Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft
File: 2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft (raw, json)
Hash identifier: i0/J3J7G2KdqXdXvwUHmn0QkQE3p2cZcqXA2jY2eLgo=
Subject key identifier: A8:26:AA:14:7E:42:69:1D:4A:78:EF:61:32:A0:F9:7D:AF:44:3D:D6
Authority key identifier: D8:81:E5:77:7C:CE:99:0C:0B:2B:0F:4C:29:CC:8D:2C:F9:AF:E8:3B
Certificate issuer: /CN=d881e5777cce990c0b2b0f4c29cc8d2cf9afe83b
Certificate serial: 01967F7CF4BE91344B819F9C80D92402DDE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2IHld3zOmQwLKw9MKcyNLPmv6Ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft
Manifest number: 14A5
Signing time: Tue 29 Apr 2025 03:00:17 +0000
Manifest this update: Tue 29 Apr 2025 03:00:17 +0000
Manifest next update: Wed 30 Apr 2025 03:00:17 +0000
Files and hashes: 1: 2IHld3zOmQwLKw9MKcyNLPmv6Ds.crl (hash: Bx1nj1DPcAF2jodybCO1PCgHVMKJOS2Cj6ijhvzSZ3Q=)
2: gd86nab0qf28eq3d5pPFq5e9rZo.roa (hash: OleM9BzJjHgCcSMlxVVC1tH0LyJmqbhh/CO/g3APccs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft
rsync://rpki.ripe.net/repository/DEFAULT/2IHld3zOmQwLKw9MKcyNLPmv6Ds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:7c:f4:be:91:34:4b:81:9f:9c:80:d9:24:02:dd:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d881e5777cce990c0b2b0f4c29cc8d2cf9afe83b
Validity
Not Before: Apr 29 03:00:17 2025 GMT
Not After : Apr 30 03:00:17 2025 GMT
Subject: CN=a826aa147e42691d4a78ef6132a0f97daf443dd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:03:86:3c:4f:c4:04:64:b9:8b:22:95:b8:55:
9e:07:fb:91:83:9a:44:8b:fb:67:d4:d0:cc:9a:48:
6b:bb:40:21:da:50:87:7c:72:93:cd:99:3a:74:c5:
5c:8e:1a:68:fe:e7:e0:36:70:0b:7c:8f:48:65:d5:
3d:d1:23:73:d1:c4:e2:e2:2a:de:45:6f:a2:eb:cd:
ea:fc:4f:ca:05:f0:dd:37:03:05:cb:06:4d:17:18:
f1:77:97:35:3f:9c:10:ad:0d:e2:c5:24:de:c1:a6:
63:c5:98:25:8d:24:14:d9:5f:2b:f1:f7:b6:ba:c9:
c6:4e:d5:cd:df:0e:34:f2:ee:c5:3f:29:86:c2:78:
e3:eb:50:4f:12:e2:f6:eb:83:48:bc:49:0a:a6:17:
b4:3a:e3:af:bf:2a:1c:54:99:14:de:7c:a4:a9:56:
24:cc:a4:30:7e:9c:30:e1:f5:ac:87:d7:b0:96:a7:
79:9a:bd:61:44:c8:e2:2f:55:ef:8c:5c:cb:54:71:
e6:a2:37:9c:89:3a:3c:2c:1b:36:3b:f3:eb:ad:a9:
a5:c3:19:b6:fe:2b:df:e5:a7:34:ef:69:91:81:d2:
a8:42:ae:7d:74:10:d8:b6:d6:32:d5:2b:2e:46:bf:
cb:0f:db:eb:df:c9:77:73:3f:bd:91:52:7d:a5:08:
47:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:26:AA:14:7E:42:69:1D:4A:78:EF:61:32:A0:F9:7D:AF:44:3D:D6
X509v3 Authority Key Identifier:
keyid:D8:81:E5:77:7C:CE:99:0C:0B:2B:0F:4C:29:CC:8D:2C:F9:AF:E8:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2IHld3zOmQwLKw9MKcyNLPmv6Ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3c95f3-dc3d-48eb-b6d7-d835de08bcf6/1/2IHld3zOmQwLKw9MKcyNLPmv6Ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:be:92:a6:24:3a:3a:34:46:39:91:1a:46:a8:9f:4b:a4:fe:
b0:e6:59:18:f4:17:b0:d2:6c:a2:4c:0d:bd:b2:da:2f:e0:c4:
91:ac:fd:d2:b1:60:1a:ce:96:48:64:9b:88:17:60:f5:4a:96:
c2:37:83:b0:34:55:2c:ed:6b:5a:9a:c4:39:14:00:ce:4d:e5:
82:5a:e4:68:95:90:2d:14:d9:c7:3c:bf:ad:fa:2a:0f:44:5d:
d7:44:92:6c:8c:4b:13:d5:b7:fa:87:7d:c8:c5:ea:1b:f3:a4:
b5:38:2c:e0:67:f0:29:52:93:cd:39:23:a1:c0:1b:a7:5b:be:
61:cf:18:9b:87:7e:b8:cb:4a:20:09:d0:ba:b0:ce:bb:a2:66:
17:9e:4f:42:29:c4:93:79:41:34:e2:79:9d:0a:87:ca:04:7c:
e2:1e:6f:3d:0a:71:85:bd:68:3a:79:d0:e1:7d:53:68:23:88:
20:82:72:41:24:4e:1f:aa:9b:63:c8:69:77:83:5f:d6:d9:92:
6b:f4:7a:26:9a:c8:4a:08:93:db:44:77:3d:75:8b:54:a8:68:
79:e2:dc:fb:29:19:db:3b:10:95:dc:bb:b1:d7:d6:d5:b0:2b:
dd:86:39:08:b6:e1:cd:b7:ec:e0:c8:2c:49:7b:9e:4e:f4:8d:
06:73:73:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 09:16:15 2025 by rpki-client