Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft
File: st8A84zO2SGXmTB2yzaFvzK8Xmk.mft (raw, json)
Hash identifier: SthhCi36kbL6eHzY2K46TGHNNW2CqaXybKpXF+I/mGc=
Subject key identifier: 7E:A0:56:DB:42:B7:C7:C1:F9:DA:9F:2C:95:C3:F3:21:5A:2C:AC:0D
Authority key identifier: B2:DF:00:F3:8C:CE:D9:21:97:99:30:76:CB:36:85:BF:32:BC:5E:69
Certificate issuer: /CN=b2df00f38cced92197993076cb3685bf32bc5e69
Certificate serial: 0196843581E356EFB63FBF13AD4555E67FC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/st8A84zO2SGXmTB2yzaFvzK8Xmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft
Manifest number: 107F
Signing time: Wed 30 Apr 2025 01:00:21 +0000
Manifest this update: Wed 30 Apr 2025 01:00:21 +0000
Manifest next update: Thu 01 May 2025 01:00:21 +0000
Files and hashes: 1: gbTQ5TFLqYdv3bxMQXRQSRcMIoc.roa (hash: rJ5djAjgxTYzs8j0EQsFjkKUrs3CGg0sgiibLKW68Ck=)
2: st8A84zO2SGXmTB2yzaFvzK8Xmk.crl (hash: LgPIblW7FGAsRUO+ZTgJYN7PP0geI1qUOZsKmV6ci3k=)
3: wu3L_A3dWSKUeaU4lbLH5tQFGhs.roa (hash: QMvHM8N7K9OdWcNx9rJFFp+Z7jXiktM21WFlvU4ZxMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft
rsync://rpki.ripe.net/repository/DEFAULT/st8A84zO2SGXmTB2yzaFvzK8Xmk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:84:35:81:e3:56:ef:b6:3f:bf:13:ad:45:55:e6:7f:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2df00f38cced92197993076cb3685bf32bc5e69
Validity
Not Before: Apr 30 01:00:21 2025 GMT
Not After : May 1 01:00:21 2025 GMT
Subject: CN=7ea056db42b7c7c1f9da9f2c95c3f3215a2cac0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cf:7b:3c:c6:22:a5:8a:8f:64:b4:a0:95:e2:
d9:57:62:12:42:89:cb:a8:52:30:08:38:7b:48:0b:
a9:4d:63:1e:aa:e1:0d:21:63:89:a5:d8:67:52:3c:
48:c5:87:1b:62:d0:51:c6:07:5d:d4:b3:18:c9:44:
c1:ea:f2:6b:0c:ee:aa:2c:3f:87:96:cd:09:9b:58:
77:45:27:55:7a:8f:29:8a:05:a9:36:5b:9c:5c:a0:
ca:f6:c4:9a:ff:16:df:46:7d:3a:84:d9:35:a1:01:
a7:21:d1:e9:0a:07:b3:40:68:89:ac:9a:13:67:d5:
3a:75:2a:1d:ff:b8:47:e9:65:65:6e:30:40:dd:9f:
58:0f:ba:bd:1c:ba:b1:b6:d3:5c:fe:02:4d:06:09:
7b:6d:ce:97:79:23:97:64:0e:85:c3:a3:95:90:ab:
00:cb:d9:85:15:26:b7:0e:01:57:1f:36:a3:8b:9d:
d7:bc:21:4b:23:09:0a:52:0f:9b:f4:33:95:74:40:
c8:45:b9:a0:6d:dd:a8:1d:e7:43:a1:a2:21:74:ee:
86:b9:ca:3f:a1:b5:23:10:4d:d2:2c:b1:70:7d:b3:
55:81:60:ea:4c:67:29:f3:a8:9b:8d:9e:94:48:3f:
cd:61:d3:a5:1a:17:fd:03:25:4f:da:2c:dd:ad:c6:
ac:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:A0:56:DB:42:B7:C7:C1:F9:DA:9F:2C:95:C3:F3:21:5A:2C:AC:0D
X509v3 Authority Key Identifier:
keyid:B2:DF:00:F3:8C:CE:D9:21:97:99:30:76:CB:36:85:BF:32:BC:5E:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/st8A84zO2SGXmTB2yzaFvzK8Xmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/706fa8-52a2-4ed2-a2e1-04e4e4dc5fba/1/st8A84zO2SGXmTB2yzaFvzK8Xmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:7c:83:8a:6f:5e:f6:35:d8:55:78:59:d6:53:44:c9:54:d9:
40:cf:66:84:59:8c:1c:6e:74:e6:f5:55:57:f6:f5:25:5c:72:
ca:8f:45:cf:7f:c9:f7:1b:1a:c2:1a:d3:5a:ca:fc:7b:74:d3:
92:ee:f3:ab:aa:1b:2c:1b:76:1d:c9:53:92:b6:0d:e9:c5:fe:
03:7d:35:8a:c2:ac:f6:d5:4a:68:f6:b2:28:fd:ae:dc:c2:69:
93:e8:36:be:f1:70:d5:d8:06:ea:ac:7c:8b:fd:20:0d:6d:f6:
16:72:73:67:d6:14:0e:e5:fd:fc:a2:df:f8:df:e2:85:09:fa:
05:20:8c:d4:cb:58:8c:b1:9e:56:76:f3:82:34:c4:7c:a0:dd:
2c:73:ae:7d:6c:ba:54:2e:fb:62:d1:1b:94:cd:a7:4c:84:93:
78:3e:a1:25:99:c5:03:9a:f7:18:7d:e7:37:c6:4f:96:be:a9:
2b:ec:da:da:36:17:86:ff:0e:ff:61:5e:58:47:bb:e8:9b:b8:
26:15:5f:ff:37:9f:69:72:7a:fb:56:17:af:3d:ef:18:12:e7:
e9:0e:cd:03:eb:7e:d3:cb:7a:01:dd:a4:c2:2c:3b:d7:2c:64:
a7:ba:c2:13:fa:57:7b:88:43:85:a9:f1:5b:c3:08:74:34:0d:
a9:69:24:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 04:36:38 2025 by rpki-client