Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
File: RdGncWAlFxEzoyAslGKg6r1mBoI.mft (raw, json)
Hash identifier: VzWrqEPqX/v4DhtsEvNoyU0lAHq4Umm11lbg8AhR2e4=
Subject key identifier: B8:F2:92:4A:FC:E9:A1:53:6F:D9:38:76:8E:46:5D:C5:47:76:90:E6
Authority key identifier: 45:D1:A7:71:60:25:17:11:33:A3:20:2C:94:62:A0:EA:BD:66:06:82
Certificate issuer: /CN=45d1a7716025171133a3202c9462a0eabd660682
Certificate serial: 01967AC4BC51DA81B8C7A0E51474D9B69D5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
Manifest number: 04A6
Signing time: Mon 28 Apr 2025 05:00:35 +0000
Manifest this update: Mon 28 Apr 2025 05:00:35 +0000
Manifest next update: Tue 29 Apr 2025 05:00:35 +0000
Files and hashes: 1: RdGncWAlFxEzoyAslGKg6r1mBoI.crl (hash: l4tTl+s2v4EORozTb0HQuK2Jnq1XyVGICCigy5qfHaA=)
2: p6pII2yeX9CFzHUBZ-7ECA5XoLc.roa (hash: a0i/QIPJclzVoZAHggGCZw2DH9on4V8xPPUo2d8z17I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 05:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7a:c4:bc:51:da:81:b8:c7:a0:e5:14:74:d9:b6:9d:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45d1a7716025171133a3202c9462a0eabd660682
Validity
Not Before: Apr 28 05:00:35 2025 GMT
Not After : Apr 29 05:00:35 2025 GMT
Subject: CN=b8f2924afce9a1536fd938768e465dc5477690e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:53:62:c7:84:84:f7:4a:f1:ab:47:92:73:61:
97:9f:20:f2:0b:52:52:cd:9d:a2:54:c1:1f:b4:10:
16:b5:ce:91:d6:28:c6:ff:a1:3c:0b:54:4a:db:3c:
f0:23:2f:dd:15:24:57:d7:d4:8c:5d:50:e1:d0:7d:
c1:c7:21:f9:0e:57:aa:17:dd:15:3c:a6:d3:fd:83:
db:8d:cf:60:cb:29:ab:ab:9d:b3:86:a3:c6:3c:10:
7f:e8:4d:f4:05:ce:e5:24:1f:01:06:e4:d2:c5:ef:
69:e4:60:02:9b:ed:95:3a:e0:c3:94:82:6d:72:24:
ee:02:19:89:7b:3f:c8:4c:97:7c:81:fa:49:ee:ac:
51:d4:80:44:00:52:d6:af:23:76:25:7d:2b:fb:24:
e0:a5:71:09:6c:4d:f5:63:ec:e3:c1:5b:93:39:28:
ae:35:da:43:3a:78:36:bf:11:20:7b:ff:ad:c1:b7:
34:f1:52:fc:48:44:f7:4f:c2:31:96:e5:2f:32:52:
06:6c:64:7b:47:84:c6:f6:b5:b7:3f:f9:f7:2f:bc:
fd:69:56:6a:b8:49:85:7c:a9:58:b2:74:a2:7a:ae:
20:db:e1:3f:48:78:7b:77:0a:f6:d6:03:51:1b:ce:
58:d8:c7:cb:5f:ee:be:04:8b:bc:24:dd:44:89:5c:
04:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:F2:92:4A:FC:E9:A1:53:6F:D9:38:76:8E:46:5D:C5:47:76:90:E6
X509v3 Authority Key Identifier:
keyid:45:D1:A7:71:60:25:17:11:33:A3:20:2C:94:62:A0:EA:BD:66:06:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:36:64:c8:c7:e5:c6:84:a4:14:a2:32:1e:97:73:41:2f:a1:
19:f1:a9:cd:c6:4d:c7:cf:c1:c9:95:ce:3f:56:14:80:a9:be:
9c:02:cc:59:a9:c7:68:03:a8:64:34:d7:34:55:fe:91:bc:46:
05:6f:a5:ab:81:25:ed:9c:5b:3d:b0:01:d7:b8:39:ae:2e:bb:
8e:2f:d6:38:60:6c:73:5e:c5:f9:1e:31:aa:ca:f4:07:54:98:
a4:2a:14:0f:71:5a:19:15:87:74:e2:0e:75:1a:6e:4a:9c:e7:
49:50:03:f7:86:17:fa:f2:0d:e3:1d:b1:6d:25:d3:8d:48:5d:
ec:c7:c5:86:8b:c0:6f:0b:bd:e4:64:b5:09:9f:70:4b:fb:70:
bb:03:3f:81:ea:ee:d3:d6:75:aa:b4:63:6c:f2:68:63:a8:55:
c1:d6:10:df:54:76:87:31:12:cf:fd:77:16:33:56:2f:9f:92:
20:32:e6:14:43:75:01:6b:cb:31:b0:89:b4:51:b6:cb:6c:5f:
85:ab:be:43:92:df:dc:dc:af:45:f4:66:50:76:0b:ba:8a:1a:
61:39:62:db:73:61:08:c4:6d:c7:ee:15:12:cb:9b:5a:c2:8f:
23:f8:b1:98:eb:ab:ad:e4:44:ae:cd:75:12:8f:0c:40:c2:98:
af:9a:9e:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 15:21:01 2025 by rpki-client