Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
File: rWUjcvDl0WnCAPfR0IDoVw_-23E.mft (raw, json)
Hash identifier: dbyZMFDDzIwTkpjcyR5hWEJlYi1B8Exn3nq3xCuThfU=
Subject key identifier: 36:5F:E1:35:BA:35:05:3C:33:A1:C6:4A:D4:43:B9:56:BB:25:CF:08
Authority key identifier: AD:65:23:72:F0:E5:D1:69:C2:00:F7:D1:D0:80:E8:57:0F:FE:DB:71
Certificate issuer: /CN=ad652372f0e5d169c200f7d1d080e8570ffedb71
Certificate serial: 01968359C4DEB8F3FD0B28A91DF7CCDA7259
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
Manifest number: 0281
Signing time: Tue 29 Apr 2025 21:00:20 +0000
Manifest this update: Tue 29 Apr 2025 21:00:20 +0000
Manifest next update: Wed 30 Apr 2025 21:00:20 +0000
Files and hashes: 1: nQ9AG6h0t4BBBHaY1oIQ2Z7HXiE.roa (hash: bmhEBNk6LesEwcu8xwGODwFl5oPTmJlYZFKxsnvzgRU=)
2: rWUjcvDl0WnCAPfR0IDoVw_-23E.crl (hash: q9aMpk9dL9VNg1bfHd/vh18jHqqXgDPqOezCTnUor1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:59:c4:de:b8:f3:fd:0b:28:a9:1d:f7:cc:da:72:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad652372f0e5d169c200f7d1d080e8570ffedb71
Validity
Not Before: Apr 29 21:00:20 2025 GMT
Not After : Apr 30 21:00:20 2025 GMT
Subject: CN=365fe135ba35053c33a1c64ad443b956bb25cf08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d8:87:dc:29:08:2a:66:22:94:d1:b6:19:20:
2a:24:2e:29:4b:2d:98:e1:bb:7c:2d:e7:c3:11:42:
24:5a:fd:40:ac:a5:48:24:32:70:0f:4d:41:26:f1:
3b:bf:07:dd:6f:bd:13:f9:28:b5:82:19:2f:01:b2:
4d:9c:8f:de:32:db:32:78:e3:9f:c6:3d:a6:89:62:
ab:55:fd:3e:5d:c3:6c:97:4d:8b:ac:60:6f:e8:a3:
11:15:6a:25:0c:6a:0e:db:1f:be:d0:51:2e:d5:29:
24:34:fc:47:e5:c3:b5:4b:ce:68:81:2d:0d:84:c8:
c9:2d:84:98:5e:bb:05:3d:ad:3a:d5:59:cd:fd:e5:
94:36:ea:0a:2c:9f:71:7c:89:01:76:ee:0d:74:6c:
17:a3:fd:83:b9:ca:e7:4b:5f:8e:4b:70:40:98:d9:
d0:bf:ed:d8:33:5c:5f:bf:1d:7a:8c:b1:41:c3:4c:
a5:f3:56:bf:55:6c:1f:9b:09:1b:a9:c7:35:7c:13:
22:52:5c:a2:aa:5d:a1:66:4d:ca:7f:89:40:0f:97:
3a:4d:34:1e:f9:4b:91:6f:2c:49:0f:94:77:86:e9:
a3:02:95:ca:21:a0:59:06:32:ce:01:bd:42:b5:59:
f4:9f:63:b1:f2:ba:a9:1c:80:1f:7a:50:f7:d7:45:
46:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:5F:E1:35:BA:35:05:3C:33:A1:C6:4A:D4:43:B9:56:BB:25:CF:08
X509v3 Authority Key Identifier:
keyid:AD:65:23:72:F0:E5:D1:69:C2:00:F7:D1:D0:80:E8:57:0F:FE:DB:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:5d:a8:94:c2:22:89:bd:22:75:34:22:8d:52:e0:3d:d9:18:
cb:05:74:b5:23:c7:52:63:1b:cf:1e:bc:32:8c:09:5b:15:6e:
0a:49:36:be:ba:a6:b8:ce:5a:51:65:e2:97:70:1c:42:0b:45:
5b:eb:e6:fe:d7:5d:f9:84:01:f7:cb:84:63:47:72:35:12:c0:
71:ff:5d:c7:32:33:67:da:6e:d1:d9:dc:0c:29:28:66:21:6f:
6a:a9:6a:23:68:63:38:ac:31:04:0a:46:93:9b:1b:2f:08:f3:
74:41:c8:b1:70:4c:d3:c8:9c:c0:8c:55:7e:17:73:ec:6d:66:
b8:81:cf:47:40:6b:8a:b9:f8:98:9a:a9:78:3b:e1:bb:45:1c:
17:65:43:2e:a8:55:87:be:65:6b:13:c6:8f:de:f1:37:8c:22:
84:29:db:e7:66:56:d3:1b:f4:7f:ca:f4:a5:4c:03:8e:e1:4c:
cc:41:08:b5:4f:e7:a6:54:6c:53:45:c5:e8:a3:1a:0f:29:77:
e5:75:9b:a2:56:52:a4:45:bf:ed:5a:96:18:81:8d:8d:56:d8:
00:cf:87:53:fc:26:21:90:7c:0d:a0:4d:9b:2d:41:b0:e1:72:
2d:de:f2:c0:6f:21:0a:04:50:69:15:b6:7a:3e:11:2b:cd:73:
a8:17:71:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 22:27:52 2025 by rpki-client