Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
File: pVB1uOQuRRTvSdP-ovGHJk50-y4.mft (raw, json)
Hash identifier: wwDMJnn4RxTs7HKcKY4yr7CfTOt1GQTwzozdqPC5GqU=
Subject key identifier: 25:BA:C3:A0:28:CC:ED:47:A0:44:2B:42:18:34:85:E9:14:E0:70:DE
Authority key identifier: A5:50:75:B8:E4:2E:45:14:EF:49:D3:FE:A2:F1:87:26:4E:74:FB:2E
Certificate issuer: /CN=a55075b8e42e4514ef49d3fea2f187264e74fb2e
Certificate serial: 019676B13F63400A29CCF8B181BB65B96017
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
Manifest number: 01AA
Signing time: Sun 27 Apr 2025 10:00:49 +0000
Manifest this update: Sun 27 Apr 2025 10:00:49 +0000
Manifest next update: Mon 28 Apr 2025 10:00:49 +0000
Files and hashes: 1: AHyerdr5uxL6xuyGfsHFNBv_XjU.roa (hash: /uUPID3475V6+DCQHcFaqhePNwogod/B8RgCIUOzHrI=)
2: pVB1uOQuRRTvSdP-ovGHJk50-y4.crl (hash: fZjSZYAWTOGyD+YUtuh5Z8L+daI/+MIKDITNSIgvl5o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:b1:3f:63:40:0a:29:cc:f8:b1:81:bb:65:b9:60:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a55075b8e42e4514ef49d3fea2f187264e74fb2e
Validity
Not Before: Apr 27 10:00:49 2025 GMT
Not After : Apr 28 10:00:49 2025 GMT
Subject: CN=25bac3a028cced47a0442b42183485e914e070de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:36:8d:13:89:70:64:4a:0c:81:50:71:ea:aa:
0d:05:31:18:1f:1a:ad:b8:6e:4f:5c:95:78:08:be:
e0:52:f2:76:f5:3a:7b:20:0c:8d:7e:cb:28:e2:93:
af:1b:53:0b:93:45:bc:04:e8:2d:e4:ed:a3:9c:6f:
07:7f:25:b9:af:9f:c4:61:24:e1:50:cd:7d:a5:e3:
a6:82:0a:9a:f9:8e:c5:af:0e:0a:c6:a5:5d:62:f2:
90:fb:c7:dd:ad:cc:97:29:93:b0:b5:39:5e:34:cd:
7c:6d:50:ee:93:f1:78:95:23:80:d5:ab:19:4d:99:
85:ba:ab:b3:72:cd:19:b6:73:d8:4c:db:f1:a1:5a:
7f:07:2c:89:cc:d0:3f:6d:b4:6b:06:40:78:c2:81:
33:46:14:03:6e:69:55:49:92:27:41:46:33:41:2a:
89:98:fa:b7:8a:b9:e6:63:f3:dd:19:06:50:4c:a5:
dc:3b:7b:51:17:de:a9:7e:d3:0c:c1:d7:0a:12:3b:
a0:24:f2:70:ce:8c:59:b5:a2:02:59:fb:e6:72:b3:
ae:7a:0e:ef:7e:d0:0e:84:cd:9f:31:cb:ad:49:1d:
9a:70:3d:db:5f:02:28:09:54:2e:01:12:55:1c:59:
3f:8e:23:4f:ea:e4:22:6b:6b:07:58:94:fb:71:88:
64:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:BA:C3:A0:28:CC:ED:47:A0:44:2B:42:18:34:85:E9:14:E0:70:DE
X509v3 Authority Key Identifier:
keyid:A5:50:75:B8:E4:2E:45:14:EF:49:D3:FE:A2:F1:87:26:4E:74:FB:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pVB1uOQuRRTvSdP-ovGHJk50-y4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/9b1f95-3b18-4812-924e-7bfda62544ce/1/pVB1uOQuRRTvSdP-ovGHJk50-y4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:2c:d6:07:db:e3:40:cf:18:f8:72:a7:e1:af:d8:9f:13:08:
71:88:19:a5:26:57:d1:f8:d9:f4:ac:a9:43:4a:91:b4:8e:3e:
50:77:10:e9:e9:eb:95:1d:24:ba:c9:de:2a:d2:d7:c4:1b:ed:
52:5f:03:7a:e7:cc:ae:da:cb:d2:d9:17:4d:a1:ec:05:bd:52:
b3:28:52:df:d4:13:d4:ec:fe:46:91:1a:04:f7:38:46:5b:59:
61:a3:a9:2c:37:0a:f6:92:38:c6:ec:cb:91:06:f1:6d:8f:aa:
65:50:85:2c:b1:96:5f:05:76:2b:17:a6:9f:6d:77:6a:07:c8:
8b:6f:4d:3a:cd:ff:ea:08:df:7f:bb:7f:7d:40:40:f0:af:10:
15:5d:02:26:e9:e6:1c:51:ca:a7:44:d6:e8:85:54:25:b4:de:
af:9c:59:1a:a4:74:ca:25:a9:be:99:5e:9e:de:f2:98:1c:e2:
89:7e:64:ce:88:ef:eb:a0:53:59:10:fd:de:f1:9e:39:ec:18:
78:c4:68:fc:1f:0e:d0:dc:2b:47:45:9b:0c:32:7a:b8:be:23:
36:9d:7e:53:27:52:29:02:ef:7a:72:ac:44:ea:28:92:a1:83:
6f:f8:52:de:3c:8a:78:66:7c:de:d7:64:39:83:f6:c8:28:8f:
09:4b:d9:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 14:19:01 2025 by rpki-client