Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
File: mFW4DEXftep6qn3R2O2LFPnB3EU.mft (raw, json)
Hash identifier: PM273p4e+8Fdr72hTBhUe+uDLzar0Autk7al+7DlaqA=
Subject key identifier: D4:51:6E:25:6C:2F:B3:65:F0:4F:26:2C:72:4B:41:E2:FF:78:62:04
Authority key identifier: 98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45
Certificate issuer: /CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45
Certificate serial: 0196BCA4D5F82DD32F399A3B7BBC97D0FE15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
Manifest number: 1D
Signing time: Sun 11 May 2025 00:00:41 +0000
Manifest this update: Sun 11 May 2025 00:00:41 +0000
Manifest next update: Mon 12 May 2025 00:00:41 +0000
Files and hashes: 1: NymzbNZBsKNd-Q-QLvAahyZY8zY.roa (hash: 4tm9+O5MAP6uU3Q2HGQCNAKZry1kf/X+Xwuo3WltB+8=)
2: mFW4DEXftep6qn3R2O2LFPnB3EU.crl (hash: bW6bPmj2gHwAgdmeuok4QTaIsccOnPQS++2mUNgRVVY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:a4:d5:f8:2d:d3:2f:39:9a:3b:7b:bc:97:d0:fe:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45
Validity
Not Before: May 11 00:00:41 2025 GMT
Not After : May 12 00:00:41 2025 GMT
Subject: CN=d4516e256c2fb365f04f262c724b41e2ff786204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:36:b5:cb:98:5c:58:3e:14:b3:30:e6:06:95:
09:43:7c:b2:7d:e7:8d:e8:97:ee:fb:fe:12:3c:34:
6e:8b:e0:cc:d9:67:cc:07:3d:10:a8:e3:3f:3f:a4:
42:6e:40:9f:a1:95:b1:94:21:20:c0:93:ec:67:d6:
ad:3d:66:de:85:cf:ce:0a:d3:17:9f:fc:cb:33:57:
1e:51:23:c2:ce:28:b1:ff:56:fa:ca:87:c3:31:56:
a2:01:30:ac:ae:6d:40:cd:2a:4f:18:f6:95:ce:ae:
15:9a:12:c7:2d:47:be:06:3b:31:0a:db:95:4a:a5:
b6:45:90:3d:61:7f:e0:97:e9:11:7d:08:57:01:e0:
ea:e8:8f:50:23:16:a4:1f:9c:a6:6a:d8:ae:77:13:
f9:ad:9f:b2:da:af:8e:a9:84:17:c0:99:e0:38:dc:
45:74:08:f7:e0:4f:64:78:94:e2:d4:d1:24:48:75:
50:cd:c9:6d:32:b0:61:4e:bb:d3:d6:af:79:3c:1d:
03:c8:5a:79:55:e1:55:0f:cd:39:78:20:ad:fb:47:
35:cd:41:2c:c2:88:6b:02:f8:54:3d:65:31:fc:47:
54:71:6f:e0:c9:2c:7b:91:23:f5:51:9e:56:af:4a:
c3:70:55:81:6a:3d:fe:80:b0:c3:c0:36:fa:7d:58:
a9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:51:6E:25:6C:2F:B3:65:F0:4F:26:2C:72:4B:41:E2:FF:78:62:04
X509v3 Authority Key Identifier:
keyid:98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:0f:42:c9:fb:ee:04:5b:61:36:ee:ef:da:8b:11:24:f1:50:
c2:ff:8d:2e:76:d4:1a:0b:9f:b8:cb:c9:19:e6:b1:56:9d:f7:
6d:e3:30:0f:85:7e:b9:f9:a7:b0:0f:46:c3:ee:9f:fa:da:41:
9a:3a:44:17:29:2c:26:a1:1d:6a:1a:6e:31:03:2b:57:4a:76:
a4:51:7b:52:f6:83:fb:a1:49:30:29:d8:a5:3c:df:0c:97:27:
e5:04:5b:f7:10:80:3c:16:fb:f7:34:28:d9:c6:29:f9:3d:78:
9d:7e:87:52:15:da:47:b0:0b:6e:11:20:a9:c5:e4:a5:0d:96:
78:ba:8a:7c:ee:9b:f6:1f:7e:50:a9:ec:7b:ba:21:15:9a:52:
d5:29:40:e0:a5:fb:82:8f:e0:74:5e:f2:e0:b4:ae:f0:f2:b9:
2c:d2:76:fc:b2:05:19:ed:56:25:87:53:b4:d0:5c:35:bb:1a:
8f:08:fe:b2:1e:5c:45:2d:21:38:8e:27:c1:33:8b:99:95:03:
d8:02:10:4e:0f:da:3b:e0:00:cd:1f:5d:eb:e6:60:ed:2e:04:
9a:da:45:f6:16:b8:c9:10:7b:b0:fc:90:c0:56:7d:fb:af:75:
a7:a1:95:b0:59:f0:0e:d4:9a:c5:48:f8:fd:6d:fb:e3:fc:44:
b8:9d:df:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 05:21:31 2025 by rpki-client