Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
File: S8hY5QhWNUaEpdBKPsw1klgNVI0.mft (raw, json)
Hash identifier: 1MXyKXNC7sibfTkVPKiTC/4znmOTpyNfxR44LsQVPWc=
Subject key identifier: FB:A8:C1:A3:C0:DD:2E:30:EF:D0:60:1A:21:DE:3F:F5:58:FE:0C:93
Authority key identifier: 4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D
Certificate issuer: /CN=4bc858e50856354684a5d04a3ecc3592580d548d
Certificate serial: 01969DBE57D40A595804AB7DE9FD28ACFBBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
Manifest number: 07E1
Signing time: Mon 05 May 2025 00:00:18 +0000
Manifest this update: Mon 05 May 2025 00:00:18 +0000
Manifest next update: Tue 06 May 2025 00:00:18 +0000
Files and hashes: 1: 1kPYBeHFqZcRahwRlHXvuPvT0zI.roa (hash: qhycFEi6FwqVVERso5+P+dTV24QXX6z3cT56YMpxbXU=)
2: S8hY5QhWNUaEpdBKPsw1klgNVI0.crl (hash: ooM5xMS1BciuqaTriZNdkQ2iu7i2csChpHMXOTdvKGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9d:be:57:d4:0a:59:58:04:ab:7d:e9:fd:28:ac:fb:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bc858e50856354684a5d04a3ecc3592580d548d
Validity
Not Before: May 5 00:00:18 2025 GMT
Not After : May 6 00:00:18 2025 GMT
Subject: CN=fba8c1a3c0dd2e30efd0601a21de3ff558fe0c93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:72:31:f7:2b:e2:11:b1:e4:eb:f5:5c:f8:cd:
45:9c:4a:7e:f2:42:9f:e7:db:f9:b3:ac:ae:ac:dd:
34:15:51:7c:e6:c9:f6:15:1a:2b:4e:c2:df:dc:80:
c5:6c:42:f4:b2:18:7d:84:62:60:42:03:6b:6c:be:
02:31:4c:de:24:d9:9b:2a:63:f5:f5:05:8d:5e:75:
64:bc:c3:b6:cf:cd:53:48:33:d6:8d:82:77:0d:95:
fd:3f:86:e9:92:25:98:e4:5e:84:69:18:5e:fb:65:
89:1f:e7:b9:3f:b5:dc:3e:de:27:cb:57:73:76:15:
cf:ce:f9:1f:b3:02:9b:a1:b0:17:da:ad:bf:56:8a:
60:56:44:4c:63:4d:8b:f2:a9:4d:72:b5:fb:d5:3d:
c0:1f:4f:8d:d8:a5:8b:26:4f:d8:ed:85:95:f8:38:
32:64:ec:6f:16:2a:f8:b8:54:2b:c5:46:26:d7:8b:
bd:f6:7d:47:1c:e1:73:f1:31:74:29:9d:13:15:3e:
a5:3e:18:d5:3f:83:11:17:02:e5:7d:b3:2e:be:b3:
9e:fc:7c:2c:dc:11:c5:1c:c1:57:25:c2:0c:16:7b:
f0:c5:0b:48:d6:6d:08:c6:17:40:d5:2d:a6:0c:ce:
35:da:54:fb:3f:ee:a6:0c:34:18:ba:bb:ef:9d:58:
f5:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:A8:C1:A3:C0:DD:2E:30:EF:D0:60:1A:21:DE:3F:F5:58:FE:0C:93
X509v3 Authority Key Identifier:
keyid:4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:85:34:47:f6:ff:63:63:de:e6:0f:a8:fe:70:48:3c:4a:53:
f4:73:2d:aa:f0:cc:18:c7:ae:eb:1e:b9:57:ca:83:12:e5:f9:
65:82:a3:9c:68:e3:c6:1e:65:f0:b9:0a:dd:a6:d6:bc:df:fd:
25:42:db:bf:24:35:a8:5e:2b:ed:a8:5c:2f:45:e0:06:17:0e:
48:2f:d1:dc:49:cf:fa:79:f6:0f:6f:98:2c:1a:ea:ed:1f:2e:
6f:44:80:03:c1:6d:fa:9d:eb:d8:25:4d:7b:46:9d:1d:a7:65:
80:9e:cf:35:bf:46:91:75:9e:56:50:ff:9e:84:76:75:35:cc:
3c:01:58:26:33:89:ef:8a:3b:28:36:aa:a2:93:08:d9:14:61:
e1:f1:bc:91:4a:cb:0d:db:3d:64:64:c0:d4:3b:bd:22:24:06:
06:bd:0a:f8:5f:29:c7:ad:4c:fc:79:ce:dd:5f:35:92:3b:4d:
11:df:8e:cf:9a:8c:e1:d2:92:7f:04:4d:24:49:bd:7d:a0:08:
f0:94:68:be:fa:c0:8c:c2:6c:36:19:09:2e:11:32:69:23:79:
8f:06:38:38:45:ed:54:a9:0a:15:ed:23:36:55:89:cb:84:2b:
88:13:fe:39:8d:46:e3:8e:14:8c:bf:68:04:87:6d:91:d7:f1:
d7:13:90:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 06:45:13 2025 by rpki-client