Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
File: 0ffNDsTDvFTFlDEwfuw27wOCdzM.mft (raw, json)
Hash identifier: BYoZk9i7As7SAPo1812ndnc5QEs/ew5xQdAEXgQabqM=
Subject key identifier: 19:64:2C:71:8B:50:04:9E:1D:C9:67:9F:00:07:0B:19:35:A1:A9:A5
Authority key identifier: D1:F7:CD:0E:C4:C3:BC:54:C5:94:31:30:7E:EC:36:EF:03:82:77:33
Certificate issuer: /CN=d1f7cd0ec4c3bc54c59431307eec36ef03827733
Certificate serial: 01968022149A38C24FD4B57D5DB5B16D6B53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
Manifest number: 1513
Signing time: Tue 29 Apr 2025 06:00:39 +0000
Manifest this update: Tue 29 Apr 2025 06:00:39 +0000
Manifest next update: Wed 30 Apr 2025 06:00:39 +0000
Files and hashes: 1: 0ffNDsTDvFTFlDEwfuw27wOCdzM.crl (hash: bz3WksDKUYsEWra6C68jbfO6AMbL1dHfUQi6vWZByrU=)
2: On0cxXdpQvZ_jJI1Rkh3ZfuLUxc.roa (hash: 9kDdHzwM7pfMm0bFoQEb02mFtUGZEAgcsF0RvK2rnzM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:22:14:9a:38:c2:4f:d4:b5:7d:5d:b5:b1:6d:6b:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f7cd0ec4c3bc54c59431307eec36ef03827733
Validity
Not Before: Apr 29 06:00:39 2025 GMT
Not After : Apr 30 06:00:39 2025 GMT
Subject: CN=19642c718b50049e1dc9679f00070b1935a1a9a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:69:6b:99:5b:17:8e:69:1d:4d:c4:d8:ea:10:
2e:f3:46:d9:66:5a:c3:44:5f:11:56:5e:da:ca:96:
33:69:74:ba:37:f2:42:63:25:a0:f1:61:58:6c:9f:
f4:76:6d:b9:aa:99:37:b6:a7:8e:f1:24:6c:28:7a:
17:a0:a7:7c:ed:18:1a:ce:cb:60:ac:50:4e:55:16:
48:a3:44:7b:35:d8:65:2e:1f:27:3b:36:c9:be:e3:
40:e0:21:d1:48:93:47:ca:ad:e1:bf:6c:48:d0:cf:
12:48:28:0f:16:5a:8f:8e:56:cb:a7:bf:8a:33:d5:
5c:38:ee:b5:07:1d:0e:eb:4b:71:1a:ce:cd:45:06:
b9:0a:b1:ec:74:5c:6c:e6:d0:dc:27:4d:52:f1:a9:
21:65:76:36:79:59:7d:b8:a6:7d:ad:7c:17:4d:3d:
11:2f:44:aa:70:95:b1:02:0a:6a:bc:69:d3:5d:80:
09:80:cb:fd:60:d1:d8:08:93:fe:64:f5:f2:a1:cd:
ed:5e:c1:e0:ae:27:d9:e0:83:79:3e:7b:51:d2:f9:
71:8f:6a:50:c4:cb:47:e7:50:ef:37:c1:80:dc:06:
bf:3e:c4:0a:b8:79:a3:fe:1d:3b:98:86:f2:45:1c:
a4:45:23:2d:de:91:eb:fa:50:52:dd:24:84:d8:4d:
95:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:64:2C:71:8B:50:04:9E:1D:C9:67:9F:00:07:0B:19:35:A1:A9:A5
X509v3 Authority Key Identifier:
keyid:D1:F7:CD:0E:C4:C3:BC:54:C5:94:31:30:7E:EC:36:EF:03:82:77:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ffNDsTDvFTFlDEwfuw27wOCdzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/024d47-47b2-40b5-a2b8-9cb5d88fdd39/1/0ffNDsTDvFTFlDEwfuw27wOCdzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:a3:cb:43:fc:fb:e9:79:ff:bf:23:c7:71:b8:c9:05:45:f1:
f5:6a:1d:61:ca:15:ad:2f:3b:f8:65:d7:10:4b:6b:84:94:04:
3d:0f:02:31:20:e7:80:40:25:be:5f:e5:1d:a8:f9:96:2c:87:
f4:1a:06:be:d3:de:7a:4e:45:5e:aa:a9:b5:9a:fc:2e:c6:46:
2f:b0:1b:b7:94:81:db:c8:53:e1:4b:4e:d3:db:f6:d1:0b:a7:
ae:5d:6f:76:5b:2b:0d:fd:39:bb:40:72:93:c4:86:e1:2f:3b:
03:42:7e:f0:93:de:cb:13:fb:05:3c:79:30:ec:40:b9:02:5b:
0f:df:a5:32:61:9f:75:48:93:75:9d:cb:5e:39:d8:14:f4:38:
f4:10:2a:4c:5b:75:34:74:d7:bd:19:02:ca:74:ad:7b:67:48:
ae:89:7a:b4:5c:36:80:ed:65:d5:f1:9a:1e:cd:6f:76:1a:68:
67:19:81:4c:b2:d7:0f:c1:6a:9b:a3:16:c3:e1:5c:d7:5b:26:
fd:d0:be:c7:77:3e:54:03:7f:14:9d:e9:f1:df:d4:1d:3d:29:
63:96:46:08:ba:4d:5a:4a:13:f1:85:9f:03:5f:41:e3:ba:df:
df:0c:64:04:72:79:ee:9f:7a:b6:fd:f3:f7:b8:09:95:fe:d7:
33:f9:c2:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 09:38:24 2025 by rpki-client