Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
File: rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft (raw, json)
Hash identifier: /Tyad4s3tC5xj48rglPRm3o2lQQjy8mWS62sm2twaiU=
Subject key identifier: F5:CD:10:07:6C:6D:40:6B:E6:9C:36:FE:6D:AA:A1:89:C1:C4:77:05
Authority key identifier: AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C
Certificate issuer: /CN=acebf396c9adf94f84dc901656e255ce6d50660c
Certificate serial: 01968736D0C4471CB602860FF059E1333529
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
Manifest number: 018E
Signing time: Wed 30 Apr 2025 15:00:38 +0000
Manifest this update: Wed 30 Apr 2025 15:00:38 +0000
Manifest next update: Thu 01 May 2025 15:00:38 +0000
Files and hashes: 1: C4fkDspID27_2W7uJ0bDWTiMbsI.roa (hash: IPmvbCiP1dYquC+xxAe/aHEwDNf0L9S57sM644oyMl8=)
2: rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl (hash: T0oTDVDYgHRjp7RWvY8DNUNMz6SXWGtVIVPmQwkpq/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 13:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:87:36:d0:c4:47:1c:b6:02:86:0f:f0:59:e1:33:35:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acebf396c9adf94f84dc901656e255ce6d50660c
Validity
Not Before: Apr 30 15:00:38 2025 GMT
Not After : May 1 15:00:38 2025 GMT
Subject: CN=f5cd10076c6d406be69c36fe6daaa189c1c47705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:cf:b5:76:79:ba:46:e8:fb:63:5e:41:37:95:
cf:ba:f5:31:e7:0e:d2:17:58:d6:d1:ec:91:2c:db:
09:54:ad:f8:33:04:73:1f:17:b4:02:95:b2:b0:91:
61:a9:46:f8:b5:60:4e:2d:93:c5:f3:05:bd:f3:f5:
51:fc:02:54:41:b6:56:ce:81:66:02:5c:f4:91:91:
bd:c5:81:9d:07:5b:0f:3f:0e:ae:41:f6:6d:32:08:
0d:c6:25:2b:7b:e7:a0:55:18:44:7d:f2:7f:f3:41:
ef:8c:73:85:42:1f:88:f8:0c:04:09:95:6f:39:35:
5e:c8:42:4c:84:89:06:8c:41:77:4e:f6:18:bc:d5:
72:15:12:3a:56:45:b5:a5:92:d3:ac:81:83:a1:87:
fe:b8:da:22:ac:77:e4:9d:0d:31:ff:7a:d1:a3:9c:
e7:da:24:65:56:3f:04:98:18:36:e3:2b:a3:ce:fb:
d0:b4:2a:14:af:a3:88:55:19:d0:63:f2:2e:74:f3:
34:28:30:ee:0a:da:ee:fd:96:05:38:7e:e6:92:c7:
d0:14:ca:a3:8e:d9:34:10:bc:c1:8f:e9:6f:02:67:
91:b2:d5:24:95:86:a2:81:28:53:bc:e2:82:65:7a:
5c:22:63:d5:b7:80:ed:7a:2c:0e:e1:00:96:ce:58:
50:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:CD:10:07:6C:6D:40:6B:E6:9C:36:FE:6D:AA:A1:89:C1:C4:77:05
X509v3 Authority Key Identifier:
keyid:AC:EB:F3:96:C9:AD:F9:4F:84:DC:90:16:56:E2:55:CE:6D:50:66:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rOvzlsmt-U-E3JAWVuJVzm1QZgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/971dc5-14f3-4d95-b0bd-4847d393ab55/1/rOvzlsmt-U-E3JAWVuJVzm1QZgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:e0:eb:b4:fd:b0:d6:34:1c:44:1c:ff:20:48:00:ea:01:c8:
3c:38:1d:1e:83:e9:d8:d5:ae:90:41:f4:53:bc:29:d8:3a:14:
2a:4f:4f:5c:a9:d6:b0:24:68:e1:8b:ca:af:fa:2f:fe:26:f2:
d2:e0:e3:a8:a8:08:41:ac:b6:dc:9e:5a:b4:66:d4:6e:50:e8:
50:84:e9:6e:6a:80:d4:c6:7a:fb:7a:f2:16:6d:0f:eb:7a:d3:
ef:38:5b:89:24:c1:6a:cb:f6:67:1e:4c:a6:71:b1:c0:8d:b3:
2b:9c:77:72:eb:57:cb:3c:55:5e:df:9c:a0:3c:8e:13:9d:e0:
76:7e:4f:50:a2:2d:0d:2d:c2:8d:cf:09:ac:cc:9a:0b:02:ac:
83:70:dc:aa:ff:58:7b:30:08:56:79:7c:a9:9d:ca:5b:ec:e2:
b4:29:de:2e:3d:b6:1b:34:54:b5:c4:74:78:98:b3:e0:a1:f2:
ce:13:bf:74:fd:e3:07:16:11:b7:08:25:63:42:f5:43:6d:10:
0e:67:68:85:58:9c:33:f0:fe:90:45:0b:90:84:ef:f5:02:08:
ca:0a:7f:2e:9f:33:58:7f:c6:d2:8f:9f:d3:56:8a:7a:e2:4c:
b5:37:c1:e6:78:5e:b3:3f:89:04:8b:cb:6b:1f:8f:11:75:f4:
93:7a:d1:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 20:29:45 2025 by rpki-client