Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
File: cPaM3tOePsVM7iIzJS7zk3upgo0.mft (raw, json)
Hash identifier: dFfLGZo+2VCm2dHgefOvHf2eqPR7sWDBII+Zano6J/Y=
Subject key identifier: AF:D8:C5:01:66:74:59:64:86:1F:48:A4:98:B9:CA:E9:75:FD:C4:81
Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Certificate serial: 0196A05196A32FCC9590D1A4BE0842BCCFCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
Manifest number: 079E
Signing time: Mon 05 May 2025 12:00:23 +0000
Manifest this update: Mon 05 May 2025 12:00:23 +0000
Manifest next update: Tue 06 May 2025 12:00:23 +0000
Files and hashes: 1: cPaM3tOePsVM7iIzJS7zk3upgo0.crl (hash: veQ2s4HDodPDfyFlG3wshfBzj9xufI/BoC5E/VmhgGM=)
2: lbFlN7rLNKm_hwKwtb6Eg6VK60k.roa (hash: 2IxGb0Eenv1MI4JvdshV9/YIhfnM2CCpzAUAqonswhI=)
3: pc3D-RJai3Sy0xY8-tFzVCI1yUM.roa (hash: uBxXsxOQORpc24Ptxkp92Yz5fKaDuCXBuTLa8unFs14=)
4: yzS5saqZmvfLrP5ZMitifKMGoG8.roa (hash: AF5+gCr6uoirpp1iHmwqxTO2TQvWrmslD/huU/aCXCo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:51:96:a3:2f:cc:95:90:d1:a4:be:08:42:bc:cf:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Validity
Not Before: May 5 12:00:23 2025 GMT
Not After : May 6 12:00:23 2025 GMT
Subject: CN=afd8c50166745964861f48a498b9cae975fdc481
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:41:fc:07:d2:ae:13:ec:7d:b0:b4:45:1a:66:
96:37:56:81:f5:c9:36:ec:8e:7a:f1:b0:ac:67:b1:
f9:b1:fa:f1:64:8e:55:64:dc:a5:90:e1:ee:9a:49:
72:23:ec:37:15:f1:50:5f:e2:58:ef:e5:86:80:cf:
ec:74:6e:5f:ca:da:c9:84:ad:0f:31:d5:a7:08:0c:
4d:0c:66:c5:45:2b:7a:00:b7:d8:ad:da:3c:46:a0:
34:71:bc:8e:13:3b:58:de:ec:31:c6:26:cb:1e:f7:
8f:97:d1:b7:a8:0b:60:19:d3:f4:ba:f9:23:71:5f:
f8:4e:d8:fc:df:e1:1c:86:83:e5:46:26:2e:cd:02:
67:64:4d:bb:7e:98:7a:95:0e:7e:e8:93:64:f8:99:
5a:a0:54:c6:a1:ac:6b:e9:d4:84:30:0d:2d:74:c8:
5c:b0:26:3d:ee:88:ce:5f:ab:83:5f:09:38:38:fc:
82:ec:c2:70:e5:01:20:a9:09:0c:f0:25:fb:b6:b4:
b9:06:c2:72:17:26:89:f4:18:af:24:d3:f7:04:14:
dd:b8:bb:bf:b5:ce:ce:58:c7:fc:aa:c4:88:fc:f8:
8c:06:58:3d:a5:d0:fa:dc:6d:e9:d0:70:0d:c7:a6:
40:2f:10:17:95:b5:63:c1:f7:31:be:82:80:a4:bc:
c4:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:D8:C5:01:66:74:59:64:86:1F:48:A4:98:B9:CA:E9:75:FD:C4:81
X509v3 Authority Key Identifier:
keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:6b:36:03:d2:aa:2a:2b:ea:cd:88:98:53:a9:b7:2e:c1:ea:
52:bd:ff:3e:e7:fb:af:91:1b:3c:b7:63:34:3a:59:ba:ac:6a:
4b:38:29:65:1b:b0:db:a0:0f:ba:9d:19:f4:20:9c:d8:ca:f8:
c1:0f:3b:3a:da:3e:5a:51:fa:14:92:6c:45:39:55:e7:c5:67:
b9:26:3a:67:25:d6:70:31:8e:05:3d:5e:7c:45:10:a0:78:89:
62:4a:da:53:2a:53:a3:5d:3c:4a:5a:fb:64:de:b8:19:6e:08:
0a:3b:9c:f3:4d:70:f3:20:f7:46:65:6a:c7:70:7e:7b:69:30:
92:55:10:29:ac:94:5c:c0:ae:52:bb:66:8c:d9:fe:23:aa:92:
9e:4d:03:fa:b1:53:63:15:d3:19:f7:88:af:cf:ba:f6:2e:dd:
a9:43:59:14:86:aa:90:e7:21:52:97:d2:e1:d2:8f:91:7b:bd:
fd:3e:16:ef:c9:8a:2b:e2:53:fc:30:2d:bf:ff:46:7e:99:ac:
cb:d9:ca:ac:23:ab:58:9c:55:7f:92:ad:59:3e:6a:10:54:40:
e1:97:6e:0a:0f:a4:7b:97:f8:60:48:05:2e:a5:91:b4:f2:38:
a6:7a:5d:97:49:c4:63:7d:d3:fb:0b:4f:0b:7d:f1:f3:76:17:
b0:23:34:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 16:17:30 2025 by rpki-client