Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
File: TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft (raw, json)
Hash identifier: p/uwOgYSUvfHmigSxSZBj2TOBA2A7ldFjULU4lND6M4=
Subject key identifier: 3D:A2:53:C1:25:A2:84:51:2A:79:50:E0:69:AE:3E:88:1F:76:2F:9A
Authority key identifier: 4C:EA:66:AD:DA:9D:F9:62:5A:3D:78:D6:28:FB:05:E2:48:4D:D8:78
Certificate issuer: /CN=4cea66adda9df9625a3d78d628fb05e2484dd878
Certificate serial: 01968CCACCA709CB8AC210FE1DE6E2BF0679
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
Manifest number: 01C3
Signing time: Thu 01 May 2025 17:00:22 +0000
Manifest this update: Thu 01 May 2025 17:00:22 +0000
Manifest next update: Fri 02 May 2025 17:00:22 +0000
Files and hashes: 1: 1-QbsigNOAsIOrzATvCDKf5YVw3s.roa (hash: gWNRwRZG0Ifn0uSFb+Au9uZSZqHds/SqKOwbteITnow=)
2: TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl (hash: aPRGc5XTnhrSeVNmtUJBj8zCHYWfr38fa/eabU/TT3k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 17:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8c:ca:cc:a7:09:cb:8a:c2:10:fe:1d:e6:e2:bf:06:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cea66adda9df9625a3d78d628fb05e2484dd878
Validity
Not Before: May 1 17:00:22 2025 GMT
Not After : May 2 17:00:22 2025 GMT
Subject: CN=3da253c125a284512a7950e069ae3e881f762f9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:8e:e1:b7:eb:04:69:e7:60:be:d5:ba:87:1b:
e2:8e:49:97:a0:47:03:29:4a:ec:71:42:f1:08:40:
0a:a0:a4:c9:f7:59:59:1c:84:41:63:c0:c4:ca:58:
12:9b:d8:f6:7b:f3:4f:6f:c2:7a:6b:c9:f2:97:d7:
c8:00:ec:71:4f:22:22:bc:00:48:9b:6a:58:68:66:
7c:d3:9c:4b:2b:09:6b:ea:f5:0d:02:20:df:8a:09:
98:b0:65:6d:2b:1a:d9:2a:77:4e:ad:04:26:0b:87:
0d:dd:30:ba:a0:b3:77:44:f5:32:10:8f:5c:57:33:
5b:ef:95:a8:a0:69:70:73:78:15:5c:8a:c5:f2:5b:
44:33:c1:83:11:61:90:fa:0e:a0:69:6f:0c:b7:37:
fa:c3:96:25:f5:9e:fc:d3:81:dd:92:af:0f:14:fe:
a6:ce:8f:11:68:12:ab:4d:4d:f6:a9:5f:0e:d9:8b:
50:b8:2e:be:8a:de:8d:4f:f1:17:a8:07:6e:e2:bb:
18:3a:1e:f0:ec:82:e3:ea:94:a9:96:d8:ef:72:eb:
10:fb:d8:bd:ca:10:02:82:04:9f:bd:96:b9:18:51:
1e:43:93:93:ad:c4:fe:4a:23:b4:7c:9f:39:5b:f9:
1c:38:a3:d6:e9:89:9e:64:d7:20:c0:67:a7:14:33:
19:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:A2:53:C1:25:A2:84:51:2A:79:50:E0:69:AE:3E:88:1F:76:2F:9A
X509v3 Authority Key Identifier:
keyid:4C:EA:66:AD:DA:9D:F9:62:5A:3D:78:D6:28:FB:05:E2:48:4D:D8:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:9b:63:75:f4:ee:a0:10:58:0e:f8:9e:ae:ef:a6:7d:de:26:
25:44:f0:3a:96:50:36:56:17:5c:e0:9d:2a:87:55:8a:36:a9:
a4:ff:6e:ef:75:65:20:00:8d:97:44:6f:de:42:d2:0b:c5:f3:
58:14:ce:67:40:53:98:68:22:55:68:6c:77:c6:e3:be:f2:2e:
0a:c4:cd:95:07:b5:2f:a0:fb:66:3f:3c:9c:fd:1a:b2:b3:d9:
3d:6e:68:ac:c6:4c:8e:83:a5:09:94:b5:7e:ac:53:42:2b:b9:
16:68:3e:46:66:48:e6:4c:a0:30:c1:0f:44:6e:e2:5d:46:41:
3a:57:d7:28:cd:a5:19:68:6a:44:78:0d:33:5c:34:b0:27:fc:
5e:da:2b:94:cc:1d:b2:69:e5:b8:fe:05:1f:42:62:22:66:53:
06:6b:9a:e2:46:fb:78:bf:76:75:73:ce:b3:81:87:5b:26:dc:
91:d1:03:37:f7:70:c4:d6:77:69:5c:c7:e8:96:f8:4e:f9:3c:
60:34:11:78:29:9c:d9:6b:62:88:cf:b7:7c:5c:e8:4c:2e:c6:
35:d0:bb:68:7d:ba:20:0b:39:c7:90:c1:a6:86:2e:31:60:be:
6c:be:74:d0:25:f9:96:43:59:b5:f0:8f:06:eb:09:6a:f4:e6:
1d:77:2a:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 03:24:55 2025 by rpki-client