Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/513734-a485-4c28-8aa6-9555d30f6f8f/1/_ToehGW_xN9wCJQ3LQuYCOi2Keo.mft
File: _ToehGW_xN9wCJQ3LQuYCOi2Keo.mft (raw, json)
Hash identifier: oHZReuQP0rw5I5f/JukXd4Zfna8X2l+yV82KuE0FyqY=
Subject key identifier: D4:37:C7:78:46:27:3D:47:6C:99:FA:5F:9D:81:51:BC:02:59:A7:1E
Authority key identifier: FD:3A:1E:84:65:BF:C4:DF:70:08:94:37:2D:0B:98:08:E8:B6:29:EA
Certificate issuer: /CN=fd3a1e8465bfc4df700894372d0b9808e8b629ea
Certificate serial: 0196C427815AF4560C85876893374B83D818
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ToehGW_xN9wCJQ3LQuYCOi2Keo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/513734-a485-4c28-8aa6-9555d30f6f8f/1/_ToehGW_xN9wCJQ3LQuYCOi2Keo.mft
Manifest number: 153B
Signing time: Mon 12 May 2025 11:00:45 +0000
Manifest this update: Mon 12 May 2025 11:00:45 +0000
Manifest next update: Tue 13 May 2025 11:00:45 +0000
Files and hashes: 1: _ToehGW_xN9wCJQ3LQuYCOi2Keo.crl (hash: 3nF4pY7PlZLRkb1rDetcm8MChFTxnRsv+7nVYG7I688=)
2: dQcGvMsR-By8rmf63OPVeRoG1kI.roa (hash: UUTwEFWKXd8UKczRmcM1HwJqB9u2VJL8KBgLmOxv5wQ=)
3: dyesQZ9bNc_exbNvHrSwjqGWp5E.roa (hash: SPDtAhHddz/awjfh8C86lGD8fC38ASE+0AD196Bu4A4=)
4: ysibzsONFpyNAtuXpUifxvA1QaM.roa (hash: zC93yIFX6WjKFEjG+j03DkiiYurXSe8yZy0kiGE5C2E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/513734-a485-4c28-8aa6-9555d30f6f8f/1/_ToehGW_xN9wCJQ3LQuYCOi2Keo.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/513734-a485-4c28-8aa6-9555d30f6f8f/1/_ToehGW_xN9wCJQ3LQuYCOi2Keo.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ToehGW_xN9wCJQ3LQuYCOi2Keo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 11:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c4:27:81:5a:f4:56:0c:85:87:68:93:37:4b:83:d8:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd3a1e8465bfc4df700894372d0b9808e8b629ea
Validity
Not Before: May 12 11:00:45 2025 GMT
Not After : May 13 11:00:45 2025 GMT
Subject: CN=d437c77846273d476c99fa5f9d8151bc0259a71e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:b2:7e:84:8a:f0:76:1d:6c:71:0a:7a:51:65:
f2:78:e1:02:1f:ca:9b:dc:06:8e:3a:2a:c6:aa:dc:
ec:48:44:cf:88:2b:21:69:8a:56:d1:3c:74:f6:28:
41:a0:c3:39:11:1d:75:1c:f8:49:d4:25:95:e3:04:
c0:87:76:4f:22:bc:f7:a6:5a:d8:10:7b:77:51:2f:
42:82:c2:7d:bf:d4:aa:79:8c:25:27:7c:c7:a6:d4:
d1:25:c5:57:6e:03:3e:83:14:26:7b:15:b2:81:6e:
bc:16:35:d2:e4:22:17:7d:1c:8c:7b:32:8a:94:f4:
a3:ee:ed:02:f0:97:53:aa:9e:19:8b:d0:7f:de:ee:
1c:dc:22:6a:14:3a:1d:eb:83:e8:69:c2:a6:86:29:
21:97:a3:66:04:db:88:a0:0c:4a:dc:9b:46:a2:e9:
bb:02:9b:ba:6a:d0:ab:a3:ad:d3:5d:b9:97:5d:8c:
61:dd:47:d5:05:89:bd:07:cd:a0:ed:c9:35:d8:b6:
81:d9:0f:62:a1:c9:b6:ac:46:c8:21:9b:47:37:fc:
2f:88:8d:a2:45:29:0e:7a:42:46:e9:4d:0f:9b:67:
f1:24:20:e1:4b:b8:08:04:18:39:8d:f3:1c:74:69:
cd:ee:ff:c1:16:f2:22:5b:b9:d1:21:cf:16:c0:db:
2d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:37:C7:78:46:27:3D:47:6C:99:FA:5F:9D:81:51:BC:02:59:A7:1E
X509v3 Authority Key Identifier:
keyid:FD:3A:1E:84:65:BF:C4:DF:70:08:94:37:2D:0B:98:08:E8:B6:29:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ToehGW_xN9wCJQ3LQuYCOi2Keo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/513734-a485-4c28-8aa6-9555d30f6f8f/1/_ToehGW_xN9wCJQ3LQuYCOi2Keo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/513734-a485-4c28-8aa6-9555d30f6f8f/1/_ToehGW_xN9wCJQ3LQuYCOi2Keo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:b9:10:89:db:b1:d7:e4:99:ac:07:66:e8:14:b8:43:4c:dc:
c0:9f:9a:90:af:fb:cf:a2:d5:47:7c:62:62:72:0f:17:7e:7e:
67:04:db:32:0d:66:66:3c:2d:86:86:97:0c:36:61:d0:f6:07:
23:e5:32:90:dd:57:16:69:49:fe:47:4b:6b:c3:87:81:d6:49:
39:25:91:6f:04:72:df:53:b8:7f:15:7d:b4:58:b3:36:c1:fa:
39:d8:ec:7e:eb:96:ae:4b:8c:aa:c3:07:9d:76:b9:4a:a1:f1:
ff:f9:c9:cf:88:ea:e3:4d:53:45:b8:e3:28:2a:83:4c:24:b7:
d1:fe:a4:ba:d3:ff:e9:b9:f7:c3:a0:80:12:74:24:fd:23:d8:
71:cd:61:af:2d:05:d1:65:0f:ae:36:46:ef:83:75:4f:fb:39:
24:c3:1c:dd:64:8e:fe:a6:a1:6d:7f:79:d7:72:72:20:f5:c5:
14:05:ff:57:aa:bb:f5:b5:38:09:57:79:a7:9a:95:b8:6c:a5:
5d:fd:4b:36:3e:62:d5:61:16:8b:89:d3:2b:3f:0b:1a:3b:1c:
9a:b2:7f:71:5d:66:23:59:1d:c9:93:7f:2c:ad:11:f2:fd:8a:
bb:96:f6:f2:99:53:e8:8f:c6:40:f9:4c:87:6d:f7:1d:72:dd:
33:bd:03:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 15:40:12 2025 by rpki-client