Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
File: pWMWxxKYMeBREHlTLe2B3BLIHaA.mft (raw, json)
Hash identifier: Rz7cW3EWaqaHZq9/p8/aqNGD0w6QxHTIzIkY2W6rcS0=
Subject key identifier: 13:53:59:D9:6E:4A:D0:6D:5E:C1:8C:7C:9D:4A:E5:9D:A2:A9:19:67
Authority key identifier: A5:63:16:C7:12:98:31:E0:51:10:79:53:2D:ED:81:DC:12:C8:1D:A0
Certificate issuer: /CN=a56316c7129831e0511079532ded81dc12c81da0
Certificate serial: 019686241542A913B04B84E1498BC59094F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
Manifest number: 0B26
Signing time: Wed 30 Apr 2025 10:00:33 +0000
Manifest this update: Wed 30 Apr 2025 10:00:33 +0000
Manifest next update: Thu 01 May 2025 10:00:33 +0000
Files and hashes: 1: XAMH6mQExatvC2LMnoXanctLKzE.roa (hash: pCAATiBl9IRxnVx1ZfARnp3JybBqcsAW/QN7pstrTq0=)
2: pWMWxxKYMeBREHlTLe2B3BLIHaA.crl (hash: JJIVCBb+OQmSPrntcufeMEcvNKrXO+hUw67vbIiw9mU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:86:24:15:42:a9:13:b0:4b:84:e1:49:8b:c5:90:94:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a56316c7129831e0511079532ded81dc12c81da0
Validity
Not Before: Apr 30 10:00:33 2025 GMT
Not After : May 1 10:00:33 2025 GMT
Subject: CN=135359d96e4ad06d5ec18c7c9d4ae59da2a91967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:5f:06:63:5f:18:b3:d7:95:eb:57:0f:9c:46:
e7:d6:54:11:41:e0:a5:6c:f9:2c:51:a5:1d:2c:a7:
7b:42:12:98:c1:11:39:54:3a:20:59:e2:1b:9f:f3:
1e:b0:74:8a:70:b0:b7:0a:03:52:89:5e:98:f0:81:
b9:3c:f1:1b:95:20:84:e3:fd:e2:44:7e:a9:b0:6e:
04:c8:f2:4c:bd:ee:07:5c:1b:6e:e6:ed:2d:1b:8a:
27:a9:3d:83:5a:ba:cd:ba:ab:c0:fa:70:1b:c9:20:
5d:6b:f7:3d:b6:36:62:9d:4e:b5:22:d8:bd:62:e7:
79:3d:d6:59:2e:47:9d:21:1e:31:de:2e:15:d5:ba:
ef:49:6e:f8:d3:3c:b9:2d:4b:31:2f:8f:ad:7d:d0:
f5:05:4b:da:d1:74:2a:b8:fb:5a:e2:ee:3c:b1:d7:
f4:a4:05:86:ac:d4:4f:d1:d0:82:9f:ee:5b:d4:5a:
70:0d:d5:a6:f9:ed:14:77:44:06:07:87:2b:6f:5e:
25:7f:c0:57:57:c4:92:37:5a:76:4b:e8:ac:4f:85:
11:0f:54:1c:ba:9e:70:67:f9:bc:88:2c:64:6f:6e:
18:6c:03:ea:0f:3c:80:53:e5:10:74:81:b2:51:b3:
2d:e2:2e:3c:2a:f4:c1:e3:eb:df:cb:bf:e4:f0:c1:
d4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:53:59:D9:6E:4A:D0:6D:5E:C1:8C:7C:9D:4A:E5:9D:A2:A9:19:67
X509v3 Authority Key Identifier:
keyid:A5:63:16:C7:12:98:31:E0:51:10:79:53:2D:ED:81:DC:12:C8:1D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pWMWxxKYMeBREHlTLe2B3BLIHaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/4d9267-4eac-4213-9bcb-28b82c0a14f0/1/pWMWxxKYMeBREHlTLe2B3BLIHaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:b9:af:db:54:cf:e1:f3:9b:d7:54:67:53:6e:0a:7f:ca:59:
0a:a3:6c:0e:d8:03:9c:1d:fa:a7:e4:3c:cd:3e:a5:e7:47:0a:
61:a4:1c:b0:98:64:72:c1:c6:4a:01:76:38:e2:4c:7c:2d:6a:
b7:4c:ec:cd:bb:e0:b0:10:b0:31:b3:76:2a:97:44:57:cb:e0:
d8:03:53:ab:31:5f:49:a1:6c:d3:61:0e:95:0d:90:62:d5:8a:
f3:06:ab:19:2c:14:52:cf:01:4e:bb:03:ed:3e:58:e2:8e:a7:
25:8c:b8:2e:6f:6a:fe:cc:db:86:19:cf:b9:3e:0a:b1:b5:63:
86:42:26:b5:8a:0e:3b:5a:36:c0:6d:75:97:3b:67:0c:b0:31:
ac:27:dc:35:6b:de:23:f7:12:9e:4a:3a:4b:80:a0:3c:c7:a7:
d1:82:3a:d7:9a:04:1e:af:19:dc:04:b5:78:57:69:2c:7f:ed:
9d:fc:39:3d:01:35:05:23:48:50:07:ab:36:f3:76:fd:39:7b:
a7:d9:6f:ed:a1:79:fe:a5:37:6a:68:8a:7e:72:c8:b6:26:40:
00:ad:2e:18:f8:2c:15:2b:8e:87:ac:7f:5b:7c:84:d5:80:46:
f6:2b:a8:4f:4b:f9:e2:d5:36:d9:26:66:1d:06:6f:e8:16:b8:
8c:c1:67:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 14:44:16 2025 by rpki-client