Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
File: 20IFnOKR1Jpmkgcxx2faVj7yESQ.mft (raw, json)
Hash identifier: 1qJfyM2eF6yDXp9t/5TzHygQWCXiC7M202LOAp/WS/k=
Subject key identifier: D0:4E:3B:02:10:B7:E6:67:7A:08:F4:34:C0:AF:20:9E:28:23:CF:0F
Authority key identifier: DB:42:05:9C:E2:91:D4:9A:66:92:07:31:C7:67:DA:56:3E:F2:11:24
Certificate issuer: /CN=db42059ce291d49a66920731c767da563ef21124
Certificate serial: 01968DA683C561C14060218461E0FB318813
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
Manifest number: 0817
Signing time: Thu 01 May 2025 21:00:22 +0000
Manifest this update: Thu 01 May 2025 21:00:22 +0000
Manifest next update: Fri 02 May 2025 21:00:22 +0000
Files and hashes: 1: 20IFnOKR1Jpmkgcxx2faVj7yESQ.crl (hash: hQaMdwk21VT7hsropeLfTNg5pVGJ++jo4TQHsTqR2+E=)
2: 4Eso2GRh3TFlocCc5lcI1-kD4Pk.roa (hash: ZZWcQEmA2vmSeltVrHKBZfPJ+X7E/tLB/wKbTZ0f8BU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 19:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8d:a6:83:c5:61:c1:40:60:21:84:61:e0:fb:31:88:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db42059ce291d49a66920731c767da563ef21124
Validity
Not Before: May 1 21:00:22 2025 GMT
Not After : May 2 21:00:22 2025 GMT
Subject: CN=d04e3b0210b7e6677a08f434c0af209e2823cf0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9d:1e:c2:f3:e1:90:ad:e8:8f:9a:98:0e:d3:
cb:9b:27:9d:c6:05:10:43:31:3d:ca:c3:aa:fe:ce:
d9:e5:b6:00:43:c8:53:0f:a8:db:3f:90:01:93:be:
a3:84:e3:6b:d4:77:2e:c3:50:9c:72:86:9b:06:ef:
e2:89:d0:68:cf:7a:88:c5:e9:f9:1e:fa:de:7c:59:
47:65:50:90:c7:ae:29:16:db:59:7d:91:18:09:01:
f0:a8:be:83:bb:92:4f:ff:f5:4e:24:8a:d9:3c:6d:
db:a8:e3:e3:02:9d:b1:26:98:ec:0a:b2:1a:9e:d2:
79:86:31:6f:e3:16:c4:ae:6a:1d:7b:65:3e:38:6c:
9f:ba:1a:c4:ea:fd:c9:05:96:9e:fc:41:e0:a6:16:
01:e8:d2:33:e8:51:40:3f:7c:c6:19:b3:d3:4d:76:
e2:5a:c9:38:da:43:87:7c:55:01:4e:8c:33:85:74:
11:17:69:b5:2c:f6:d7:40:6b:bb:4d:c1:6e:36:74:
11:e0:09:47:19:50:26:49:94:41:6e:7e:98:86:f7:
ce:29:bd:c0:7f:96:a7:d8:61:97:15:d9:d0:fa:e4:
fa:2d:17:ce:a3:8d:a4:f4:f3:d0:f1:8c:3e:87:48:
b5:b6:94:62:5a:17:92:52:38:ab:be:bd:0b:81:d2:
4c:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:4E:3B:02:10:B7:E6:67:7A:08:F4:34:C0:AF:20:9E:28:23:CF:0F
X509v3 Authority Key Identifier:
keyid:DB:42:05:9C:E2:91:D4:9A:66:92:07:31:C7:67:DA:56:3E:F2:11:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20IFnOKR1Jpmkgcxx2faVj7yESQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e3f2a-1440-4084-84c2-9312d087dfca/1/20IFnOKR1Jpmkgcxx2faVj7yESQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:7a:96:ee:7d:91:72:64:73:94:3b:0f:f5:48:53:d9:32:d6:
10:6c:c1:46:41:9d:b1:a2:cc:95:27:fd:73:b6:12:67:f5:6a:
2f:c7:02:5b:cf:52:f9:c8:8c:44:00:aa:e8:02:b2:4f:c2:ef:
c4:34:d2:a8:85:bf:5b:22:55:7d:6c:ec:53:be:4c:3c:c9:43:
67:30:24:d6:5e:2f:41:72:f9:b3:d4:f2:eb:82:31:17:e3:24:
1f:7a:75:d4:2d:82:09:10:8d:a3:b0:d0:7e:ad:64:75:9f:cb:
1e:ca:a7:12:38:98:8c:a1:5a:00:4d:d0:85:5b:1b:64:8d:5c:
97:54:85:24:19:b4:38:c8:a2:c1:e4:2c:51:9b:52:c7:1f:0a:
00:f8:6b:f8:24:61:08:8d:ca:64:16:51:a1:ec:f4:73:7b:e5:
81:9c:78:2e:11:a8:e6:ac:81:0c:49:22:4d:6c:20:01:16:54:
15:ea:28:e8:ce:25:8d:69:78:c8:df:df:5f:9e:19:9b:54:1c:
a3:aa:64:c0:b8:ca:f8:ef:29:f6:1c:ad:19:04:91:14:05:e5:
f1:53:55:75:8d:43:c7:e3:5d:c0:5e:83:0d:08:83:b4:01:46:
01:ed:43:61:88:fb:7f:09:fc:8f:90:d3:ad:b4:7c:55:eb:3e:
5e:23:4f:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 05:07:02 2025 by rpki-client