Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
File: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft (raw, json)
Hash identifier: lHvsHfi5EYuUXeyUUci5dIEPDLPu/4AwysnSFO+YU5Y=
Subject key identifier: DB:BD:44:B4:B3:93:A2:00:EF:41:BA:0C:CB:9C:DC:8A:84:34:36:42
Authority key identifier: 08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
Certificate issuer: /CN=0842759a04fcfd9dd386486f04820e4a060397f2
Certificate serial: 01967755BA0B6DE028F1BCA5515093396F7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
Manifest number: 0180
Signing time: Sun 27 Apr 2025 13:00:28 +0000
Manifest this update: Sun 27 Apr 2025 13:00:28 +0000
Manifest next update: Mon 28 Apr 2025 13:00:28 +0000
Files and hashes: 1: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl (hash: ULxQkqAd5/tgSiPunxyVsceanj4MNVq3lg9vNrtRo+s=)
2: bQzf2uMGkgXH3X2QS8uIrSp74eU.roa (hash: YLxBLk8jjfgkyujII1/AehF/PxCPTNN02Psu8lVMfcc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 13:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:55:ba:0b:6d:e0:28:f1:bc:a5:51:50:93:39:6f:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0842759a04fcfd9dd386486f04820e4a060397f2
Validity
Not Before: Apr 27 13:00:28 2025 GMT
Not After : Apr 28 13:00:28 2025 GMT
Subject: CN=dbbd44b4b393a200ef41ba0ccb9cdc8a84343642
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e1:38:a7:4b:9f:8c:68:db:39:6d:e7:29:11:
aa:a9:99:31:54:28:d9:11:f7:89:1b:6f:4d:60:08:
10:98:13:f0:42:77:d9:6e:6a:e4:70:16:2e:e1:5c:
61:59:36:d5:9e:24:e7:97:e7:34:9d:66:ce:e5:f8:
75:5c:e3:be:a7:01:52:4b:7c:48:26:a9:c8:98:97:
01:e1:0d:c1:d4:50:49:f1:67:18:a1:70:f3:05:2a:
a4:71:37:43:be:51:4d:2c:40:82:d7:4f:4d:2f:d9:
5d:e6:e8:bb:c8:c4:c1:e7:49:6e:b1:00:4f:4f:e5:
a9:c2:bf:23:dc:c0:c9:69:1f:37:cd:be:8a:97:a7:
30:a4:c0:41:83:29:95:bb:d3:a3:34:b7:20:7a:3c:
f6:2f:35:64:f4:e6:9b:2d:27:ba:7c:a9:60:00:91:
20:0a:6f:5b:c0:8e:55:32:be:32:70:da:aa:f6:2e:
b0:55:64:9b:c9:5f:73:9d:4a:ca:a3:1d:f2:99:bf:
b8:cd:86:7b:f7:8f:18:ef:0c:e2:32:e6:88:8e:20:
4c:bb:b0:eb:06:d7:86:28:fb:d4:28:da:e7:cc:f8:
6d:5e:41:3f:1d:59:29:52:06:33:83:f7:d7:d5:94:
92:34:88:78:1c:98:c7:71:99:0f:5e:81:4b:16:b4:
dc:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:BD:44:B4:B3:93:A2:00:EF:41:BA:0C:CB:9C:DC:8A:84:34:36:42
X509v3 Authority Key Identifier:
keyid:08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:ce:3d:c9:be:c3:b6:7d:d9:83:37:32:fd:20:05:c6:c0:e5:
94:e3:f3:31:16:29:df:2d:41:2b:14:41:4d:80:f7:18:af:ea:
04:21:4a:8d:1c:1b:3a:47:77:a6:d9:22:55:72:a1:16:8c:75:
90:06:7f:bd:63:d3:a5:f2:a3:5f:5a:7d:ad:6f:0b:ad:a6:ae:
f9:f3:96:60:18:e2:77:ec:44:0b:8f:d8:0d:b5:bd:b7:ef:70:
f5:22:15:c1:7f:20:18:9a:b0:4b:5f:e2:6f:60:45:dd:ce:9d:
fc:38:20:16:24:a8:2e:dc:e0:05:89:dd:76:d3:d5:94:ee:80:
4b:92:96:a9:1f:3d:6e:15:31:05:38:4d:ba:3d:72:9a:d8:16:
cf:da:3a:6c:64:3c:0c:9c:0d:42:e4:d7:55:85:28:84:2d:da:
1c:7d:77:7a:93:a0:c6:e8:6c:00:0b:65:20:6d:d7:1d:10:28:
39:59:8a:f2:36:a6:be:57:39:ac:e8:51:95:5b:de:2b:08:c5:
db:9e:86:4f:9a:34:09:86:30:bf:98:f2:df:3a:ea:bf:37:f3:
29:27:69:8b:ed:9c:5f:e6:f9:eb:8f:4c:2d:9b:d9:52:08:20:
72:37:c7:45:f4:b5:f6:00:b2:d9:86:25:4e:c8:54:d2:ed:89:
f2:24:d0:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 21:53:39 2025 by rpki-client