Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
File: 0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft (raw, json)
Hash identifier: oB5D8zc2+x1yMxwJnX4LowvYqLZ4DNsxcnDmPF3V0pI=
Subject key identifier: 29:A6:0D:D7:8E:64:65:2C:EE:B8:E9:D0:6C:02:10:B3:D2:C0:CE:5E
Authority key identifier: D2:91:74:12:52:BB:9C:4C:DA:80:04:7D:FB:01:CE:98:C2:19:D1:80
Certificate issuer: /CN=d291741252bb9c4cda80047dfb01ce98c219d180
Certificate serial: 019678689B6B9EA10109A326351ACBF74D14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
Manifest number: 13C4
Signing time: Sun 27 Apr 2025 18:00:43 +0000
Manifest this update: Sun 27 Apr 2025 18:00:43 +0000
Manifest next update: Mon 28 Apr 2025 18:00:43 +0000
Files and hashes: 1: 0pF0ElK7nEzagAR9-wHOmMIZ0YA.crl (hash: MqBZo5lv1+vo1cSoaNgqGsvQQ5D2sm/9tWLIoz8ZCJo=)
2: 24F3NWEaUDo-ywzWotAmlAOE0aY.roa (hash: ERf1+Eo8kcPOcjF9iXtlxaEqblrqJRaC4jpu9Wj4DSs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:68:9b:6b:9e:a1:01:09:a3:26:35:1a:cb:f7:4d:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d291741252bb9c4cda80047dfb01ce98c219d180
Validity
Not Before: Apr 27 18:00:43 2025 GMT
Not After : Apr 28 18:00:43 2025 GMT
Subject: CN=29a60dd78e64652ceeb8e9d06c0210b3d2c0ce5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:75:69:53:c1:d1:9e:74:ab:7c:e6:b8:53:77:
3c:4c:e1:a4:53:63:2c:0b:af:0f:8e:3e:f0:66:25:
a5:50:37:fc:5e:be:77:3f:dc:56:a6:e5:30:bc:e7:
df:42:f3:d4:53:25:0b:58:4a:f9:90:8f:e2:86:61:
9c:f7:94:2c:1d:1a:bc:fb:79:a6:51:06:47:99:47:
47:ed:9a:80:b4:9e:65:64:56:d7:39:aa:75:29:43:
54:d2:ee:f7:4b:be:bd:cf:5d:ac:a5:2a:19:da:1a:
d5:34:57:53:44:96:82:c9:b2:25:c0:ca:6f:28:d8:
29:4a:ea:a8:fe:d6:34:73:9f:94:85:1f:d5:bb:70:
3e:92:81:81:94:e3:10:b4:ae:57:a6:8d:f7:d3:df:
e8:82:54:aa:20:04:79:3a:68:40:8a:42:5c:2f:71:
18:ee:ed:e2:5a:1b:85:24:5b:87:17:be:fc:87:70:
c1:77:74:2a:c4:a0:aa:72:de:d2:61:a4:05:53:e8:
89:4c:35:69:7e:4c:9f:30:ab:7a:9e:78:07:08:b1:
5a:bb:87:d3:eb:74:38:87:63:1f:bd:bd:0d:83:ac:
2b:12:06:ec:20:8f:c7:65:da:e3:29:7a:67:cd:62:
45:12:0b:72:ab:f9:95:89:72:19:a9:f5:15:e6:b6:
64:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:A6:0D:D7:8E:64:65:2C:EE:B8:E9:D0:6C:02:10:B3:D2:C0:CE:5E
X509v3 Authority Key Identifier:
keyid:D2:91:74:12:52:BB:9C:4C:DA:80:04:7D:FB:01:CE:98:C2:19:D1:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:f3:8f:2a:d6:ae:eb:c5:93:a7:88:4d:fb:97:3b:a9:ae:d5:
4c:1c:1b:83:5a:4d:70:e3:e1:a2:09:bf:3c:7e:1b:5d:de:26:
ca:86:ef:5d:26:8c:59:34:32:25:9b:43:5c:06:1f:22:d1:0d:
a5:4e:1d:11:d5:cb:5f:1b:84:86:a7:df:68:61:25:0f:0e:df:
ea:de:21:df:38:9d:8f:5e:60:63:c8:10:fc:ca:2d:34:e7:a6:
e8:20:a2:ff:9a:f3:a7:d7:f5:13:44:1e:99:60:95:4b:55:f1:
b4:6c:74:7d:40:87:99:9a:97:74:f9:44:be:0e:c2:ce:1d:f2:
b0:36:87:31:a2:27:9c:93:29:64:7a:96:3d:a1:7b:61:08:e9:
b7:a6:c7:f4:89:03:d8:26:9e:a8:8f:25:7e:16:1b:4a:6c:78:
ae:20:37:a7:c8:38:10:ec:20:dc:1e:b2:65:65:7a:19:11:e0:
4a:c4:23:3c:51:ff:c6:80:06:4e:5f:20:2e:1c:18:51:4a:32:
21:d3:e6:25:37:08:34:7b:4c:c1:98:ab:67:cb:8e:e2:ab:d7:
10:00:bd:5d:09:01:21:6f:32:80:51:2d:4a:8c:8b:f0:13:ba:
12:31:ae:a0:a1:81:fd:c6:fa:94:29:0b:74:5b:6e:18:cf:af:
1d:bc:58:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:12:08 2025 by rpki-client