Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/fd1dd5-3294-4550-a3e6-9aabb99fa10c/1/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.mft
File: D5xa6Uyt7YdcjbL1gzyojS9o7Q4.mft (raw, json)
Hash identifier: Ccn+H75nQwQJs2p9LKgi6Yg0HEDU1CCE8PqwJAGodZE=
Subject key identifier: 95:7A:E3:90:8D:80:69:A2:E3:45:57:4C:B1:8B:42:06:07:0A:2E:1D
Authority key identifier: 0F:9C:5A:E9:4C:AD:ED:87:5C:8D:B2:F5:83:3C:A8:8D:2F:68:ED:0E
Certificate issuer: /CN=0f9c5ae94caded875c8db2f5833ca88d2f68ed0e
Certificate serial: 01967EA17CF132CA68E5CE4C2348CEBBE5C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/fd1dd5-3294-4550-a3e6-9aabb99fa10c/1/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.mft
Manifest number: 029A
Signing time: Mon 28 Apr 2025 23:00:34 +0000
Manifest this update: Mon 28 Apr 2025 23:00:34 +0000
Manifest next update: Tue 29 Apr 2025 23:00:34 +0000
Files and hashes: 1: 6BzrArwu58N5sBVvJVBthqND_N4.roa (hash: OfB+8pNfA8OgycXqKbk5L8hxFdJxQJhdYPo6qkN9fXA=)
2: D5xa6Uyt7YdcjbL1gzyojS9o7Q4.crl (hash: hnqru3kiYoPrRu5gZBTqZQcfH5dFAxXZs2Op9TeX0AI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/fd1dd5-3294-4550-a3e6-9aabb99fa10c/1/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/fd1dd5-3294-4550-a3e6-9aabb99fa10c/1/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:a1:7c:f1:32:ca:68:e5:ce:4c:23:48:ce:bb:e5:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f9c5ae94caded875c8db2f5833ca88d2f68ed0e
Validity
Not Before: Apr 28 23:00:34 2025 GMT
Not After : Apr 29 23:00:34 2025 GMT
Subject: CN=957ae3908d8069a2e345574cb18b4206070a2e1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:77:55:77:52:ad:7e:f5:4e:39:82:3f:64:fa:
ad:72:38:ed:11:e9:be:84:71:cd:1b:d8:6b:62:51:
69:8f:2f:ce:03:e8:8a:04:9d:7e:f6:42:55:85:20:
5c:43:b2:a1:51:ba:1c:03:84:64:58:ee:c8:12:a9:
a3:1d:61:43:55:88:8a:ba:9a:7e:5e:c1:ef:f9:29:
a7:09:e7:e0:db:df:2e:23:d4:8c:0a:77:72:17:fe:
4d:81:74:61:22:cc:2a:b1:2f:ab:22:a6:2b:48:f5:
2e:ca:c4:ca:4d:2e:14:a6:4c:5f:0a:b7:64:00:9b:
be:b5:fc:a1:29:7d:a9:32:23:2c:02:92:32:b1:e3:
37:dd:58:5d:85:32:4b:fb:18:bf:ae:e8:59:f7:c8:
0f:2b:97:97:82:bb:62:33:e0:d9:28:92:a2:01:56:
1b:dd:4f:c6:a5:90:2c:15:33:f8:49:a3:1a:02:c9:
2e:ae:ef:be:8d:b9:c2:0f:0f:6f:64:5e:f7:35:60:
58:8a:81:e3:68:ef:a2:d3:5b:72:d6:47:0e:26:35:
94:d1:46:46:f7:63:69:ee:44:5b:22:0e:c1:83:5c:
64:1a:db:3f:3f:64:97:e1:11:8d:1d:93:ae:d7:fa:
f5:c6:c2:3d:3e:6e:81:2a:3a:23:aa:fa:98:cc:32:
f5:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:7A:E3:90:8D:80:69:A2:E3:45:57:4C:B1:8B:42:06:07:0A:2E:1D
X509v3 Authority Key Identifier:
keyid:0F:9C:5A:E9:4C:AD:ED:87:5C:8D:B2:F5:83:3C:A8:8D:2F:68:ED:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/fd1dd5-3294-4550-a3e6-9aabb99fa10c/1/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/fd1dd5-3294-4550-a3e6-9aabb99fa10c/1/D5xa6Uyt7YdcjbL1gzyojS9o7Q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:41:f1:60:b7:c7:94:26:6e:23:79:0b:52:d1:1d:81:1f:7b:
e3:b5:f8:4e:0a:bf:ba:be:cf:71:34:4b:3d:07:aa:91:a4:44:
b9:bf:78:2b:4a:65:27:96:b4:a2:82:76:8c:3f:e0:30:9f:af:
a4:78:30:1b:d2:65:50:82:cb:56:0f:1f:f6:95:e5:8e:35:f0:
21:bb:17:47:9a:37:d0:51:8c:08:e0:bb:ab:4c:10:ce:35:af:
b9:a7:a1:a9:ae:ae:24:d7:e1:d0:e5:00:09:85:7a:0e:9e:8d:
aa:33:97:58:a4:96:9c:4b:ed:d7:4b:6e:03:5b:11:12:43:e9:
6e:ac:cb:a4:e6:c7:a3:10:7d:fe:98:7c:ca:01:29:0c:d3:17:
b0:20:82:fd:72:6e:0e:95:cc:16:28:9c:d6:0b:b9:77:94:93:
38:7f:ca:f1:2a:45:8f:90:1c:78:39:93:54:43:08:29:f4:ce:
90:93:6c:9f:c4:2a:68:31:0d:93:83:e0:97:2b:74:8b:bd:a6:
1b:b8:f9:8d:f2:c9:1a:ab:5a:19:45:40:ff:68:41:b6:d5:9c:
2b:69:f2:19:24:c4:fa:af:3b:30:cb:35:19:c0:2c:1e:08:ea:
bb:09:fd:d7:06:51:6e:74:92:54:d8:62:25:8b:af:b6:58:cb:
67:24:02:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 09:22:10 2025 by rpki-client