Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
File: aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft (raw, json)
Hash identifier: 03I0QKTJ8LJaNVCDUmBpPEgWR8pObgARkfI+S0VMDk0=
Subject key identifier: 67:7B:4F:22:83:91:BF:5F:A8:8E:1E:98:7B:84:3D:14:4A:84:E5:1B
Authority key identifier: 68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28
Certificate issuer: /CN=683b33dc7218b3fe883c49505134cb39a664fd28
Certificate serial: 01969E636EECEA29C760F8BF1FB2F6B2E3F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
Manifest number: 098D
Signing time: Mon 05 May 2025 03:00:38 +0000
Manifest this update: Mon 05 May 2025 03:00:38 +0000
Manifest next update: Tue 06 May 2025 03:00:38 +0000
Files and hashes: 1: PecnHh8YFMYIBEgD1PQBC-sYFMY.roa (hash: G67Iyj0Q7isunYlJO9b465cfL0xQGyEo+TS/2SlDQcA=)
2: aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl (hash: Fc/IfYEUMeIeHdLX+mI0k7ikf1Sp13Nbs0uyVerp4HU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:63:6e:ec:ea:29:c7:60:f8:bf:1f:b2:f6:b2:e3:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=683b33dc7218b3fe883c49505134cb39a664fd28
Validity
Not Before: May 5 03:00:38 2025 GMT
Not After : May 6 03:00:38 2025 GMT
Subject: CN=677b4f228391bf5fa88e1e987b843d144a84e51b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a0:88:a8:41:ca:99:7a:ee:77:9d:9d:a6:0c:
1c:00:e0:cc:b7:a6:cf:e9:eb:6c:aa:5a:d3:33:be:
24:59:eb:19:f5:52:59:1c:9e:08:21:8e:ad:e7:52:
5b:9f:d8:52:dd:6c:58:ed:2e:1a:4a:16:66:1a:8b:
b1:63:78:45:9d:a8:fc:85:c2:62:48:3f:96:c3:da:
81:7e:59:ea:d6:44:61:f1:5e:27:a9:09:63:bd:cf:
83:81:8b:54:1d:ad:89:f4:be:3d:c6:7b:3a:cb:be:
c4:9a:ed:39:dc:54:7c:82:2e:d2:f1:b2:bb:3a:25:
4b:0f:b6:44:ae:9c:59:79:c2:aa:31:51:14:a3:38:
76:8a:18:47:33:47:4f:59:19:fa:a2:cd:3a:c9:5a:
67:d1:d9:2a:76:fa:74:27:a2:56:cb:db:59:c8:2c:
9b:e9:7d:c0:54:c3:ee:5b:5d:2b:b9:dc:0f:8a:92:
de:25:d0:c5:49:6e:1b:75:fe:d0:f6:47:07:a4:33:
d7:ef:17:db:61:32:4d:a4:fa:63:ec:fb:90:77:1a:
c5:dd:77:c1:01:c3:9a:34:b1:91:37:6e:8a:c4:1a:
e7:de:c1:7b:9a:91:5b:a3:88:3d:75:19:51:70:c9:
00:07:97:f9:01:8f:a6:1a:16:96:32:7b:67:df:e4:
56:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:7B:4F:22:83:91:BF:5F:A8:8E:1E:98:7B:84:3D:14:4A:84:E5:1B
X509v3 Authority Key Identifier:
keyid:68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:b4:d2:02:67:d8:1f:a0:10:1e:53:ff:4c:4b:d6:1f:1d:3a:
01:8a:07:7b:51:a5:70:a5:01:b6:5f:92:19:37:8e:1c:0b:23:
dc:79:f5:b7:10:56:7a:28:57:dc:9f:9d:85:98:11:e5:67:47:
5e:b3:8a:94:48:e3:87:e4:bd:db:c5:b4:9b:69:e4:b5:36:47:
4d:aa:23:66:f0:3c:85:59:f1:2c:8b:61:ad:c5:c4:4f:02:21:
a3:b3:ee:69:10:c1:c3:45:57:4c:14:ab:fe:d4:50:14:c4:d4:
b7:03:a6:04:1e:7e:45:7d:88:fd:bb:dc:bb:2d:80:d9:c2:31:
a2:c4:18:81:9f:ef:bf:3f:4f:69:47:78:43:78:d0:d4:c4:53:
f8:29:05:8f:73:d7:2b:53:6b:99:c5:f8:6d:48:d1:76:84:89:
82:05:f5:34:e6:97:33:2c:24:91:76:ef:1d:0f:e6:26:9b:da:
77:6a:ab:19:ff:2e:b1:cd:64:24:a1:5b:e7:9d:63:f2:28:3c:
f5:58:1e:be:e6:4b:c3:22:c1:84:73:79:1d:c2:08:1d:5d:39:
73:28:9f:81:3b:82:01:3e:b2:1f:d5:62:98:27:c5:c9:92:1e:
77:34:d7:9a:8a:76:c0:98:ff:f1:ec:4b:f0:2c:29:2f:ee:ca:
68:c5:a9:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 05:25:56 2025 by rpki-client