Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
File: 3GbYudONW7Gc-gxGRLRSk9Hotvo.mft (raw, json)
Hash identifier: YaYEX8COGlJhU0EijYAbnQo5fNWl99rYZQFmMLDJrF0=
Subject key identifier: C2:96:82:22:02:49:F4:9F:A9:58:E8:04:2E:C7:C2:CE:BB:22:25:2D
Authority key identifier: DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
Certificate issuer: /CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Certificate serial: 0196B5901C9BBF60EBE2E5B042CAD933110E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
Manifest number: 14C1
Signing time: Fri 09 May 2025 15:00:42 +0000
Manifest this update: Fri 09 May 2025 15:00:42 +0000
Manifest next update: Sat 10 May 2025 15:00:42 +0000
Files and hashes: 1: 3GbYudONW7Gc-gxGRLRSk9Hotvo.crl (hash: 3tM6J15jnZwvVz4Z4RXB5NaxYf/aPN/D1xSNbB9JWHI=)
2: bcS-hsDeO0gtgs28TEiHyvA81q0.roa (hash: CeE5W6otaxPvfHxN+lyC5C8i9p819egn6IV1iHF00Ew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b5:90:1c:9b:bf:60:eb:e2:e5:b0:42:ca:d9:33:11:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Validity
Not Before: May 9 15:00:42 2025 GMT
Not After : May 10 15:00:42 2025 GMT
Subject: CN=c29682220249f49fa958e8042ec7c2cebb22252d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:94:0d:58:61:2a:9d:dd:93:9f:39:b2:eb:cb:
06:9c:78:70:e4:f8:18:84:f1:7a:4f:d4:76:7b:29:
ce:9e:1f:11:80:10:38:f2:75:c1:a1:33:d6:a7:8b:
d9:23:ba:02:86:eb:c1:9a:ad:b2:4f:fd:ca:aa:5f:
b2:b1:95:99:62:9f:e0:d8:0f:ec:dd:5c:92:5d:a3:
73:2c:73:c5:3d:53:64:84:af:5f:01:73:3a:b5:6b:
0a:c2:92:76:a0:37:95:ea:77:e9:0a:06:ce:aa:25:
8f:2a:b1:26:a8:e2:32:90:56:6d:90:7b:1b:0f:ae:
d3:f5:72:7c:73:54:b7:b2:25:ff:3c:b7:8c:fb:70:
af:c2:a2:44:30:d3:31:51:9f:73:ea:f4:01:17:ae:
47:78:11:e8:bb:62:d0:0e:52:1e:0a:f5:62:d3:b8:
eb:dc:05:6b:4d:74:fc:07:a6:49:15:92:a5:0f:4a:
33:3b:76:f2:7d:1b:c1:92:e4:0c:50:d3:cd:11:84:
66:95:17:86:65:c4:ab:07:91:36:e7:a4:ae:46:e1:
9e:50:83:cf:ab:26:81:6c:4d:b5:9b:64:a6:22:c6:
29:66:94:44:94:da:a2:6f:55:c9:17:cc:e4:d9:ef:
23:7b:a6:e2:d7:b0:6e:00:7c:3f:64:d6:f9:ea:99:
b6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:96:82:22:02:49:F4:9F:A9:58:E8:04:2E:C7:C2:CE:BB:22:25:2D
X509v3 Authority Key Identifier:
keyid:DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:b8:ba:d1:35:03:17:0f:fc:b7:36:fe:2b:a7:1f:23:dc:ec:
31:06:66:2b:8b:65:9e:0c:82:96:ea:29:14:e6:b4:43:7e:24:
b4:62:bd:e0:d1:ae:5f:94:d9:90:56:21:36:55:b8:8a:6e:dc:
ea:2a:9a:24:f9:5d:aa:78:cd:9b:d3:50:1f:05:3e:d7:01:e5:
90:c6:c7:57:1b:b5:d0:e4:56:f5:53:f7:f2:f6:b2:5f:a8:28:
63:61:f7:44:05:69:9c:f9:39:bc:a4:fe:c4:43:ea:bd:a6:de:
d3:b6:e8:e0:49:90:91:ce:fd:55:85:bc:45:20:97:56:75:f2:
2c:30:d0:9c:2c:52:be:b4:5b:43:82:12:9f:1b:d6:16:c3:c5:
f3:2e:a7:11:cf:2c:8b:05:48:56:00:47:55:6d:5d:d9:75:15:
1f:15:ad:02:16:2a:1a:f2:e3:6d:8c:31:40:c0:99:6e:22:07:
c2:60:36:14:1e:18:d2:9b:eb:45:e4:9b:9d:9b:30:45:50:47:
59:d0:40:5a:14:60:88:3a:1e:e3:37:9e:ac:a1:02:ba:95:1c:
4f:72:8d:24:75:df:fc:4c:c8:a9:4d:bb:0f:71:ef:29:61:4e:
1b:e8:93:01:63:25:3c:c4:6c:7d:0b:e9:b4:fc:a6:ac:e0:4c:
d4:5b:5e:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 20:48:51 2025 by rpki-client