9a:f6:0a:4b:45:12:a6:69:d0:ae:e5:41:
3f:a2:72:c3:26:4e:ce:f3:3c:ff:32:6b:22:f5:7f:
d4:40:0c:fb:27:2e:ec:3c:5b:04:3f:6f:ef:10:c0:
b5:fe:3c:96:74:dd:57:10:8a:1d:92:53:02:01:c8:
9c:dc:57:d7:28:d8:93:64:d6:f7:8e:33:f2:39:3f:
72:3e:1f:0b:90:28:ca:3a:8e:29:3f:ee:54:7f:43:
28:0f:09:78:98:1d:4a:0c:95:b0:c6:03:01:47:b3:
3d:1f:65:61:e2:eb:4e:9a:0f:91:cd:91:a7:eb:b2:
55:50:73:a8:11:f6:a8:69:7f:90:9c:00:1c:21:93:
2a:5a:e2:b2:eb:6f:a7:10:20:f0:e3:40:69:4f:1e:
82:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:F6:DE:40:4B:C8:8B:82:96:12:A7:74:CC:68:8E:37:7B:FF:A1:05
X509v3 Authority Key Identifier:
keyid:4F:4D:C5:D4:C0:76:FD:84:26:3A:B7:2E:6F:17:B5:FF:4A:CB:84:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T03F1MB2_YQmOrcubxe1_0rLhEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2575fe-a526-4195-9745-fa96bdd2ffa3/1/T03F1MB2_YQmOrcubxe1_0rLhEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:8e:f0:f1:0f:2d:7c:5b:b3:b0:f4:0d:a1:36:ea:08:68:0a:
bc:f9:fa:b2:81:5e:51:a5:32:2b:9f:d0:e7:7e:c6:dd:df:b2:
d9:df:a2:98:68:80:21:8d:6e:77:a8:2b:9c:41:32:a5:ce:a7:
1b:4c:40:a0:d9:9e:54:4e:b7:53:fe:62:f6:9f:4a:fa:fe:53:
12:09:bf:37:5e:61:3a:13:2f:d8:e4:91:fa:d1:56:27:b9:c2:
b9:3f:99:4e:44:7a:62:e0:2d:96:d0:d5:e7:cc:55:d2:ae:ca:
c5:3a:6c:0a:0c:f1:f4:f1:56:f2:d9:a9:76:71:d1:78:84:14:
2f:94:f8:c1:44:6b:30:75:8d:c2:9d:aa:40:62:27:7e:d1:a5:
cd:25:7a:25:a1:05:35:57:15:3e:5b:f4:97:7b:1a:04:15:78:
1d:98:73:0b:e9:7a:ae:d5:c0:1f:d7:7e:65:66:1d:13:24:27:
c1:62:74:32:ab:74:9e:ec:eb:1f:8b:3b:fc:b6:e1:25:88:0c:
c8:f3:c0:af:6e:b2:ec:46:77:62:ed:79:68:c2:02:8d:46:ea:
ff:92:92:da:bf:9b:37:f1:c7:99:43:93:5b:db:4d:2c:3b:6a:
ef:52:70:37:99:f1:42:b2:7b:b3:ae:68:10:fa:f4:ab:9b:b5:
1f:e2:81:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 21:20:03 2025 by rpki-client