Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
File: bQih9MOF86e2KYTVPoFmWplUEPM.mft (raw, json)
Hash identifier: vFoDC5P06vYVsS2eSAE8d2/kR50ItXDW3q8zURXtND8=
Subject key identifier: F0:B6:76:13:8E:FA:37:1D:E3:B9:38:D1:FB:8D:42:97:40:DD:87:7A
Authority key identifier: 6D:08:A1:F4:C3:85:F3:A7:B6:29:84:D5:3E:81:66:5A:99:54:10:F3
Certificate issuer: /CN=6d08a1f4c385f3a7b62984d53e81665a995410f3
Certificate serial: 0196A01AF5F51A736F93B3C582D8B6BD4247
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
Manifest number: 0924
Signing time: Mon 05 May 2025 11:00:43 +0000
Manifest this update: Mon 05 May 2025 11:00:43 +0000
Manifest next update: Tue 06 May 2025 11:00:43 +0000
Files and hashes: 1: J7EMvjCrDCSEaNvEXQjzbwryII4.roa (hash: Ak6AJOV8w0m5lQCAa41zEyYCpJIBSURSyT+w9pihP/8=)
2: bQih9MOF86e2KYTVPoFmWplUEPM.crl (hash: 2MlK3j1W6se0ywYLirc+0AGcgXXvWaBL26sCijzy20Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:1a:f5:f5:1a:73:6f:93:b3:c5:82:d8:b6:bd:42:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d08a1f4c385f3a7b62984d53e81665a995410f3
Validity
Not Before: May 5 11:00:43 2025 GMT
Not After : May 6 11:00:43 2025 GMT
Subject: CN=f0b676138efa371de3b938d1fb8d429740dd877a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:dd:49:64:da:df:f9:fa:0b:5c:2e:ea:3e:a8:
c1:fb:33:c6:b1:c8:7c:cb:68:07:08:9a:4d:95:a3:
b7:b7:7a:d1:f1:80:b3:47:ef:ff:0e:34:e0:26:14:
4b:3a:b7:45:ed:0c:df:f3:3b:85:f0:1a:ba:8b:3f:
a3:c1:82:1c:88:46:f3:b5:0d:aa:da:aa:72:81:9e:
e9:a5:0c:0a:3f:55:7a:72:b0:67:b7:f7:12:e0:4f:
57:31:29:2e:36:26:86:91:83:49:be:8d:e8:58:90:
90:77:bf:96:f5:fa:49:1b:56:6e:b7:96:84:b6:17:
0b:89:59:80:92:9a:ee:0d:d6:b2:00:d8:88:f7:b7:
04:20:20:8a:09:4a:f8:8d:9d:a1:aa:4f:5a:f5:61:
bb:d5:34:33:bb:1c:b9:dc:f4:86:6c:74:79:cf:29:
fb:5f:e3:08:19:2d:2a:3f:2f:c6:3b:e8:f7:4e:58:
ff:9f:ab:02:a4:81:d0:5c:1f:49:70:24:5e:87:db:
ff:92:9f:72:e1:6e:b4:d5:9e:ba:29:8b:e3:36:1f:
32:e8:0b:16:ea:3f:f6:f4:69:bd:d8:a4:bf:bd:b1:
e0:e2:3e:40:2b:e2:69:ee:0c:3a:97:32:c1:20:c7:
cb:2f:ec:8d:57:88:d8:af:ef:5c:c2:c9:3a:ec:d1:
15:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:B6:76:13:8E:FA:37:1D:E3:B9:38:D1:FB:8D:42:97:40:DD:87:7A
X509v3 Authority Key Identifier:
keyid:6D:08:A1:F4:C3:85:F3:A7:B6:29:84:D5:3E:81:66:5A:99:54:10:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:70:0c:30:4e:f7:70:52:4b:41:bc:f5:6a:d6:d5:91:9f:5e:
21:eb:81:92:7d:6b:20:fe:2d:ab:fc:a4:9b:8e:b2:dc:6b:3e:
c9:72:d6:de:cb:fb:b8:54:fe:14:7a:5a:9f:89:df:e5:af:69:
b2:4e:2f:48:a9:01:98:e6:22:e7:5d:10:56:4c:f0:82:89:54:
b6:6b:bb:34:96:c9:52:d9:cc:b2:b1:2d:0c:7d:16:34:fe:e5:
41:fa:10:7c:9b:6f:74:31:6b:1b:60:06:0f:10:14:0d:c6:9b:
b6:7b:c4:a6:a6:66:bc:5e:05:a9:ac:ff:be:92:d9:9e:ac:4f:
7e:21:84:2c:64:b0:73:0a:18:44:ad:c2:83:3a:1a:4f:9c:12:
b6:e8:9e:f6:2b:b5:23:96:cc:3b:06:08:e5:f2:b4:6c:85:3f:
c7:cb:ff:48:ce:a1:f6:7f:9b:0d:64:01:e2:2f:24:45:15:e4:
f2:50:4c:73:f8:c8:ff:c0:32:d2:06:7d:f3:f9:f8:f9:11:39:
1a:0e:c3:2e:32:75:1d:5a:7b:df:32:1e:e3:74:19:16:fb:01:
e1:61:76:25:2c:66:38:da:52:b1:7c:e1:11:10:c9:be:9a:ec:
bf:9b:00:7f:b3:4c:49:ba:57:dd:74:6f:dc:6c:b8:f2:e8:f8:
9c:52:6b:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 19:08:17 2025 by rpki-client