Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/01504c-c1c6-4564-a402-4e67be4e432e/1/bN7Hsun4ZurDa8McpMT_YtU90WY.mft
File: bN7Hsun4ZurDa8McpMT_YtU90WY.mft (raw, json)
Hash identifier: sBGNOpEUIbTFrdD/ivfq0yAhPs7hrVVnTuCHfm1wsGw=
Subject key identifier: B8:60:92:88:70:26:F8:6C:55:D4:CB:2A:2F:61:2A:53:CF:86:CA:3E
Authority key identifier: 6C:DE:C7:B2:E9:F8:66:EA:C3:6B:C3:1C:A4:C4:FF:62:D5:3D:D1:66
Certificate issuer: /CN=6cdec7b2e9f866eac36bc31ca4c4ff62d53dd166
Certificate serial: 01969484B28DAC076B6D1FB2B33E1567393B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bN7Hsun4ZurDa8McpMT_YtU90WY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/01504c-c1c6-4564-a402-4e67be4e432e/1/bN7Hsun4ZurDa8McpMT_YtU90WY.mft
Manifest number: 151F
Signing time: Sat 03 May 2025 05:00:46 +0000
Manifest this update: Sat 03 May 2025 05:00:46 +0000
Manifest next update: Sun 04 May 2025 05:00:46 +0000
Files and hashes: 1: Z4ohMPF1WbOgY7NPLu3yhyFt6Mc.roa (hash: wjvtvacmB4OpgR5kZvFLo2El4XLARx+8D9159reAQW4=)
2: bN7Hsun4ZurDa8McpMT_YtU90WY.crl (hash: tuPbVNNo9ENrOV4+9tKFSIqfvJkMwc6M1ZDa0kJJb2E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/01504c-c1c6-4564-a402-4e67be4e432e/1/bN7Hsun4ZurDa8McpMT_YtU90WY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/01504c-c1c6-4564-a402-4e67be4e432e/1/bN7Hsun4ZurDa8McpMT_YtU90WY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bN7Hsun4ZurDa8McpMT_YtU90WY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 04 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:94:84:b2:8d:ac:07:6b:6d:1f:b2:b3:3e:15:67:39:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cdec7b2e9f866eac36bc31ca4c4ff62d53dd166
Validity
Not Before: May 3 05:00:46 2025 GMT
Not After : May 4 05:00:46 2025 GMT
Subject: CN=b86092887026f86c55d4cb2a2f612a53cf86ca3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:63:87:1b:98:3c:aa:f5:b4:c2:53:9d:40:5f:
52:44:55:c4:e7:ad:d6:a8:5f:ff:7a:cf:21:5f:56:
f0:5b:e2:6f:22:fe:fc:a9:87:62:e7:90:c5:0e:17:
a9:6d:74:60:63:2f:94:22:a9:0b:73:e0:6e:81:b2:
d2:be:7d:0b:6d:cb:6f:fc:94:cc:98:8a:c9:af:d6:
38:e0:a9:0a:78:9e:e5:4f:18:30:75:b3:0d:be:f3:
df:7a:66:b5:de:91:f5:68:dc:bb:b5:92:d0:14:42:
03:b5:16:4b:1f:54:43:01:62:90:03:86:d4:51:d5:
ee:be:d6:d8:dd:5d:ad:1b:d5:16:84:50:c6:1b:4a:
95:1f:c2:89:9b:4c:c1:5d:b1:de:5b:4a:89:6d:b5:
72:69:85:6a:61:b1:3c:9b:98:fa:56:a4:81:0a:0d:
86:87:fa:42:a3:b5:56:54:9d:ca:d4:52:71:08:d3:
f2:92:df:f6:3b:9b:44:b6:63:79:59:70:5d:0c:56:
72:5e:21:ed:43:1f:06:1f:54:ae:04:c9:90:f4:db:
64:e1:e9:66:cf:83:62:68:59:db:71:3d:af:da:cd:
bb:b1:1d:e8:b6:f9:1f:bc:16:f7:66:6a:37:74:e2:
7e:a6:fa:1e:12:47:e6:cb:3b:6f:65:79:6c:4d:25:
1a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:60:92:88:70:26:F8:6C:55:D4:CB:2A:2F:61:2A:53:CF:86:CA:3E
X509v3 Authority Key Identifier:
keyid:6C:DE:C7:B2:E9:F8:66:EA:C3:6B:C3:1C:A4:C4:FF:62:D5:3D:D1:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bN7Hsun4ZurDa8McpMT_YtU90WY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/01504c-c1c6-4564-a402-4e67be4e432e/1/bN7Hsun4ZurDa8McpMT_YtU90WY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/01504c-c1c6-4564-a402-4e67be4e432e/1/bN7Hsun4ZurDa8McpMT_YtU90WY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:7d:61:d1:eb:4e:6c:13:ec:3e:b2:96:e9:d8:4b:ec:64:72:
b9:c1:ba:d9:34:e7:bb:3b:74:5c:4f:0a:b8:06:8e:c2:7b:b2:
8d:9d:7b:c9:12:9e:53:3a:78:99:a9:06:ed:b8:d6:5b:9d:c1:
74:7f:ed:f8:5a:ce:7e:40:5c:47:3c:25:aa:9d:66:ab:f2:75:
8f:7a:bb:96:78:5d:e0:96:98:cc:33:80:3c:c0:40:25:ea:8d:
21:d1:22:80:1c:d8:ee:e6:2f:51:c2:11:b1:6c:f3:8e:5e:49:
58:d4:3e:7e:f3:6b:34:77:d4:6e:78:8f:e5:ce:70:08:0e:c5:
ef:a9:a4:85:a5:80:11:76:0e:5f:4b:47:35:6d:7f:3c:97:d3:
52:98:74:60:07:72:73:3c:1f:f6:0a:8e:77:f5:0e:8f:1e:2b:
5c:14:83:59:ad:64:59:37:3f:55:fd:38:17:5a:eb:fe:e9:ee:
46:e5:5e:96:52:ce:78:0f:7f:e4:d6:4d:5e:9f:9f:02:d3:3f:
62:e7:e9:f1:d5:17:c5:d1:fe:ba:c4:8c:27:67:29:ed:8a:d1:
13:1c:4b:70:ec:bb:43:cb:2d:58:ea:f9:c9:be:e2:27:ef:2d:
12:d3:99:c1:9a:22:2e:a2:19:97:6d:67:6a:b6:d5:ba:db:1b:
4f:40:07:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 12:38:18 2025 by rpki-client