Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft
File: cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft (raw, json)
Hash identifier: ghbAk4J+iSuApOPenuPj1rbIhJfTkM2LgcTpTO98eGQ=
Subject key identifier: 8A:35:96:04:54:5D:15:BA:8C:9E:8A:DA:04:B2:7A:2E:06:3C:1C:7E
Authority key identifier: 71:B2:B0:4F:F9:B7:2E:BF:BE:B9:18:38:52:33:E0:28:C8:F3:FD:F1
Certificate issuer: /CN=71b2b04ff9b72ebfbeb918385233e028c8f3fdf1
Certificate serial: 01967EA1433DADAC1583B7DB79279FC01D6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cbKwT_m3Lr--uRg4UjPgKMjz_fE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft
Manifest number: 0657
Signing time: Mon 28 Apr 2025 23:00:19 +0000
Manifest this update: Mon 28 Apr 2025 23:00:19 +0000
Manifest next update: Tue 29 Apr 2025 23:00:19 +0000
Files and hashes: 1: cbKwT_m3Lr--uRg4UjPgKMjz_fE.crl (hash: Bl3t+MaYqxo972OaO82iMetGgrktmhQFTv5icMvfqoQ=)
2: nA6xks4oQE9N25Xp7uQGkNyo-7Y.roa (hash: F+E2ylwyKz3DO5lKloF7/MKQO4W4GhOJOnJmcBpu/7Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cbKwT_m3Lr--uRg4UjPgKMjz_fE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 22:36:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:a1:43:3d:ad:ac:15:83:b7:db:79:27:9f:c0:1d:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71b2b04ff9b72ebfbeb918385233e028c8f3fdf1
Validity
Not Before: Apr 28 23:00:19 2025 GMT
Not After : Apr 29 23:00:19 2025 GMT
Subject: CN=8a359604545d15ba8c9e8ada04b27a2e063c1c7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:6b:4b:2b:b6:30:8c:b8:66:2e:42:a0:a4:6e:
c3:16:c3:31:6b:e8:4a:ed:7d:71:82:00:4f:f1:10:
05:fe:f0:72:60:50:9d:08:94:50:c5:1a:52:b5:42:
d9:28:2f:b2:59:fd:94:b3:43:b3:2b:71:8d:20:9f:
45:bb:5f:03:49:27:5b:40:f8:19:d7:22:c1:52:00:
ac:09:4f:b6:3d:43:90:77:d4:5b:3a:ac:c4:94:83:
ba:41:46:e0:48:1b:51:bb:54:73:82:64:94:02:72:
a9:aa:ad:cb:38:f3:df:5d:c7:06:86:7a:bf:aa:9d:
e8:f2:c5:4f:09:d2:34:e6:6e:85:6c:74:97:e1:48:
b5:f6:c3:e6:c5:17:8b:23:67:67:4c:22:38:e8:2b:
2d:07:29:a7:f5:0a:c0:b1:46:19:e3:be:d6:ab:a7:
ec:ac:98:c3:c1:ee:e2:53:0d:2f:72:23:95:80:df:
6e:28:43:23:e2:19:66:42:23:dc:b8:d2:40:b8:7d:
c9:1d:f1:a2:52:23:5f:4c:d7:22:ff:af:4b:65:04:
75:e3:1c:63:5b:53:e4:7a:73:97:0b:a8:e3:b0:cb:
e0:29:c6:21:68:48:fb:76:b9:b5:04:54:74:4e:c1:
bb:87:65:38:9c:50:24:ee:59:88:06:37:2a:bb:21:
61:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:35:96:04:54:5D:15:BA:8C:9E:8A:DA:04:B2:7A:2E:06:3C:1C:7E
X509v3 Authority Key Identifier:
keyid:71:B2:B0:4F:F9:B7:2E:BF:BE:B9:18:38:52:33:E0:28:C8:F3:FD:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cbKwT_m3Lr--uRg4UjPgKMjz_fE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/87e666-7248-4240-b4e4-959559b96f87/1/cbKwT_m3Lr--uRg4UjPgKMjz_fE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:d0:18:b9:67:91:05:46:57:61:f0:40:23:92:42:13:2d:fe:
a4:9f:71:63:a6:e9:a9:8b:68:1c:aa:8a:40:62:4e:73:0a:bb:
25:1c:88:0e:86:58:a3:03:77:aa:90:f3:15:ff:49:9c:57:39:
49:9b:ea:93:41:ae:96:2d:0b:77:a2:e8:51:b4:f9:ab:68:d8:
30:8b:8c:e2:8a:53:e8:5b:0d:ec:4a:b5:8b:88:a5:40:b3:2c:
a2:85:62:21:1e:da:ec:bb:ee:23:08:e2:d4:49:e0:12:d1:d7:
3f:e0:e8:f2:ef:8b:a0:8d:5a:f4:58:c6:35:72:4f:94:a4:50:
b8:de:13:59:d5:8a:14:46:7f:ec:fb:7e:24:a2:fc:c2:d5:e9:
0e:ba:6c:f7:40:35:34:94:3b:25:4e:cb:a5:02:4d:27:50:bd:
be:86:f4:1a:08:26:59:01:a5:c8:1e:08:a9:93:b9:ed:bf:3a:
42:05:28:68:65:81:a3:d2:cc:93:3d:f7:5a:c7:91:ed:fc:5e:
82:eb:c6:24:64:e9:76:fd:05:51:05:95:72:71:cd:56:a6:2d:
85:b6:46:2c:17:13:2f:cd:9c:36:d6:35:dd:31:43:8b:38:3b:
18:97:4a:28:0e:dc:15:d2:8f:85:4b:89:ec:c8:6c:85:cb:f5:
45:ec:00:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 05:20:40 2025 by rpki-client