Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/sQeA3za1uUL2YOQDov5ginXk5X0.mft
File: sQeA3za1uUL2YOQDov5ginXk5X0.mft (raw, json)
Hash identifier: 0GMosNmHTe5sjxi6m+pPg7bnmH5riWePpQsKncYyKOY=
Subject key identifier: E9:D8:7C:D1:10:85:D6:1F:7B:A6:26:FA:D6:D8:4A:EC:DC:ED:7A:D7
Authority key identifier: B1:07:80:DF:36:B5:B9:42:F6:60:E4:03:A2:FE:60:8A:75:E4:E5:7D
Certificate issuer: /CN=b10780df36b5b942f660e403a2fe608a75e4e57d
Certificate serial: 019674F9A63CA9F9EFEC6CB28796D3DE25F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sQeA3za1uUL2YOQDov5ginXk5X0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/sQeA3za1uUL2YOQDov5ginXk5X0.mft
Manifest number: 14A0
Signing time: Sun 27 Apr 2025 02:00:40 +0000
Manifest this update: Sun 27 Apr 2025 02:00:40 +0000
Manifest next update: Mon 28 Apr 2025 02:00:40 +0000
Files and hashes: 1: dc2u-8bkbufd4cw_d9F3xDaopuc.roa (hash: Umyl5IxYyTMcYEGSrVHWEMRSVhNtzrLiUEYgvIObXig=)
2: sQeA3za1uUL2YOQDov5ginXk5X0.crl (hash: QmZZ47hh8lDKnh5RIZV/Qel9PLJP8OeFMjMEXZfZlB8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/sQeA3za1uUL2YOQDov5ginXk5X0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/sQeA3za1uUL2YOQDov5ginXk5X0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sQeA3za1uUL2YOQDov5ginXk5X0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:f9:a6:3c:a9:f9:ef:ec:6c:b2:87:96:d3:de:25:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b10780df36b5b942f660e403a2fe608a75e4e57d
Validity
Not Before: Apr 27 02:00:40 2025 GMT
Not After : Apr 28 02:00:40 2025 GMT
Subject: CN=e9d87cd11085d61f7ba626fad6d84aecdced7ad7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a7:bd:1f:fa:2a:32:5d:29:b3:4b:2f:70:9a:
87:c3:32:63:33:af:2c:e5:b3:f9:03:41:bb:09:81:
a2:a4:bf:b8:22:8c:7a:57:bb:7f:5a:87:98:2a:32:
1f:f7:e8:52:00:69:7a:4a:4b:5d:31:5a:de:18:c9:
1f:14:fc:e0:2d:2d:24:3f:74:61:fa:be:10:84:f3:
de:a3:71:aa:d4:2d:2c:c5:e9:0f:0a:7b:18:d8:ce:
10:f7:96:86:51:3a:16:02:bc:2d:23:f2:88:4c:1b:
4a:ff:7b:bd:0a:3e:25:af:83:f3:2f:e4:9f:c3:a7:
38:ca:03:84:e7:12:9b:0c:51:dd:e6:db:59:08:92:
43:81:8f:6e:38:2a:f0:dc:a1:f8:7a:f8:2c:7f:ff:
89:35:ec:f4:93:68:a2:d5:76:00:5f:ab:a6:f7:13:
b5:f6:cb:3a:4c:c5:2c:cb:74:c8:9f:be:2a:df:9d:
88:6f:2b:4f:8c:7e:81:c1:05:9d:72:35:6c:90:15:
4b:88:ff:31:8b:c1:6d:96:6d:0e:35:44:25:03:bc:
78:8e:a3:2a:c9:4d:32:f0:f0:34:c9:91:2c:7f:36:
f2:41:4b:15:e0:b1:91:fb:0e:17:54:dc:b6:ee:3b:
36:d7:50:df:9e:27:38:d1:db:44:ca:62:e2:7e:b7:
81:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:D8:7C:D1:10:85:D6:1F:7B:A6:26:FA:D6:D8:4A:EC:DC:ED:7A:D7
X509v3 Authority Key Identifier:
keyid:B1:07:80:DF:36:B5:B9:42:F6:60:E4:03:A2:FE:60:8A:75:E4:E5:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sQeA3za1uUL2YOQDov5ginXk5X0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/sQeA3za1uUL2YOQDov5ginXk5X0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/sQeA3za1uUL2YOQDov5ginXk5X0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:96:ce:24:be:ce:1a:5f:30:11:26:68:8a:10:2f:15:bc:82:
f9:23:1a:ac:21:1e:fb:62:1f:09:31:c1:17:f6:7c:0a:43:ad:
f8:81:d6:27:5c:06:79:05:03:e5:f0:bf:33:25:99:45:40:1c:
f6:8b:2d:cf:72:17:e2:6f:04:ac:c1:17:07:39:ca:70:19:58:
00:22:59:0d:f2:09:e5:f5:e1:52:16:71:73:71:4c:a3:e9:15:
1c:d2:8a:21:7d:6f:bf:a1:4d:be:b1:d6:d7:fd:bc:10:e6:f5:
99:41:25:2c:dd:c9:83:5f:6a:fa:e2:b8:d5:a6:37:b3:34:15:
95:1e:af:32:23:31:ac:80:52:29:e5:2a:3b:d3:6b:ac:1e:3b:
a3:a9:2c:51:c9:4b:53:75:9c:0a:41:53:c6:20:90:32:a8:5e:
b5:c7:52:19:bc:c8:af:22:33:a6:d1:7b:88:4c:0f:80:8e:fe:
09:dd:84:8c:df:e0:bc:b4:bb:67:48:6f:3b:f7:af:04:37:38:
df:da:8c:88:36:2a:08:11:1c:15:d0:b4:9e:db:ef:5d:cf:13:
17:b3:3a:8d:c7:0b:cd:da:98:57:ce:9b:cf:b4:7d:71:52:f4:
69:5d:47:54:a0:6b:a9:7a:d0:e1:ea:51:82:ff:13:30:fd:16:
ed:7b:a4:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 09:16:05 2025 by rpki-client