Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
File: 2ChPGM1EYEvdbQj02HjcYUVsQP0.mft (raw, json)
Hash identifier: 0TZMytbfhQaF4xm6HDJHKbGHj2n+o6ijSsw8ebJCxdI=
Subject key identifier: E7:08:DB:0F:99:72:B5:9B:22:6F:DD:F0:93:01:13:AD:5F:39:B2:CC
Authority key identifier: D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
Certificate issuer: /CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Certificate serial: 019676E80A4116D82E7DC5351144D4A4D6EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
Manifest number: 1520
Signing time: Sun 27 Apr 2025 11:00:40 +0000
Manifest this update: Sun 27 Apr 2025 11:00:40 +0000
Manifest next update: Mon 28 Apr 2025 11:00:40 +0000
Files and hashes: 1: 2ChPGM1EYEvdbQj02HjcYUVsQP0.crl (hash: GJKGEJKthILAye0PLqXoDDpwzVKE9HznNK0o9dSdW5s=)
2: QwB_J4IBjr_kwpZ0DSZt7jLyFUw.roa (hash: xjQoVVO98cxf92eXukztlmvd0mAJHZVRoWG3GH3edIU=)
3: iO6yZ5D7of0MFaqogZYemiuZ76w.roa (hash: PHTDVbEdKwH0LDJ7ITv8L3fxTqXrLT8N8JGzjDrPDFE=)
4: noQO1tLrNCKz3bIWnBbDMmvuYLg.roa (hash: hYTtEju7KkB6LYquIBvGjeZyYymRK8/pFRz4XyGZMT8=)
5: qWeBIgMT9yofaevmnsJv-k3J7gM.roa (hash: OVmNg3h2HayVISC+svzIkwU6u8HmPx4SN/OehOmAqgY=)
6: v5y-XO_c3BUL4I2vKl0yvM3sR48.roa (hash: job18wRUBRjomyukO0QxaFg1pEdwxYB+4rsX0iFAoJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:e8:0a:41:16:d8:2e:7d:c5:35:11:44:d4:a4:d6:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Validity
Not Before: Apr 27 11:00:40 2025 GMT
Not After : Apr 28 11:00:40 2025 GMT
Subject: CN=e708db0f9972b59b226fddf0930113ad5f39b2cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:14:92:f8:cf:12:f8:8f:87:11:fc:54:4e:f2:
c0:9f:fb:59:49:f0:19:6e:05:e4:83:33:68:de:d0:
bb:db:a3:e6:66:6e:a7:95:b8:ea:64:71:8e:5f:d2:
49:71:20:f9:aa:ac:52:40:85:ba:a3:ed:d9:2d:86:
14:e5:1c:3b:d9:c5:34:82:f1:22:c8:d9:1d:63:e7:
6d:ea:58:8d:3a:c9:21:44:9f:2f:eb:93:61:9b:f2:
d5:2a:2c:0a:35:7a:67:f1:3f:53:fa:d2:3a:a8:c7:
d6:45:6d:68:b4:a4:63:01:fe:af:a6:e9:08:26:e4:
b6:b7:0c:9f:79:fd:0c:4e:93:44:90:e5:bf:20:b0:
50:0b:9c:bb:44:c2:9a:9a:2c:5a:20:96:61:9e:f4:
52:c5:66:c1:da:de:68:c8:99:ef:0b:08:78:6a:a4:
66:3f:c6:59:19:2f:54:02:4d:82:65:aa:fc:0b:0e:
3b:c4:1c:08:83:50:53:57:2f:32:41:86:69:56:49:
de:49:d3:63:6b:14:c1:8c:1d:8e:72:ed:bc:41:f4:
ee:b6:63:da:7b:03:a4:0a:08:c2:84:52:c7:9c:54:
45:52:36:95:48:09:53:39:17:0d:2f:b7:17:46:af:
d1:ab:46:dc:8a:c5:76:27:bd:a0:fd:15:d2:aa:80:
a4:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:08:DB:0F:99:72:B5:9B:22:6F:DD:F0:93:01:13:AD:5F:39:B2:CC
X509v3 Authority Key Identifier:
keyid:D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:6c:b9:93:ac:98:5c:b5:d2:88:27:c1:38:55:a5:0f:c3:de:
51:ec:ee:b4:e3:3f:de:20:db:cb:5a:29:64:11:de:78:5e:b8:
44:fb:a3:c5:5e:44:1b:45:9c:19:17:ef:86:87:d6:e0:c5:56:
ed:85:04:b5:f3:e0:44:4d:46:75:f8:6f:a8:fe:48:c1:ea:61:
f7:18:3a:72:04:91:19:eb:cc:f1:7d:5f:25:06:2b:a7:c2:46:
4b:99:3c:1f:42:c9:c6:03:21:9e:24:fc:99:48:b1:40:34:39:
7f:21:3d:e6:59:ae:6f:2d:3a:9b:fd:30:1a:54:00:78:38:f0:
42:c3:31:d6:bc:2c:8d:c0:4b:a1:b4:d1:4c:45:6b:32:8c:d7:
43:e5:fb:cf:61:96:de:f3:05:3d:74:bd:26:ca:27:07:4d:df:
bf:d8:7b:df:5c:2e:eb:b8:37:ee:74:1e:31:e8:ab:74:0d:fd:
0c:82:9a:15:55:89:56:03:56:b3:07:11:d2:57:76:7c:36:03:
16:2a:53:c3:4b:44:30:da:68:2a:c7:35:3b:08:fa:5f:23:7f:
39:29:cb:2b:22:9b:50:2a:17:77:b0:30:49:d0:4d:16:9f:f8:
52:ec:6a:6e:d5:ed:87:02:34:f4:fc:9e:99:8d:82:6d:4b:55:
b8:d8:24:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:23:42 2025 by rpki-client