Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft
File: D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft (raw, json)
Hash identifier: KX2yp5RZktkLmqMeHJR/5i6VWW2LJXUzEmDLROG+nP0=
Subject key identifier: 2C:CA:C1:DF:C1:4C:63:60:1D:64:D6:4F:57:3B:6D:42:1B:5C:76:F4
Authority key identifier: 0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
Certificate issuer: /CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Certificate serial: 0196760CDCEF6DCF84D14B5A2F2D0C95C181
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft
Manifest number: 152E
Signing time: Sun 27 Apr 2025 07:01:16 +0000
Manifest this update: Sun 27 Apr 2025 07:01:16 +0000
Manifest next update: Mon 28 Apr 2025 07:01:16 +0000
Files and hashes: 1: 22MFoiE6iwEXKG4ff-0g9Nk9e6k.roa (hash: 8ZAHeiN8JfpnEbf0xNsrPzSUL91MdaXwePhbLZYQBGY=)
2: 63R1CqkRJzCBTqXm_kqr_6UGOC4.roa (hash: QovmpL/thOh4yKhjTn4FNfnRr6OXEgupogya3Oy9KUE=)
3: D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl (hash: a1uPWWlE4uUiq5Q+U5jPnq8Dv+oAapRffp7xQ7S6lqg=)
4: kGkGzImsb5Dv_nGgCWEXgWNc7do.roa (hash: x9SmJ5GmGF/t3I5NSMgnwkUR+oRC+nVpi/mDc40npw4=)
5: qF-2BgBNvB9Rp0K_VFhuwpTNLrY.roa (hash: h4z+iViHaDAdXrYk5TZebHBt4+M5KGpzETHGgdp4Ztc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft
rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:dc:ef:6d:cf:84:d1:4b:5a:2f:2d:0c:95:c1:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f6363d428b7915c108825f09706004b8ea3d4b5
Validity
Not Before: Apr 27 07:01:16 2025 GMT
Not After : Apr 28 07:01:16 2025 GMT
Subject: CN=2ccac1dfc14c63601d64d64f573b6d421b5c76f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:07:06:ef:59:fb:86:53:35:d9:bf:dc:db:b4:
18:13:2f:b3:93:2a:a1:ad:49:48:5d:d8:a5:dd:57:
cd:4a:06:74:f1:3f:39:3d:93:2c:26:79:2e:cc:26:
a3:1a:5b:48:29:c8:a0:96:d6:59:bc:36:47:68:e2:
96:93:9a:85:2a:c4:8d:37:09:b0:7c:28:c4:10:43:
75:a5:13:87:24:5d:ca:0c:b9:aa:55:eb:70:af:ab:
a1:dc:a2:9c:dc:83:86:a7:31:de:61:91:c2:07:f8:
c6:f9:66:87:15:00:4a:26:b7:ad:b4:95:32:a9:fa:
a8:d0:24:7b:4d:57:f8:4c:1f:76:76:b6:f3:af:80:
d6:b7:9f:8a:62:89:07:0f:77:25:99:9c:82:24:1e:
96:6b:5a:a3:eb:a0:4d:89:e6:1d:12:36:fc:b9:b5:
b2:45:59:a1:49:91:3b:c8:c6:9f:9e:e5:d1:a1:a9:
df:e6:b4:e0:c4:01:0f:1a:9a:c1:1b:18:cb:77:73:
38:a1:b9:af:41:ad:66:bb:8a:e9:25:aa:69:24:5a:
59:10:e9:c6:8c:c9:ec:f7:6a:fb:bc:ae:be:22:9e:
8d:9a:b3:6a:e5:70:e4:74:1c:e6:ad:d1:1c:80:54:
4e:3c:c8:d2:f5:dd:ca:db:e0:e5:8f:53:ac:53:87:
d3:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:CA:C1:DF:C1:4C:63:60:1D:64:D6:4F:57:3B:6D:42:1B:5C:76:F4
X509v3 Authority Key Identifier:
keyid:0F:63:63:D4:28:B7:91:5C:10:88:25:F0:97:06:00:4B:8E:A3:D4:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/6becb0-18fd-4add-bb41-2e1c0af4faa4/1/D2Nj1Ci3kVwQiCXwlwYAS46j1LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:88:ba:bc:d9:98:2e:c4:08:c7:8c:95:f4:e9:12:18:cf:46:
5b:4a:ff:72:02:3f:78:4f:9e:92:53:5b:75:40:67:d0:2d:fe:
83:cf:f9:8f:48:87:ae:2b:0f:f8:bc:96:e4:a6:11:28:1f:fb:
f1:6c:8d:af:fd:83:85:e9:bd:61:1f:7f:95:70:dd:ff:15:4e:
bf:4e:f3:cc:7f:07:73:04:e7:b5:36:80:57:4b:9e:a3:52:26:
a8:a3:3b:4a:78:6f:5b:f9:01:4b:ed:eb:28:3d:8f:58:62:6f:
5b:93:a6:fe:1e:8b:07:2b:d7:fc:f3:3e:d7:44:1c:8c:bf:84:
bf:54:92:8a:ab:85:6c:a5:71:80:fe:0c:32:6d:a1:42:b6:94:
0d:a3:1c:02:09:73:77:7a:44:67:eb:25:95:8b:c1:79:dd:41:
7b:a6:22:e2:ac:7f:a8:6b:52:01:36:60:0c:27:8b:e0:bf:e9:
79:63:15:7a:b6:8a:1b:07:e6:a3:cb:f0:e3:7d:f6:eb:ac:6f:
4b:55:31:1f:65:99:df:be:4a:b4:3e:c0:f0:5e:ba:7a:89:31:
63:56:80:91:0f:3e:3a:2f:9b:8e:68:db:00:a2:cf:5f:9c:d7:
b6:f9:cc:e3:9f:e8:41:fc:6f:ce:b6:c0:87:51:38:4d:7d:00:
9c:29:f7:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 09:26:45 2025 by rpki-client