Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
File: tD1On-OlSH0g8QABkWKRUPYo86E.mft (raw, json)
Hash identifier: tD7VTb2ecQGle5dr26wvjtmO5x91uspoATYRYt3Frvc=
Subject key identifier: 1D:E3:F4:F0:14:4C:0D:A4:9C:9D:71:8B:24:25:A9:64:C8:FC:7D:D2
Authority key identifier: B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
Certificate issuer: /CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Certificate serial: 0196C9F2782247C0FA0443388E1DDE7F4BE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
Manifest number: 0A0B
Signing time: Tue 13 May 2025 14:00:32 +0000
Manifest this update: Tue 13 May 2025 14:00:32 +0000
Manifest next update: Wed 14 May 2025 14:00:32 +0000
Files and hashes: 1: WJX8pUUgztAx5ziEUO7pdOPaYpY.roa (hash: Zv2hcAwndmbcI8AgNFSDMAAPE42QlNQ0rd+YTdhMpog=)
2: tD1On-OlSH0g8QABkWKRUPYo86E.crl (hash: LhnU5w7LTjKlL3aBWp4QcQISr6o5M2uHwTU1j4Msd8U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 14:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:f2:78:22:47:c0:fa:04:43:38:8e:1d:de:7f:4b:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43d4e9fe3a5487d20f1000191629150f628f3a1
Validity
Not Before: May 13 14:00:32 2025 GMT
Not After : May 14 14:00:32 2025 GMT
Subject: CN=1de3f4f0144c0da49c9d718b2425a964c8fc7dd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:03:f7:f2:9c:33:d8:48:3b:11:71:8d:cc:de:
3c:d6:2d:ed:2c:0e:0e:32:0e:a1:0e:ae:c9:9b:b8:
12:fd:80:d8:08:d7:08:de:fc:9e:56:40:63:58:cf:
00:11:4a:b9:e4:6e:74:3c:24:93:ff:be:46:e0:eb:
77:fb:e8:99:06:d8:c8:c9:c9:95:ec:7e:6a:7e:d0:
ee:bc:c1:00:3a:45:78:18:ae:06:ba:96:af:b7:fd:
3c:b7:55:8c:3a:e9:5d:71:fa:ab:c4:10:db:2b:93:
3e:b1:49:2e:15:44:08:c2:c1:29:45:9c:3b:40:c8:
1d:c8:3e:cf:35:6f:32:f4:11:09:1b:e0:be:9e:cd:
f9:72:44:09:79:b5:5c:5d:2e:29:33:dc:5d:a0:16:
72:d0:b7:18:b9:6e:00:71:6f:3e:dd:a3:5b:58:91:
4a:fc:13:ac:e2:72:d7:c6:5b:a7:f2:18:ca:02:ee:
00:c4:f2:66:8a:0f:39:d2:0b:ea:a2:ba:35:28:46:
56:cc:d2:2a:63:a7:68:17:4f:4a:cc:14:a1:a3:a8:
ed:49:66:17:22:35:b5:ce:10:fd:db:4b:68:3f:55:
05:e3:5d:75:10:20:bb:6f:58:9c:f9:b2:fe:46:54:
02:8a:4c:8a:46:77:ee:de:3a:a6:8d:50:2e:b2:c8:
82:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:E3:F4:F0:14:4C:0D:A4:9C:9D:71:8B:24:25:A9:64:C8:FC:7D:D2
X509v3 Authority Key Identifier:
keyid:B4:3D:4E:9F:E3:A5:48:7D:20:F1:00:01:91:62:91:50:F6:28:F3:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tD1On-OlSH0g8QABkWKRUPYo86E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/18d035-3494-4ab7-a5cb-9f788fd27520/1/tD1On-OlSH0g8QABkWKRUPYo86E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:07:02:94:f9:cb:89:83:60:a7:cf:09:ad:9c:f4:f0:ec:f6:
12:fa:a8:d7:03:82:a4:33:81:17:fe:69:aa:d6:93:c8:cd:0a:
75:b8:b0:78:d6:77:20:89:db:ac:e3:da:02:c1:a1:02:e8:a4:
19:53:d5:72:bb:57:38:67:72:e9:1c:2e:a3:f6:53:c6:a7:44:
c5:a0:e4:ea:fa:82:de:7f:a1:82:1b:22:a8:21:c8:90:30:71:
93:4d:c8:4c:12:b6:c7:2e:b8:2c:19:44:be:e7:d7:a5:82:de:
a4:5a:1e:31:41:02:83:77:c0:fb:db:76:fa:7e:44:81:e3:4c:
40:00:b3:f2:00:f1:8a:d4:68:9a:4a:85:f8:5c:87:8e:34:e5:
fe:5f:a2:7e:96:01:d6:4e:19:5f:a7:e7:44:7c:2e:91:8f:c8:
c9:4a:3d:96:90:3d:84:8f:a0:bd:2e:7e:b4:d8:12:c0:b6:58:
79:d9:bd:cb:df:82:1e:a2:a9:cd:4a:67:4c:18:31:36:9e:28:
1e:a3:46:83:ef:d9:56:b1:1f:ca:4c:c2:0d:16:5d:fb:ed:0c:
5c:d6:94:be:23:73:fd:42:4e:b1:69:34:cd:d8:a9:f5:92:8f:
7f:d8:2b:fc:18:ae:3c:3a:a5:1e:6f:40:bf:3a:ed:d1:be:2c:
b0:f0:bc:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 17:16:14 2025 by rpki-client