Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
File: ddoOY-skfZoLE7TLNt1nJJkgu8o.mft (raw, json)
Hash identifier: WP4Uljrurf54sg6aCcFAMRY2P+xqw0GGzcR+HItN9Do=
Subject key identifier: 9F:77:92:97:10:6B:7A:9F:09:ED:8E:CF:02:42:87:E1:C8:2F:26:F1
Authority key identifier: 75:DA:0E:63:EB:24:7D:9A:0B:13:B4:CB:36:DD:67:24:99:20:BB:CA
Certificate issuer: /CN=75da0e63eb247d9a0b13b4cb36dd67249920bbca
Certificate serial: 0196827E61EE4BB3B3DD71F1566EB561CE11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ddoOY-skfZoLE7TLNt1nJJkgu8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
Manifest number: 1518
Signing time: Tue 29 Apr 2025 17:00:42 +0000
Manifest this update: Tue 29 Apr 2025 17:00:42 +0000
Manifest next update: Wed 30 Apr 2025 17:00:42 +0000
Files and hashes: 1: Qij-xPisZGBBqpNgu1KPeAhYyeA.roa (hash: 0qt3Er+wn2Xj8MdmWfSXDbZ9aYW82PDchwg6o4/NTxg=)
2: ddoOY-skfZoLE7TLNt1nJJkgu8o.crl (hash: Tavjx2dUJGIdPEjCOb6ZRswNHUrAiy5CwOnouVoZzbI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ddoOY-skfZoLE7TLNt1nJJkgu8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:7e:61:ee:4b:b3:b3:dd:71:f1:56:6e:b5:61:ce:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75da0e63eb247d9a0b13b4cb36dd67249920bbca
Validity
Not Before: Apr 29 17:00:42 2025 GMT
Not After : Apr 30 17:00:42 2025 GMT
Subject: CN=9f779297106b7a9f09ed8ecf024287e1c82f26f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f8:0e:2c:2d:1a:d6:f8:7f:95:0e:aa:8d:e3:
97:8d:e8:bd:53:4c:a1:90:a8:8f:64:19:a2:a3:50:
79:f0:b6:1c:c0:53:1e:b5:ca:6c:47:ec:2d:80:6b:
b7:90:bb:42:97:d1:0f:75:a0:c7:8a:c2:f0:db:1b:
da:fc:7f:51:ba:2e:dd:d3:e6:77:c3:8a:1d:b0:d5:
f3:e2:ea:a1:52:3f:dd:5b:98:d4:7e:a1:7c:b9:4e:
8b:8c:5c:df:f9:9c:ba:35:81:64:39:e0:65:da:fb:
15:5e:d1:12:84:8c:f0:e2:99:4c:9b:a7:a4:b8:e6:
d3:d6:1a:64:a6:f5:17:e6:3c:10:a2:53:da:39:b2:
77:ff:35:f1:6d:74:f2:c7:c4:b5:39:2b:d4:36:5d:
2b:6c:b0:de:29:1b:f4:19:8d:12:2e:b8:56:64:66:
b4:15:b0:a2:95:52:09:ee:ed:10:92:3f:88:72:c4:
8e:d3:51:85:ac:f0:a5:53:b0:77:ad:a3:f3:06:17:
1d:6b:8b:fc:0c:6f:19:39:4a:2a:52:93:9e:ce:77:
1b:fa:d7:a3:fe:f6:84:47:02:a8:30:55:a9:a9:02:
93:41:e1:d1:9c:69:e4:cd:70:d9:5d:50:df:7c:c8:
a7:d5:52:f0:44:9a:05:aa:9e:3b:36:93:57:a7:10:
1d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:77:92:97:10:6B:7A:9F:09:ED:8E:CF:02:42:87:E1:C8:2F:26:F1
X509v3 Authority Key Identifier:
keyid:75:DA:0E:63:EB:24:7D:9A:0B:13:B4:CB:36:DD:67:24:99:20:BB:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ddoOY-skfZoLE7TLNt1nJJkgu8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/4b5c19-821a-40ce-9168-df4a3173522b/1/ddoOY-skfZoLE7TLNt1nJJkgu8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:e9:0e:ba:20:8f:10:95:96:c9:32:2c:cf:8e:db:e0:82:cd:
d1:7d:be:0f:d5:cf:75:3a:fc:32:74:8e:68:7a:71:f1:53:b4:
55:2a:3c:1d:90:2c:bf:d3:56:73:19:47:05:78:a5:17:6d:76:
77:51:75:cb:33:d2:b7:a4:1b:6d:3a:1b:77:e7:37:88:ed:c1:
2b:23:6b:9c:37:5f:6e:11:72:9d:32:68:6c:25:88:36:37:69:
fd:2f:fd:f0:b8:68:51:b2:cd:fb:22:e4:f9:06:bc:36:b0:da:
14:10:2b:41:42:73:a6:84:2c:d5:30:ae:04:95:d3:8c:8d:bc:
1d:6b:10:f8:b7:76:ed:78:fd:41:f9:7b:dc:34:53:53:7e:f7:
38:5d:28:bf:5f:3c:27:73:38:97:9f:70:42:c1:ad:17:61:d4:
60:b2:9d:14:24:81:8c:ff:f2:86:73:0d:58:bd:36:2d:b8:f5:
2f:da:88:7d:5d:8d:78:dc:27:82:b9:f5:5e:64:29:8c:a8:56:
cb:bd:25:73:7f:2e:f3:a6:3d:d7:38:fa:d7:79:97:44:97:90:
c0:39:b3:f0:f5:dd:44:ea:16:a6:c4:1e:90:c7:e1:ac:24:ae:
58:8a:4c:1b:c2:7e:3e:97:be:b9:ec:cd:f9:a3:7a:69:a3:e0:
86:23:38:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 00:51:15 2025 by rpki-client