Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
File: cnFQa_q5Ese4FxuWuFoJmxQObNg.mft (raw, json)
Hash identifier: ASpNTqzatJ6pAVMWJi8+w5uixF6Uz27bQVOnIgt06YE=
Subject key identifier: C3:52:39:FF:39:25:05:51:F6:70:26:ED:30:8A:50:E1:E6:EC:A1:7B
Authority key identifier: 72:71:50:6B:FA:B9:12:C7:B8:17:1B:96:B8:5A:09:9B:14:0E:6C:D8
Certificate issuer: /CN=7271506bfab912c7b8171b96b85a099b140e6cd8
Certificate serial: 0196797B18FF6219A39D060F365394CBCCB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnFQa_q5Ese4FxuWuFoJmxQObNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
Manifest number: 0334
Signing time: Sun 27 Apr 2025 23:00:32 +0000
Manifest this update: Sun 27 Apr 2025 23:00:32 +0000
Manifest next update: Mon 28 Apr 2025 23:00:32 +0000
Files and hashes: 1: 1-t2gcnq_wGKj6Cw9yBTlPkMhqpA.roa (hash: biNGhGH5AKAvuvZqlWI6oNS4u1EhxLRFN8pAccYPS0U=)
2: cnFQa_q5Ese4FxuWuFoJmxQObNg.crl (hash: yIo7Mjcw69Admck7QwMZ2ZfBtiKIU6rRHRIRVSMG/24=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnFQa_q5Ese4FxuWuFoJmxQObNg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:7b:18:ff:62:19:a3:9d:06:0f:36:53:94:cb:cc:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7271506bfab912c7b8171b96b85a099b140e6cd8
Validity
Not Before: Apr 27 23:00:32 2025 GMT
Not After : Apr 28 23:00:32 2025 GMT
Subject: CN=c35239ff39250551f67026ed308a50e1e6eca17b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:aa:25:70:c3:f5:a0:01:b9:f5:31:9e:4c:a7:
3f:80:58:8a:3d:eb:d4:2e:47:d1:9e:9a:d1:7e:da:
0f:e8:65:ac:e0:77:40:2a:1e:d1:42:61:10:cd:dc:
8f:df:ba:13:04:de:5d:c4:d4:c2:eb:a7:0f:e0:6c:
f7:8d:30:a0:38:97:83:6d:b1:41:e4:62:53:b8:21:
5b:0d:c0:25:45:c4:d3:b0:dc:88:1b:e6:76:f3:98:
5c:c2:77:6c:7c:14:f6:b4:7e:29:53:89:bf:a7:64:
fb:5d:4a:a1:09:6f:55:b7:ee:a0:8b:61:b5:ac:18:
30:4a:cf:3f:cb:23:9e:63:a4:54:0f:4c:72:f4:5f:
c9:08:14:3e:fd:5a:65:bf:9b:0c:bb:22:2a:84:0c:
69:4e:76:7b:60:f5:46:ee:20:a3:8a:ef:62:d1:db:
b9:99:8e:ea:58:95:2f:b7:d9:d1:61:f5:e8:c8:54:
77:de:a8:71:7f:0e:a8:ca:22:c7:55:6d:a4:97:4f:
20:ac:58:e4:87:47:48:fc:e5:77:08:15:99:cc:e3:
ea:c0:30:fd:62:20:bd:92:9b:81:5f:01:8a:77:e5:
bd:03:e1:00:00:d0:50:e9:c4:9a:90:13:fc:e0:f4:
2e:a0:91:c1:23:88:dd:09:af:ff:b4:64:a0:12:88:
87:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:52:39:FF:39:25:05:51:F6:70:26:ED:30:8A:50:E1:E6:EC:A1:7B
X509v3 Authority Key Identifier:
keyid:72:71:50:6B:FA:B9:12:C7:B8:17:1B:96:B8:5A:09:9B:14:0E:6C:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnFQa_q5Ese4FxuWuFoJmxQObNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/cd5824-2dde-403e-b2c4-d225032d1858/1/cnFQa_q5Ese4FxuWuFoJmxQObNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:7f:c4:87:5c:5a:01:6b:af:06:1e:de:86:db:49:3e:5f:22:
f5:4e:e7:61:7a:4b:4f:78:0e:b2:26:cb:7d:71:03:db:5c:0a:
03:8b:4c:dd:3e:0e:6d:fd:82:f9:35:74:27:34:d7:e7:87:43:
a0:fd:c0:ba:c1:28:88:ed:16:f6:5d:01:d8:98:8d:f9:81:d6:
30:1e:59:75:ab:73:f5:70:e0:01:2e:18:bc:48:bf:d0:57:a3:
db:2d:ac:e1:bd:ee:d3:ae:bf:a8:e2:d4:0f:4d:9a:17:4b:89:
d8:ea:96:97:7e:b7:9d:e8:33:3e:15:8f:83:5d:9f:6b:99:20:
69:4c:b8:06:76:52:0d:ec:82:b9:26:e2:48:54:0b:95:29:91:
c6:46:c6:6d:25:a2:27:de:8f:f9:0d:df:df:3f:c1:aa:4f:05:
4f:7e:5e:bd:c9:40:60:29:a9:e2:c1:dd:e0:a1:d5:55:3b:dd:
df:02:1a:21:cf:47:6e:79:ca:1c:f6:4f:2a:58:aa:72:51:32:
b5:30:dc:86:5a:c8:48:48:91:8a:62:bb:cd:32:c6:cd:21:61:
ff:6c:24:9f:9e:81:9a:3f:59:38:64:15:19:f6:7f:3e:fe:a1:
67:02:da:fd:4b:98:f2:e2:8d:57:ee:f4:a0:8f:80:3a:c1:53:
e3:91:23:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 01:59:43 2025 by rpki-client