Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft
File: E9g7Il3TOGDFHcRKqI218D3BWnQ.mft (raw, json)
Hash identifier: kBtFbS6RlqQ/NpVSbesPp5Ym1dCWdF93ymt1RIhx2tc=
Subject key identifier: 37:35:C2:B6:74:08:BF:83:4A:89:62:21:FD:C5:7A:17:FE:D4:8D:9A
Authority key identifier: 13:D8:3B:22:5D:D3:38:60:C5:1D:C4:4A:A8:8D:B5:F0:3D:C1:5A:74
Certificate issuer: /CN=13d83b225dd33860c51dc44aa88db5f03dc15a74
Certificate serial: 01967FEAEF4871A81EF98279024553ADF071
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E9g7Il3TOGDFHcRKqI218D3BWnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft
Manifest number: 14A5
Signing time: Tue 29 Apr 2025 05:00:25 +0000
Manifest this update: Tue 29 Apr 2025 05:00:25 +0000
Manifest next update: Wed 30 Apr 2025 05:00:25 +0000
Files and hashes: 1: 9htWy01pg2D2zYDPH366mUte-18.roa (hash: EzJGaZ3hn2rEMiPwCBKqVw/ZKa/ezLWPSIlGniopSlk=)
2: E9g7Il3TOGDFHcRKqI218D3BWnQ.crl (hash: 7ppIoktvx3vsdVco8ay9QDS33oeoGfJTJoFbkGZsEEE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/E9g7Il3TOGDFHcRKqI218D3BWnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:ea:ef:48:71:a8:1e:f9:82:79:02:45:53:ad:f0:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13d83b225dd33860c51dc44aa88db5f03dc15a74
Validity
Not Before: Apr 29 05:00:25 2025 GMT
Not After : Apr 30 05:00:25 2025 GMT
Subject: CN=3735c2b67408bf834a896221fdc57a17fed48d9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:0f:9e:d1:e3:75:79:8f:4c:d7:3f:aa:fd:47:
a5:a2:7c:c0:2b:fc:db:66:79:4d:18:b0:1f:de:92:
a0:ca:7c:0d:93:d3:2c:75:19:cc:16:e5:eb:eb:8d:
f4:d8:10:54:d7:5b:07:0a:70:8d:13:90:76:b5:15:
7e:88:c2:19:2a:3f:a9:ae:5a:1f:16:4e:ce:fa:2c:
32:a4:0c:fb:73:86:cb:23:b9:34:76:ad:03:d4:15:
9a:2d:84:3e:4c:fc:c2:0d:14:cd:40:3d:0b:fa:2a:
90:88:bc:db:9d:4b:14:b5:5f:cd:50:6c:c2:a4:57:
f2:64:33:8c:26:ec:5d:78:46:f6:5c:d0:e3:f8:5e:
67:03:9c:64:7b:8d:3e:9d:14:75:dd:fc:98:50:ab:
a6:1b:9a:52:71:52:19:4a:3e:d2:e9:b7:e9:c0:2e:
1a:7e:ee:52:14:70:7c:67:2a:71:f5:46:47:a9:0d:
e9:c4:94:f8:50:28:9d:51:a2:4a:ea:09:e0:57:b8:
69:0f:92:68:14:13:8c:9b:53:d8:3b:0a:35:5a:59:
91:44:f6:c4:11:96:07:a4:da:83:a1:33:e1:9e:d5:
8e:7e:53:a8:77:b5:bc:e2:e7:56:34:1d:1f:ee:b9:
90:9a:99:e3:a7:b8:18:24:ac:21:8a:50:93:83:24:
81:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:35:C2:B6:74:08:BF:83:4A:89:62:21:FD:C5:7A:17:FE:D4:8D:9A
X509v3 Authority Key Identifier:
keyid:13:D8:3B:22:5D:D3:38:60:C5:1D:C4:4A:A8:8D:B5:F0:3D:C1:5A:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E9g7Il3TOGDFHcRKqI218D3BWnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/f2111a-3f47-4ff0-a51d-b251377add86/1/E9g7Il3TOGDFHcRKqI218D3BWnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:52:1c:91:7a:16:5c:ec:e9:44:a5:71:e7:00:9d:19:f8:bf:
be:42:d9:8c:a4:e6:81:28:e2:37:4d:cb:f9:01:61:d8:64:16:
a8:4c:83:da:99:7d:7a:94:7a:2f:3a:4e:c8:b1:bf:43:08:ba:
f3:e1:00:13:46:e5:a2:5a:67:a3:32:9a:36:23:ba:4a:f3:86:
5d:a4:26:9e:95:de:3f:54:8b:32:27:9d:40:7a:1b:84:c0:3c:
33:72:8d:13:87:b6:48:65:5f:03:ea:e7:4e:54:41:1b:f6:4a:
dd:23:77:fc:17:73:1a:9b:b6:a0:3f:fd:61:14:d5:5d:3e:47:
e2:4c:bd:c4:9f:f5:74:9a:c1:b1:16:23:87:27:07:79:7b:a0:
dd:95:e9:1e:90:9a:f5:22:b0:50:ac:80:94:da:26:a4:5d:4d:
21:07:8f:ab:f6:20:fb:da:39:45:60:d7:06:d6:e2:9f:7b:ab:
a3:21:46:6c:1f:37:80:b6:32:19:e6:62:20:be:9c:e9:36:15:
25:cb:a7:a0:31:11:50:ca:92:90:5d:a0:84:36:62:7b:45:6a:
fd:be:9f:dd:47:1a:02:53:5c:65:ba:2b:c1:0f:9d:ae:9e:95:
97:f7:e6:48:d0:8c:8c:a8:30:aa:fe:ec:29:d9:fa:0f:8b:13:
be:22:76:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 07:53:05 2025 by rpki-client