Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
File: p2i77FqeEb-9rthKqNOqzaKYifk.mft (raw, json)
Hash identifier: TMlDxqBPXtj/WFHxHgI3MORJluDReEDXgmMzO2MR+5g=
Subject key identifier: B2:75:95:1F:50:82:14:17:5D:66:F5:32:09:3A:FB:FA:71:0C:9A:4B
Authority key identifier: A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
Certificate issuer: /CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
Certificate serial: 01967C7C770688203DCB896A640156F3E719
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
Manifest number: 1512
Signing time: Mon 28 Apr 2025 13:00:53 +0000
Manifest this update: Mon 28 Apr 2025 13:00:53 +0000
Manifest next update: Tue 29 Apr 2025 13:00:53 +0000
Files and hashes: 1: OgYJc9A280CynujJhuzMa0BI-4Q.roa (hash: MiNQpI1WP7M4DChXTEl99hg+v/DrVYZq8o6Yc8vjTOw=)
2: p2i77FqeEb-9rthKqNOqzaKYifk.crl (hash: uFrn5OKHZOcDT0sujF0Gcz4rr22ruZA3Qq8tn+Wo16s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 13:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:7c:77:06:88:20:3d:cb:89:6a:64:01:56:f3:e7:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
Validity
Not Before: Apr 28 13:00:53 2025 GMT
Not After : Apr 29 13:00:53 2025 GMT
Subject: CN=b275951f508214175d66f532093afbfa710c9a4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e5:59:12:3a:b2:e3:96:b3:46:c8:50:73:92:
c5:6f:4d:d8:4a:87:8b:d8:72:92:e3:6b:b4:c4:83:
f4:8d:1b:8f:23:fe:24:6a:65:02:14:de:54:cd:45:
04:fd:1e:09:9d:9e:d4:e3:d9:45:51:d6:f0:c3:f3:
85:eb:51:42:1d:15:82:f7:5d:58:15:8c:e4:8a:4a:
77:63:43:15:7b:5e:df:85:98:a8:fc:65:56:5b:06:
06:43:9e:79:66:4b:5c:1a:a0:f1:7d:cd:18:5b:f6:
09:10:bc:bc:33:29:df:f7:9c:e9:a2:b7:ab:8d:53:
2e:16:68:af:27:2e:77:a2:0d:42:c1:9e:e6:27:33:
2e:a9:6a:6f:dd:c3:59:7c:bb:ed:71:c1:ad:fb:6c:
a7:87:3d:1c:cd:c9:f0:7d:bd:5f:94:5e:70:a9:80:
55:c9:44:78:92:c7:10:64:73:f1:1e:47:7a:80:40:
dc:79:b4:95:03:f4:dc:09:85:24:0b:48:96:66:e6:
ff:a9:d5:81:d8:3b:28:64:f1:2f:32:60:a2:7b:2a:
57:c9:74:bf:25:b8:31:51:ef:91:03:7f:0e:e7:9e:
b7:26:6d:80:d8:f5:96:fc:ed:de:b6:57:05:d2:0a:
b2:61:e1:b1:bb:60:f0:12:dc:34:a9:30:44:2b:0d:
3e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:75:95:1F:50:82:14:17:5D:66:F5:32:09:3A:FB:FA:71:0C:9A:4B
X509v3 Authority Key Identifier:
keyid:A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:81:c4:06:1e:fc:ad:27:26:7a:fb:2a:9b:6e:78:89:7c:72:
d4:89:60:d0:82:8e:54:1d:6b:3e:84:a1:31:40:25:42:72:02:
b0:93:f2:e1:ba:78:97:aa:2e:e9:17:41:76:e2:6a:86:86:3f:
82:e5:c6:34:56:31:83:eb:17:17:d5:83:f8:0f:7d:bb:8f:21:
a5:40:e9:a5:7e:00:18:27:b7:2e:d1:0f:0c:31:78:20:3d:4c:
7d:25:64:da:b8:73:75:b4:b4:e4:df:a7:91:1b:d5:7f:78:4f:
e0:97:bd:61:c9:68:15:61:bd:d5:58:9c:fc:f4:64:77:38:48:
f2:31:38:96:e8:13:6b:7a:c8:4b:51:14:4c:bd:a3:bf:26:c6:
c7:5d:1a:bd:48:fb:f5:ae:60:34:95:1b:7d:ce:e5:b1:3f:28:
7a:c2:4a:16:69:d4:0d:8f:c3:c1:38:a9:4d:f9:28:69:22:be:
41:ed:b4:f0:6e:fa:9f:63:61:5f:5b:9d:63:47:59:21:f1:3b:
d2:10:06:37:8c:3b:5f:78:87:9d:92:8e:2e:be:6c:91:13:0e:
4f:87:93:8c:bd:ce:d1:43:6e:f5:6c:57:a2:98:cf:b3:28:65:
a1:74:de:85:93:ef:91:b0:7d:ba:1c:28:2f:c5:75:3c:2d:a8:
c9:3c:a2:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 20:01:43 2025 by rpki-client