Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
File: v99XKOyr1W70Y3NWlVhmylRoaRo.mft (raw, json)
Hash identifier: ebfb5kHxf1fJek0FYkGSNm+Va1yJ2rXnd0mKrshIMy4=
Subject key identifier: CF:50:4F:6E:A7:46:A4:C5:3C:73:63:3B:1D:6F:11:C9:D7:93:8E:3C
Authority key identifier: BF:DF:57:28:EC:AB:D5:6E:F4:63:73:56:95:58:66:CA:54:68:69:1A
Certificate issuer: /CN=bfdf5728ecabd56ef4637356955866ca5468691a
Certificate serial: 019686921468CD1CEEB81EDA2706CD18D736
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
Manifest number: 013A
Signing time: Wed 30 Apr 2025 12:00:42 +0000
Manifest this update: Wed 30 Apr 2025 12:00:42 +0000
Manifest next update: Thu 01 May 2025 12:00:42 +0000
Files and hashes: 1: 5ZRHOA8DDg_XhJ8JjCvhTOGiC1w.roa (hash: eWpgjaoVJC0L+xFRvzTJa/HrtM2zzM7SykfE1sq9g2I=)
2: v99XKOyr1W70Y3NWlVhmylRoaRo.crl (hash: xgkRoXBJ1mnob7TNLVhjd+KdcRDn44335e6gPNinxZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 12:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:86:92:14:68:cd:1c:ee:b8:1e:da:27:06:cd:18:d7:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfdf5728ecabd56ef4637356955866ca5468691a
Validity
Not Before: Apr 30 12:00:42 2025 GMT
Not After : May 1 12:00:42 2025 GMT
Subject: CN=cf504f6ea746a4c53c73633b1d6f11c9d7938e3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2d:b5:33:28:91:1c:5c:8e:b3:cb:14:ee:ac:
48:d6:d0:08:ca:8d:70:de:96:58:af:a3:ed:45:02:
bf:b6:98:96:4b:41:d8:cd:97:41:44:55:2b:8e:3e:
37:e4:67:b3:68:fc:39:26:6d:cb:74:d0:38:49:35:
77:23:99:df:5e:fb:28:00:6c:45:b9:80:d9:04:8e:
59:24:e8:6e:9f:57:48:d3:2e:b6:35:2f:a6:fb:ab:
ba:da:bc:f5:59:c2:10:59:4b:b9:37:c4:23:2f:82:
c8:cd:13:e8:64:6e:3e:fc:d3:06:3e:46:78:bf:83:
da:01:a2:de:7c:d5:44:fb:2a:c1:79:da:38:da:5c:
b9:2c:0f:85:34:9b:98:90:ee:6c:3e:b6:01:c7:e0:
63:6c:a9:d3:bc:5d:87:dd:a8:96:18:63:5a:af:78:
47:a7:17:4d:79:3b:e4:ed:e4:0c:87:c0:67:8a:14:
72:55:a0:73:63:46:4c:d2:ba:90:ac:1c:e9:57:e9:
13:26:fc:60:18:44:55:4f:50:34:1f:09:5d:ad:d8:
d0:b8:85:bc:b4:2b:35:32:59:43:23:20:88:9b:5f:
9a:97:ea:b8:a2:79:a1:d7:d4:e6:fc:86:b2:2b:ff:
54:b6:9c:a0:e2:f1:24:ba:4e:8a:a6:1d:5f:a2:3f:
e8:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:50:4F:6E:A7:46:A4:C5:3C:73:63:3B:1D:6F:11:C9:D7:93:8E:3C
X509v3 Authority Key Identifier:
keyid:BF:DF:57:28:EC:AB:D5:6E:F4:63:73:56:95:58:66:CA:54:68:69:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:8f:68:25:4d:e4:70:62:69:2c:3d:dd:a6:dd:b5:25:fa:eb:
e7:82:71:d8:f1:0e:9c:8d:84:a6:ba:4f:de:68:87:db:a6:96:
d5:14:9c:8d:76:81:67:95:bc:3a:18:a8:8d:b9:cb:94:83:91:
de:bd:b8:d6:f7:39:88:04:63:30:66:e7:7b:02:fd:46:36:f9:
b6:18:5a:40:a2:d7:af:24:5a:70:a3:c4:28:61:e0:f0:52:d5:
48:32:e5:cf:8a:c0:de:a5:b3:1d:da:c4:ce:a3:61:1e:72:d9:
70:75:32:e7:a3:8a:fd:02:77:19:cc:a2:de:73:f3:ba:11:63:
e3:3a:ec:1a:ce:9d:88:ad:ad:c1:db:58:36:a0:7f:2b:26:8c:
56:9c:1d:58:8f:36:44:c1:7a:6a:af:b7:44:37:6c:a6:bf:ff:
2b:40:44:f4:16:e0:3c:19:90:6b:a8:33:38:b6:3a:15:9c:bb:
e5:5f:90:5f:55:f3:a2:c1:bf:c8:34:e0:fb:d0:0f:58:0e:00:
f5:13:ae:fc:fc:54:6a:0a:fd:38:b0:ca:38:47:bb:4f:9e:6e:
f4:88:d5:0d:94:cf:45:75:06:f9:a4:27:8a:32:44:42:bd:2a:
60:3e:97:76:5c:a8:54:6c:36:7c:70:e0:c2:5f:57:48:0a:a0:
69:7b:3b:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 15:53:40 2025 by rpki-client