Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.mft
File: 6Nh4qlMIGJO6UoUk7xQ-qScTkrg.mft (raw, json)
Hash identifier: Vx/qce9PVBIwBy3qyT6gbsb5YuXXqa9Rhs4Bzk3dyMg=
Subject key identifier: 79:45:B8:A7:30:4A:14:44:E7:78:5F:C8:50:20:B0:7A:D8:0F:D1:4F
Authority key identifier: E8:D8:78:AA:53:08:18:93:BA:52:85:24:EF:14:3E:A9:27:13:92:B8
Certificate issuer: /CN=e8d878aa53081893ba528524ef143ea9271392b8
Certificate serial: 019676E857C3EE3CB56F5FBDFBF1611D6F31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.mft
Manifest number: 150E
Signing time: Sun 27 Apr 2025 11:01:00 +0000
Manifest this update: Sun 27 Apr 2025 11:01:00 +0000
Manifest next update: Mon 28 Apr 2025 11:01:00 +0000
Files and hashes: 1: 5sx0qR-B9y6mGDgRbtSLnw5KGsw.roa (hash: Nyr6wmMl755m5pBB7dzD6+3NgxbHjvOEn2wkeXz+Yqw=)
2: 6Nh4qlMIGJO6UoUk7xQ-qScTkrg.crl (hash: TNNfFVFaMAcS0wb/oKJq/iJgu7MrqGhq5WyMxj8+lqs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.mft
rsync://rpki.ripe.net/repository/DEFAULT/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 11:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:e8:57:c3:ee:3c:b5:6f:5f:bd:fb:f1:61:1d:6f:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8d878aa53081893ba528524ef143ea9271392b8
Validity
Not Before: Apr 27 11:01:00 2025 GMT
Not After : Apr 28 11:01:00 2025 GMT
Subject: CN=7945b8a7304a1444e7785fc85020b07ad80fd14f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:9c:26:9f:1b:42:ab:75:66:f8:53:e6:11:1b:
a8:e8:eb:5f:5a:1f:d2:14:72:42:83:6e:96:8a:c0:
85:38:ce:54:18:f6:3d:ea:43:12:a3:06:39:e5:24:
3d:5a:12:2c:b2:8c:6d:aa:3f:01:99:07:54:f2:07:
cc:29:d7:a0:ba:c9:30:6f:22:21:98:61:81:0b:fe:
b1:2c:f0:66:a6:68:c7:f9:88:b9:67:fc:d8:5d:d5:
1a:87:fc:c3:98:31:53:73:94:a6:9a:e7:f6:e4:e8:
c6:1b:32:64:ca:22:b5:81:e2:54:de:c0:c7:95:a9:
f3:23:b9:79:ee:b1:f8:6a:aa:7a:bb:41:60:5c:90:
d4:2f:35:0e:50:8d:72:64:3d:a3:55:09:ea:76:45:
42:58:77:3d:d4:62:3d:a5:48:8b:d6:ce:9e:97:81:
22:30:84:7c:0a:8b:36:0e:05:cb:b6:b3:c3:1f:6a:
15:5d:45:1a:d8:81:01:a6:15:1a:37:37:75:08:35:
b2:75:d1:53:00:c1:38:5a:e1:a2:28:59:ad:89:52:
3f:3d:83:39:8c:ae:d0:a3:7c:83:96:64:97:43:fe:
5f:a5:4d:10:1b:fc:94:ba:94:f7:70:c0:4d:14:7d:
16:e3:ac:59:7a:e9:c5:3d:1e:24:c9:85:57:18:8b:
dd:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:45:B8:A7:30:4A:14:44:E7:78:5F:C8:50:20:B0:7A:D8:0F:D1:4F
X509v3 Authority Key Identifier:
keyid:E8:D8:78:AA:53:08:18:93:BA:52:85:24:EF:14:3E:A9:27:13:92:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ad64bb-d539-4a8e-b0e6-5f89b885f729/1/6Nh4qlMIGJO6UoUk7xQ-qScTkrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:0a:cf:19:26:b1:1d:14:8f:45:17:4c:fd:37:0d:94:8f:5c:
c1:bf:ff:e2:5b:cd:9d:f7:9d:47:d8:11:c5:c9:da:c5:31:de:
b8:c6:59:0d:38:3f:79:f7:ef:e9:1f:39:72:a6:12:c4:76:80:
48:00:8a:92:6b:b6:35:6c:e4:ba:5e:3e:00:28:d5:42:cf:78:
e9:ed:fa:07:67:c0:4f:2e:26:c0:d8:f0:d1:c3:2c:bb:69:54:
83:a4:75:c9:a9:26:6e:92:47:d5:79:c7:aa:ff:87:9a:79:99:
23:c2:77:7c:b9:5e:be:36:64:31:5f:96:c2:00:c3:e8:8a:13:
19:90:1b:f8:22:ec:b1:a1:5c:b1:98:a6:bc:3a:eb:14:49:af:
a4:44:f3:e4:44:8a:2b:9a:a7:23:66:99:86:07:8c:73:c0:c0:
b2:7b:66:6c:8c:35:0c:0c:28:51:b0:5d:c0:79:59:63:75:1d:
8e:07:44:b1:7c:9d:8b:f4:98:60:e7:48:74:76:5c:9b:a6:66:
03:d0:13:ec:71:e5:eb:21:87:7a:b8:ed:de:c2:59:31:a2:53:
45:1c:e3:3e:b8:4c:00:e2:91:d1:f2:73:a0:e2:8c:d5:55:1d:
f5:d2:b0:1d:84:64:d0:88:59:56:d0:f6:c2:f0:df:98:fa:ff:
76:b8:5d:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 19:09:18 2025 by rpki-client