Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.mft
File: 4awDIrPqtlcuzioKxavxZKW7_yA.mft (raw, json)
Hash identifier: LFQNFflMWgaQxQu6nhrw99TsLW7Q8+rmzExOTvTpVz4=
Subject key identifier: DA:89:82:AE:88:AD:52:C5:92:56:61:DA:34:96:2C:20:C9:C7:EB:2C
Authority key identifier: E1:AC:03:22:B3:EA:B6:57:2E:CE:2A:0A:C5:AB:F1:64:A5:BB:FF:20
Certificate issuer: /CN=e1ac0322b3eab6572ece2a0ac5abf164a5bbff20
Certificate serial: 01968ADC90E529129A47AB96751F2D8E3B22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4awDIrPqtlcuzioKxavxZKW7_yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.mft
Manifest number: 1521
Signing time: Thu 01 May 2025 08:00:32 +0000
Manifest this update: Thu 01 May 2025 08:00:32 +0000
Manifest next update: Fri 02 May 2025 08:00:32 +0000
Files and hashes: 1: 4awDIrPqtlcuzioKxavxZKW7_yA.crl (hash: X0vmPQF4/ik4a0ZSnX0Cbe5dif7K7abds52c6JeQYEA=)
2: 6L9DAlbkXK81Q7l3f78qPgHOMdg.roa (hash: H7lXA9IHNO8CGxsceOfFah+3Pwu6dBzOzorUprp44zU=)
3: AoQHR-c0TNu8hCvrBSny9rtvc-s.roa (hash: OjMzYAMFYdPVuu7HxYZKXpI6mzGVW1BBR3UyiRLx1pA=)
4: OVTjGADJ7YYJwQ0oJOwTN2X0vSY.roa (hash: qsBTTkXpQxhgbXJV5zUDTdGyL3Kcpnnbr12OpzsF9V0=)
5: Tuxvba9WYfbnEvHd3kzqapBEZ_Y.roa (hash: k++irbF5tx+uarYSpIOQsyD8NQHcKQnnHY3y6c8vNEg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4awDIrPqtlcuzioKxavxZKW7_yA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8a:dc:90:e5:29:12:9a:47:ab:96:75:1f:2d:8e:3b:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1ac0322b3eab6572ece2a0ac5abf164a5bbff20
Validity
Not Before: May 1 08:00:32 2025 GMT
Not After : May 2 08:00:32 2025 GMT
Subject: CN=da8982ae88ad52c5925661da34962c20c9c7eb2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f0:dd:95:41:9e:1f:b5:c2:f8:af:2d:ec:99:
08:08:c0:37:bc:c7:d7:95:48:a2:6e:43:13:d6:cb:
d9:b8:7d:2f:f7:b8:11:ff:b2:b4:10:17:6b:5c:53:
63:d2:b3:c2:b3:04:49:22:bc:01:25:f7:52:57:d5:
85:2e:7c:6c:10:7d:68:57:d8:ad:2d:f8:ef:f8:ea:
9b:2e:2a:96:12:84:34:4a:e5:34:e3:63:65:3b:a9:
d7:7c:59:ec:a3:2d:d3:1a:cb:58:84:35:ed:e7:bd:
92:99:39:66:d5:29:d5:60:18:13:29:31:4a:bf:4c:
a9:f1:fc:8c:69:47:f7:70:0a:4a:d5:df:d4:05:93:
53:05:84:0d:b2:33:d6:53:bc:8f:e4:d8:da:00:4b:
1d:b5:d4:62:ac:45:fa:9d:1d:ff:7c:53:4f:22:20:
d4:11:a4:d5:85:44:ec:5c:31:a6:23:c7:ab:b7:c2:
a1:15:93:63:de:48:ef:cc:e6:5c:bd:88:45:d0:ce:
ca:21:f5:44:13:c4:88:e3:15:98:c5:7c:77:55:d5:
a6:8e:b6:b5:fd:48:e2:a0:a8:50:88:48:5d:7e:e3:
6a:ec:c8:c0:c9:b9:50:a2:2e:26:32:6d:fc:ea:c4:
af:73:ba:1a:be:4b:2b:55:d6:55:25:d5:18:32:b9:
aa:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:89:82:AE:88:AD:52:C5:92:56:61:DA:34:96:2C:20:C9:C7:EB:2C
X509v3 Authority Key Identifier:
keyid:E1:AC:03:22:B3:EA:B6:57:2E:CE:2A:0A:C5:AB:F1:64:A5:BB:FF:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4awDIrPqtlcuzioKxavxZKW7_yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/ff0036-8313-4b3d-ad7f-8d81fdc6f170/1/4awDIrPqtlcuzioKxavxZKW7_yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:72:13:6b:b5:75:86:35:f7:de:af:26:52:6b:77:cf:ec:30:
91:87:30:da:1d:ac:35:30:5a:97:eb:de:cc:36:e1:92:84:45:
3b:b9:a3:85:ad:eb:47:11:21:ab:3d:bc:00:43:08:bf:ed:23:
ec:b0:21:ee:0d:95:4a:73:05:83:30:bd:03:d7:49:35:cf:a1:
57:cf:e8:73:d8:ca:74:65:7f:8c:68:21:c9:c2:70:d7:f7:1b:
9c:91:c1:6e:28:a4:6b:35:b4:25:a3:bb:6f:72:b6:fc:59:12:
37:e5:f2:50:35:54:a2:c1:1e:61:41:05:ac:cb:25:c9:a3:31:
c6:22:99:6b:8f:45:85:53:53:38:e4:62:9a:bf:ec:f8:3d:45:
11:06:05:29:8c:aa:f1:6b:fa:07:75:4f:67:2a:af:e5:23:0f:
45:bf:93:d7:01:7d:84:af:5c:20:34:09:57:0d:55:37:49:38:
2d:7c:cf:35:ca:41:ea:f7:c8:db:17:5d:dd:a2:e4:15:81:70:
66:18:fa:e3:bc:17:3e:e2:5a:a4:5a:0f:bf:01:10:00:08:fe:
c3:7f:10:b2:af:1b:74:0e:ba:fe:8d:1d:13:2b:e0:fa:2e:84:
61:0b:04:1f:f3:d7:1c:18:6e:0e:24:c1:40:22:e0:36:e3:ba:
5c:58:1b:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 12:19:08 2025 by rpki-client