Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.mft
File: 8WmQKta3v0YB7qpecj7yPXD6dxQ.mft (raw, json)
Hash identifier: x81UE85WTYb8jNBUtadW3SEUskdlhPP0loUx2/LGci4=
Subject key identifier: 68:EA:C1:16:C0:40:0F:26:84:F9:9B:94:86:E3:42:5F:EE:7B:50:F1
Authority key identifier: F1:69:90:2A:D6:B7:BF:46:01:EE:AA:5E:72:3E:F2:3D:70:FA:77:14
Certificate issuer: /CN=f169902ad6b7bf4601eeaa5e723ef23d70fa7714
Certificate serial: 0196760CD13D5264562D3191B389AD734C89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8WmQKta3v0YB7qpecj7yPXD6dxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.mft
Manifest number: 150D
Signing time: Sun 27 Apr 2025 07:01:13 +0000
Manifest this update: Sun 27 Apr 2025 07:01:13 +0000
Manifest next update: Mon 28 Apr 2025 07:01:13 +0000
Files and hashes: 1: 8WmQKta3v0YB7qpecj7yPXD6dxQ.crl (hash: ErLO3NbXM24ENavxn66F6BGZmUjiu2XF4EQN199rgnA=)
2: f0RuL1swXlvp41CLCru-Mt1TNyc.roa (hash: rkjC9/AqAR3AXAOW7ubyDoWQhwKzvm+Iu5S5RZdguhM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/8WmQKta3v0YB7qpecj7yPXD6dxQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:d1:3d:52:64:56:2d:31:91:b3:89:ad:73:4c:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f169902ad6b7bf4601eeaa5e723ef23d70fa7714
Validity
Not Before: Apr 27 07:01:13 2025 GMT
Not After : Apr 28 07:01:13 2025 GMT
Subject: CN=68eac116c0400f2684f99b9486e3425fee7b50f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:76:c6:d9:73:3d:72:9f:1f:bf:cf:53:7b:80:
4b:8d:f1:68:2e:20:f3:5b:30:e2:f1:27:68:56:e0:
cc:89:ce:1a:20:a1:f2:20:3a:96:db:8e:89:4f:e8:
52:60:62:71:c6:da:78:d6:fe:cf:17:39:5e:f8:16:
ed:b6:16:fe:a4:46:d4:93:eb:bf:ed:3e:ca:69:4f:
fc:5f:fc:01:19:89:c7:b1:1a:23:0f:6d:c8:29:f7:
40:59:81:43:50:80:d2:fc:38:bd:c1:a1:7c:35:77:
28:72:df:ce:90:4c:f4:16:c3:78:09:ff:ec:a2:35:
65:b5:5e:45:e1:a4:a2:c2:0b:74:d0:67:55:6e:c4:
a1:fa:ab:ba:95:ff:63:53:44:c0:18:76:dc:17:5d:
66:10:63:e5:a4:1b:e4:ff:cb:ea:c4:92:70:ca:58:
85:5f:63:38:25:9f:a1:5a:a5:ef:95:d5:84:eb:d6:
57:d7:35:eb:31:0f:69:5e:7c:be:f4:2b:05:af:6d:
4a:c9:c8:d7:8f:7d:75:6a:07:18:ae:1b:ff:f6:f7:
cd:19:2f:87:4d:19:9f:b4:67:23:18:86:06:2a:1f:
40:bd:eb:71:51:03:d0:86:d1:ff:77:11:63:2b:1b:
64:cd:ee:28:ba:e8:0d:38:d2:66:06:4b:93:38:65:
68:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:EA:C1:16:C0:40:0F:26:84:F9:9B:94:86:E3:42:5F:EE:7B:50:F1
X509v3 Authority Key Identifier:
keyid:F1:69:90:2A:D6:B7:BF:46:01:EE:AA:5E:72:3E:F2:3D:70:FA:77:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8WmQKta3v0YB7qpecj7yPXD6dxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:9e:10:a1:4a:de:19:67:63:83:3f:96:d3:e8:42:c5:3d:8c:
77:33:18:d4:4f:83:72:a5:cd:8a:b4:44:b7:ca:05:4d:e4:6c:
ce:31:a3:59:47:10:50:fa:4b:6f:1e:3b:69:31:5e:e6:b5:bd:
96:e6:3c:21:15:44:0c:0f:41:8a:df:6c:f1:22:9a:fc:cd:f1:
da:6e:20:89:75:7f:b4:db:11:7c:bc:0c:99:8e:56:52:45:66:
89:19:b6:26:54:1c:57:61:e7:1b:51:63:0b:90:3d:10:e5:3f:
76:9a:75:12:53:2c:fe:78:89:32:87:59:2b:b3:bc:f4:7c:74:
48:cd:f5:49:6c:50:c3:09:fc:a6:04:11:9d:e6:57:e0:59:eb:
ea:5a:87:e2:18:37:61:fb:54:50:fb:f8:62:9c:fc:b0:b5:d1:
53:eb:e8:a9:00:9c:40:04:fd:e3:47:1f:ca:ed:cd:21:04:7a:
97:17:7e:2b:08:05:4c:00:28:e3:de:4f:f4:39:94:45:50:7e:
16:b4:63:0a:71:25:95:12:aa:da:38:79:23:8d:13:47:d5:83:
ed:83:06:30:39:d0:45:97:e4:4f:a3:c8:04:af:87:5b:f4:81:
d2:de:e8:b7:a8:df:a0:67:a2:0b:62:bb:93:f6:c4:73:08:79:
3a:60:ae:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 11:32:51 2025 by rpki-client