Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft
File: bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft (raw, json)
Hash identifier: XBD7tEEv0Z5qUvY9rVjnb+ZENEaZ+cLZEIp6+PQ9Re4=
Subject key identifier: 70:C6:65:31:6A:3B:61:2B:56:E0:C1:0D:99:8A:5B:B7:84:29:27:74
Authority key identifier: 6C:DA:15:00:F5:C9:63:ED:23:4F:D9:48:59:F2:3B:32:F4:88:5D:FC
Certificate issuer: /CN=6cda1500f5c963ed234fd94859f23b32f4885dfc
Certificate serial: 019676B0F9D7BB21ABF62E640A1A829809C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNoVAPXJY-0jT9lIWfI7MvSIXfw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft
Manifest number: 12EE
Signing time: Sun 27 Apr 2025 10:00:31 +0000
Manifest this update: Sun 27 Apr 2025 10:00:31 +0000
Manifest next update: Mon 28 Apr 2025 10:00:31 +0000
Files and hashes: 1: VL7EtVPW-Ba0tPYDXOg-sXCbn4U.roa (hash: gs/UbUcaVfJny1jbjzMdFc3Au+82Qsl/IH1AWl7JplE=)
2: bNoVAPXJY-0jT9lIWfI7MvSIXfw.crl (hash: 8F8Hh140UPJDOWDwjN3/VM5nmPSZRv86kQD5yC2Hvms=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft
rsync://rpki.ripe.net/repository/DEFAULT/bNoVAPXJY-0jT9lIWfI7MvSIXfw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:b0:f9:d7:bb:21:ab:f6:2e:64:0a:1a:82:98:09:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cda1500f5c963ed234fd94859f23b32f4885dfc
Validity
Not Before: Apr 27 10:00:31 2025 GMT
Not After : Apr 28 10:00:31 2025 GMT
Subject: CN=70c665316a3b612b56e0c10d998a5bb784292774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0e:42:1b:f1:c9:15:ae:c8:11:63:06:e4:69:
d6:d1:ab:10:f8:84:7f:f8:06:d4:b6:d4:70:17:73:
bc:39:2a:04:de:d6:a8:4b:9c:29:88:82:73:43:5f:
e9:46:be:b5:47:c4:3a:4e:02:75:a5:12:46:11:51:
ba:19:d7:4b:7c:75:da:e0:60:e6:67:e6:a3:be:52:
36:c6:5f:e8:ff:9f:a0:8a:44:c9:ec:ab:8f:bf:4a:
c4:ff:19:4a:d1:1f:3e:4e:82:10:1a:89:78:43:e4:
dc:bf:65:de:e3:27:d4:e5:07:fd:ea:11:57:28:5b:
5b:26:26:b1:21:8e:27:b8:82:23:5b:a8:7f:85:2c:
13:69:d2:88:f5:24:37:54:c5:f3:a9:3f:cb:f1:b4:
20:26:1e:8b:37:df:6d:fb:8c:45:29:af:6d:94:74:
15:3c:58:df:08:cb:3a:17:3d:4b:f5:df:c9:d0:7c:
fe:71:9e:6d:4b:27:a9:aa:c1:62:3a:5e:2c:cb:d7:
a9:b9:f0:d6:61:58:f2:8c:e1:35:82:4d:93:0f:88:
96:99:85:0a:ac:15:3d:23:6e:dc:f4:b4:de:e7:fd:
5b:40:2c:e8:cc:99:90:eb:ad:48:40:67:34:b2:14:
38:dd:8c:54:cf:24:c0:5d:a5:73:86:13:0e:95:5e:
ac:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:C6:65:31:6A:3B:61:2B:56:E0:C1:0D:99:8A:5B:B7:84:29:27:74
X509v3 Authority Key Identifier:
keyid:6C:DA:15:00:F5:C9:63:ED:23:4F:D9:48:59:F2:3B:32:F4:88:5D:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNoVAPXJY-0jT9lIWfI7MvSIXfw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/c4a45f-4213-4f01-98f6-98eb53b9502a/1/bNoVAPXJY-0jT9lIWfI7MvSIXfw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:79:36:d4:66:1a:b2:b8:3c:f7:67:6a:9c:68:4f:68:1a:54:
51:fa:06:3e:03:f1:ee:b4:f0:38:33:2e:bd:32:df:98:a5:33:
53:fb:d7:27:f3:49:08:7f:03:bc:87:13:a5:88:ae:51:c8:45:
fc:52:39:94:54:e0:33:c0:fe:ef:f4:3a:61:f1:99:19:c8:99:
7c:54:ea:21:b8:5c:d7:26:65:07:0c:99:f8:30:e8:11:71:bc:
db:1f:01:f1:44:36:9e:63:80:14:5a:b4:07:82:f2:a3:e3:ec:
de:eb:d7:47:95:21:d6:b8:df:70:ce:52:66:0e:00:fb:7a:8d:
8c:57:18:70:5f:69:51:cd:b0:68:7e:b5:28:c5:0a:4c:c5:06:
1c:11:2c:69:a7:d2:60:95:95:1b:2a:52:b2:8e:3c:0e:e4:00:
3f:5f:d5:18:25:87:78:83:13:ca:10:a2:78:ee:8e:42:85:5a:
89:dc:0a:ba:9a:23:6e:76:b9:f0:f1:36:8d:ec:28:53:37:b6:
74:fd:c8:51:49:71:7a:52:97:71:52:ac:81:64:1a:bd:88:71:
85:8d:f7:c2:43:de:d7:b4:2b:dc:7c:b4:ba:ab:dd:34:f3:a6:
91:fb:c8:12:7e:dc:a1:8d:6f:0e:66:44:e7:a0:b3:77:d0:b3:
84:01:34:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:53:40 2025 by rpki-client