Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
File: 3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft (raw, json)
Hash identifier: 72Lgti/fkb+A5+eoKxbKAXvRyz+6NJh4Fl0p0KpygiI=
Subject key identifier: CA:AA:27:5D:EF:C2:8F:CC:54:A6:14:AB:EE:6C:E0:5B:50:B1:31:44
Authority key identifier: DE:16:99:52:F9:7F:49:4C:FE:0F:6B:54:27:CA:56:E8:10:C0:5C:E0
Certificate issuer: /CN=de169952f97f494cfe0f6b5427ca56e810c05ce0
Certificate serial: 019685EDC0C962741673606BBB0CFCD6572C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
Manifest number: 14AB
Signing time: Wed 30 Apr 2025 09:01:12 +0000
Manifest this update: Wed 30 Apr 2025 09:01:12 +0000
Manifest next update: Thu 01 May 2025 09:01:12 +0000
Files and hashes: 1: 3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl (hash: c04MWwPB1YYsykRx5UaaDXAqdwBkskRJ5Ntti0b4m7Y=)
2: RZ4xmYAJVpVRLfuQVLFQGXgbrQE.roa (hash: aFDGOW4Qu6MNo6mtPQc9Lw/jPxt+lcHM9Vl2lskSnz8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:85:ed:c0:c9:62:74:16:73:60:6b:bb:0c:fc:d6:57:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de169952f97f494cfe0f6b5427ca56e810c05ce0
Validity
Not Before: Apr 30 09:01:12 2025 GMT
Not After : May 1 09:01:12 2025 GMT
Subject: CN=caaa275defc28fcc54a614abee6ce05b50b13144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:d9:ae:1b:13:f9:3a:80:b2:9f:ad:d2:e1:57:
e9:ff:e9:a1:5f:76:ef:fd:75:31:33:0f:9b:f3:02:
a8:b5:ee:5b:68:d0:e8:ed:29:3f:6d:b7:23:9e:cd:
68:b3:ba:4c:75:c8:94:00:56:05:1b:1b:0a:1d:3f:
14:0e:fd:35:63:58:50:c6:4b:61:55:b4:30:3c:01:
b1:bc:e3:c6:09:2f:81:7c:19:18:f6:a4:90:94:c6:
f8:0a:4b:fd:ea:83:11:a0:ff:3f:c4:2e:cc:ba:18:
52:78:40:f4:b3:21:8d:21:0a:dc:30:aa:7d:03:b6:
c2:38:4c:b7:a1:ea:61:8c:5a:2c:1c:d9:56:f1:3e:
b1:c4:53:31:ff:67:d1:04:ca:02:67:89:2b:a4:9d:
9f:aa:1a:e1:fc:6b:07:6a:35:75:bd:d3:87:0a:c9:
12:39:e3:b6:bd:1d:cf:c9:6f:d7:6c:6d:95:57:d9:
08:d7:2a:3b:2d:4b:49:d6:33:df:9c:c9:c6:bf:1a:
d9:19:e0:52:61:27:f6:27:68:b5:67:e4:89:b6:0a:
2b:40:23:1c:bf:df:29:87:cf:8e:83:9e:60:5a:ff:
1d:b7:25:0e:ab:92:08:27:02:b8:be:f1:e9:83:cd:
ec:c2:6b:4d:11:97:47:a7:52:bb:6c:55:33:9a:6b:
d7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:AA:27:5D:EF:C2:8F:CC:54:A6:14:AB:EE:6C:E0:5B:50:B1:31:44
X509v3 Authority Key Identifier:
keyid:DE:16:99:52:F9:7F:49:4C:FE:0F:6B:54:27:CA:56:E8:10:C0:5C:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:cc:49:0a:d3:61:d5:17:d8:ab:c0:b3:e3:fc:6e:92:e2:08:
2f:bc:82:d5:c9:10:82:7e:54:26:39:9a:9e:cf:be:fc:db:50:
af:0b:30:fd:7e:ed:5d:f1:e8:d1:a3:3c:c4:d4:c5:c4:2e:01:
55:e9:2e:4a:70:3d:88:e6:6e:e7:fa:0c:f4:46:83:17:3e:7a:
1e:c9:c7:ec:00:8d:cd:d4:d2:9d:88:99:6c:50:cc:7b:a2:e5:
4c:be:4b:e2:07:95:d5:4c:83:9d:7e:97:26:db:40:90:c7:e7:
df:6a:fc:df:4c:6a:0d:a5:46:01:b3:52:fd:99:16:9b:27:45:
6b:fd:9d:91:85:fd:e5:28:43:f0:d6:eb:bd:ca:af:02:09:16:
9a:3e:05:fe:06:01:62:61:60:80:ed:93:b9:24:4d:61:0c:f9:
d0:b8:4d:da:67:dd:51:53:db:13:3e:e5:6f:c2:be:4c:7c:95:
a4:ac:78:13:d9:84:76:a0:5f:7f:6e:c9:89:54:1a:22:64:3f:
9a:01:e7:15:1b:c7:b4:05:c8:aa:a1:5d:28:30:b1:dc:70:fa:
8b:7e:71:38:29:fd:fe:37:fd:2b:4f:19:ff:68:a7:21:db:c1:
68:3d:02:89:c2:52:40:d8:3d:b4:dd:77:1b:f0:68:f6:82:a3:
9f:4f:7c:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 14:55:56 2025 by rpki-client