Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
File: 3YXca2FDoX_rSYIOpSAEiVj0itw.mft (raw, json)
Hash identifier: w18rAmZJpYo41ISJGz4brDZv5KaROn0I5TFmFqfFdFs=
Subject key identifier: 91:18:35:85:D2:86:07:34:CD:79:CC:1B:8B:B8:3C:A3:89:F1:51:73
Authority key identifier: DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
Certificate issuer: /CN=dd85dc6b6143a17feb49820ea520048958f48adc
Certificate serial: 01967643447311831EA944E893F2ED7C2C92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
Manifest number: 0FA9
Signing time: Sun 27 Apr 2025 08:00:41 +0000
Manifest this update: Sun 27 Apr 2025 08:00:41 +0000
Manifest next update: Mon 28 Apr 2025 08:00:41 +0000
Files and hashes: 1: 3YXca2FDoX_rSYIOpSAEiVj0itw.crl (hash: rMElWTBY7AiCHZVmw5ZfV1Gkka6iGlYGJ1qt4YR7eUM=)
2: V06h50tDruiBUg9uiKF_DSq52w8.roa (hash: A6FA8GQqXA3RMWxT5r25HFVTJrUQ2PZEYKc6YcmeWfw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:43:44:73:11:83:1e:a9:44:e8:93:f2:ed:7c:2c:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd85dc6b6143a17feb49820ea520048958f48adc
Validity
Not Before: Apr 27 08:00:41 2025 GMT
Not After : Apr 28 08:00:41 2025 GMT
Subject: CN=91183585d2860734cd79cc1b8bb83ca389f15173
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:31:8e:9e:be:48:4b:e0:8b:1b:e6:47:80:6c:
c8:35:40:07:60:b7:5c:61:bd:e3:9c:d3:17:85:93:
ae:e4:72:e1:98:93:54:96:f5:8f:21:ac:fd:db:d6:
8e:90:0d:8f:bb:77:31:8d:f6:22:6f:a8:1e:c3:8d:
59:04:77:a8:28:08:20:fd:06:5c:44:1f:c7:34:c7:
37:fa:ae:8c:53:f2:f7:bf:7d:62:1a:67:1b:ce:72:
6b:12:08:ab:f0:3a:92:38:59:17:41:3a:a7:9a:d2:
13:bf:5c:7f:65:a1:9b:5b:69:62:83:34:dc:81:94:
5b:b7:34:35:b0:5e:6b:9e:52:ce:5b:c2:e4:63:94:
69:1f:69:71:c5:6e:97:d9:01:7a:56:e0:90:b5:22:
93:e4:cf:6d:50:4e:be:06:ab:61:d2:06:43:ea:1f:
30:ef:74:c3:19:8f:60:88:9e:2c:b9:3f:ee:26:c9:
b0:e7:a3:f3:ad:75:47:f3:e6:ae:14:70:95:dd:99:
00:a9:6c:d1:95:a4:b5:a9:a1:c7:39:0b:cc:22:9d:
df:f9:06:ba:bb:d1:d9:44:bf:46:88:5a:48:cf:85:
35:f0:48:0e:d7:99:a8:92:98:96:a4:bb:6b:8b:b8:
bc:9e:36:f0:03:58:f6:ef:79:1e:37:e5:b1:af:82:
39:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:18:35:85:D2:86:07:34:CD:79:CC:1B:8B:B8:3C:A3:89:F1:51:73
X509v3 Authority Key Identifier:
keyid:DD:85:DC:6B:61:43:A1:7F:EB:49:82:0E:A5:20:04:89:58:F4:8A:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YXca2FDoX_rSYIOpSAEiVj0itw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2a1d35-6e31-40e6-94b4-4ac856a8182d/1/3YXca2FDoX_rSYIOpSAEiVj0itw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:db:b7:54:8f:3c:27:17:35:79:8a:ca:21:4e:44:4e:79:f6:
0d:ed:f9:94:df:a5:1e:f6:f1:77:56:25:76:48:6c:b4:b8:19:
07:c3:eb:b8:ad:9b:0e:f1:b6:ea:f6:1b:f7:76:07:d3:22:59:
c3:44:67:cf:9a:9e:85:7f:2e:e6:9e:63:20:8e:bb:dc:ce:47:
36:13:41:f3:74:0d:a3:b1:b1:b1:9f:08:05:3b:4c:a5:d9:61:
21:79:11:a5:58:ee:ca:b1:a4:79:d9:f6:78:6d:e3:fb:af:71:
2e:8a:d3:f8:3f:dc:0e:de:38:25:48:56:97:aa:2d:e7:fa:47:
07:b1:a7:75:33:f4:3c:50:3b:3d:a5:23:21:39:0b:36:fc:49:
44:08:c8:4e:37:6a:85:30:d7:04:e6:d0:94:69:22:1f:13:5b:
d2:9c:8b:59:21:0c:c3:d6:5f:8c:c0:f1:b7:0c:1c:cf:4c:4d:
89:d2:e9:e2:72:6e:e6:3e:a5:e0:14:d0:f6:14:5e:0c:ee:bb:
9e:b0:ff:0f:ce:fd:54:b9:08:e1:ac:e0:d5:71:f4:ec:b2:e9:
33:5d:e8:60:3d:cb:3d:e4:43:0a:70:1f:4c:1f:46:f4:e1:98:
02:1d:d5:26:c6:7b:88:d9:a3:20:cc:96:77:7b:6f:9d:ff:e6:
86:cb:a7:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 13:42:11 2025 by rpki-client