Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
File: do_utqkKhqzxGHHk5Xii6n7Cgdk.mft (raw, json)
Hash identifier: 2i0+8wJMWqwR3bRwBtvteni+6xxQ9aVXd3MwbW4Peeo=
Subject key identifier: 44:C1:A6:AA:CF:96:A2:4D:7E:66:1B:F7:4D:58:B3:2B:EE:A7:2C:BA
Authority key identifier: 76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
Certificate issuer: /CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Certificate serial: 01967F0FB5C6091108A94A2BBD5C84686EA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
Manifest number: 1F
Signing time: Tue 29 Apr 2025 01:00:58 +0000
Manifest this update: Tue 29 Apr 2025 01:00:58 +0000
Manifest next update: Wed 30 Apr 2025 01:00:58 +0000
Files and hashes: 1: ZZ126kZc2Gs9amlt5Rc0VmUZOPw.roa (hash: laA9ImB0VtnpNlOC8RmvM5URSIvzaqpg8ewZvS5hOLw=)
2: do_utqkKhqzxGHHk5Xii6n7Cgdk.crl (hash: Ip/YeewKpJpSL9TfrjfMbb/5WBSki4+hV1TEvpc/Yt8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:0f:b5:c6:09:11:08:a9:4a:2b:bd:5c:84:68:6e:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Validity
Not Before: Apr 29 01:00:58 2025 GMT
Not After : Apr 30 01:00:58 2025 GMT
Subject: CN=44c1a6aacf96a24d7e661bf74d58b32beea72cba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:69:80:98:c9:77:70:83:9f:e9:96:65:75:3a:
fe:80:87:9e:c0:f9:37:3c:90:0c:ce:4b:47:d2:6b:
9d:47:c7:68:6a:6e:ad:c9:63:07:99:89:67:7b:c0:
65:9b:14:db:43:2d:59:1e:1c:20:d3:fd:87:e3:84:
b7:ed:bf:32:f5:44:bc:af:28:58:3d:6d:28:80:db:
74:3c:09:45:aa:db:62:3a:39:59:00:d7:37:c9:2a:
67:07:9e:a7:a0:56:1f:35:1f:25:30:51:b2:c0:de:
cc:14:f7:a4:76:8a:2c:02:65:38:c1:13:c6:7d:6f:
55:c8:56:40:6e:98:25:1e:c6:ac:e4:0f:88:6a:ab:
78:4d:c1:26:e1:c2:d8:4d:08:f3:88:b9:b8:e6:30:
34:2e:b5:da:80:d1:1f:e5:2f:28:6c:e4:43:57:8a:
27:44:60:7e:7a:58:24:54:ea:d6:ae:cf:d3:c2:0e:
15:ae:cf:0d:41:12:a6:43:8d:96:1e:66:52:89:ef:
b1:88:60:6f:e0:a4:82:98:dc:c5:de:2d:a5:98:93:
66:82:59:2d:b0:fa:4f:5f:20:23:d5:79:fd:82:78:
5d:61:94:d0:3d:82:ea:43:b2:58:21:24:ae:c5:95:
84:3e:53:27:dc:b4:44:af:bd:56:d5:f8:7e:57:d1:
18:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:C1:A6:AA:CF:96:A2:4D:7E:66:1B:F7:4D:58:B3:2B:EE:A7:2C:BA
X509v3 Authority Key Identifier:
keyid:76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:80:22:b5:de:17:8e:49:6b:6c:c5:53:4a:dc:6f:18:24:bf:
b0:a8:a0:ed:f8:d3:53:48:3b:1a:11:24:b8:c9:ae:5f:48:67:
69:ea:29:e5:8e:4b:d2:a6:30:c8:0b:c1:44:d8:b3:a3:7a:11:
aa:3b:d8:1a:0b:35:d8:83:4f:b4:ac:ee:be:c6:cf:8d:98:8a:
7d:62:05:13:dc:53:0f:d6:8c:91:5f:7d:d7:85:41:6d:f7:d7:
a5:1e:2d:17:7f:24:a3:4a:a2:c2:80:08:17:7d:c7:8c:57:ea:
77:40:53:54:bb:52:3a:83:24:d6:92:ce:11:13:33:71:fc:71:
a3:fc:a5:cb:97:d4:86:e5:72:5f:bd:9b:7b:62:73:e9:0d:36:
47:76:07:4c:ca:ba:5c:e6:cf:e2:48:9a:d2:31:87:51:b7:f1:
4c:ef:de:2b:ba:ec:d3:59:e2:aa:a8:0c:c9:86:d0:e4:32:94:
a1:20:cb:89:27:34:8c:de:0b:c2:b9:37:f7:b9:12:27:f8:a9:
2e:c4:4d:61:8f:26:0c:45:21:bb:bf:e5:19:21:3d:cc:9c:1f:
41:3e:f8:0b:15:f9:b8:45:7b:13:2d:b2:02:81:0e:f6:30:40:
cf:d0:79:4e:5c:d4:d2:6e:5e:59:36:8b:54:3a:76:86:44:07:
88:09:1b:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 10:18:18 2025 by rpki-client