Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
File: DdIkCGSH7IZmumFcFdyPR532pI0.mft (raw, json)
Hash identifier: 3jSgOIdDESP2DQwzpNrZ3JUZVMg1u82vf6dBW1nEcf4=
Subject key identifier: 0E:98:7C:5E:5D:77:90:DA:B1:3E:28:8A:D0:FA:2E:49:39:65:8D:28
Authority key identifier: 0D:D2:24:08:64:87:EC:86:66:BA:61:5C:15:DC:8F:47:9D:F6:A4:8D
Certificate issuer: /CN=0dd224086487ec8666ba615c15dc8f479df6a48d
Certificate serial: 0196C1CB963C1C85EC0B113C24E1229A7078
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DdIkCGSH7IZmumFcFdyPR532pI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
Manifest number: 0369
Signing time: Mon 12 May 2025 00:01:06 +0000
Manifest this update: Mon 12 May 2025 00:01:06 +0000
Manifest next update: Tue 13 May 2025 00:01:06 +0000
Files and hashes: 1: DdIkCGSH7IZmumFcFdyPR532pI0.crl (hash: Ew/HeFogDfvFiqnCgtAgAEMx1UMkfG+AtjZmrXXWcuM=)
2: DsQ3XuL18x6JXJPIAS7Bywor1FI.roa (hash: YgD4/obT5P1W7ZaQyQBLHDkI0d6d+gx0ix2vsYYOe7Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/DdIkCGSH7IZmumFcFdyPR532pI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 00:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:cb:96:3c:1c:85:ec:0b:11:3c:24:e1:22:9a:70:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0dd224086487ec8666ba615c15dc8f479df6a48d
Validity
Not Before: May 12 00:01:06 2025 GMT
Not After : May 13 00:01:06 2025 GMT
Subject: CN=0e987c5e5d7790dab13e288ad0fa2e4939658d28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:a2:98:cd:50:b1:9e:bb:ce:03:38:f4:cb:2e:
cd:90:d4:bb:cc:f1:be:33:6c:77:d4:10:63:75:91:
63:33:93:b6:55:ee:c1:2d:c9:50:51:7a:84:79:59:
16:40:a5:41:3c:90:82:53:0f:18:bc:ba:80:17:63:
fd:90:de:41:c1:04:e2:da:e3:13:58:ac:cc:6f:b6:
4f:6b:a3:08:f3:a1:6d:05:39:f9:45:f5:90:b1:f5:
df:31:11:55:01:da:66:3f:69:f5:d6:d0:94:9d:88:
fd:d6:71:42:68:4c:36:31:83:3c:99:c0:b6:85:91:
f8:57:2c:34:2e:40:1e:82:ee:5d:3d:69:21:98:81:
ca:d2:cd:65:f1:62:ad:59:d5:64:99:8e:94:32:ff:
a9:a5:e5:5e:2c:f4:b4:94:87:27:f8:8e:a6:81:65:
41:1a:ef:29:ef:e8:9b:f5:93:34:c3:95:a3:11:01:
df:de:ed:01:d9:13:fd:30:e9:89:98:39:cf:93:0e:
b1:af:a3:d8:83:4a:75:e4:91:e3:06:56:b1:47:d8:
1c:fe:56:09:77:2f:5c:60:f5:5a:b3:78:f9:f2:ee:
fc:c9:e1:5a:4b:75:0d:b3:8e:1c:ff:33:e8:64:91:
ee:da:b9:b2:4a:b2:6e:10:03:17:e8:d7:26:a5:9d:
c9:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:98:7C:5E:5D:77:90:DA:B1:3E:28:8A:D0:FA:2E:49:39:65:8D:28
X509v3 Authority Key Identifier:
keyid:0D:D2:24:08:64:87:EC:86:66:BA:61:5C:15:DC:8F:47:9D:F6:A4:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdIkCGSH7IZmumFcFdyPR532pI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45a3ad-4b4c-4aaa-96d9-297180079422/1/DdIkCGSH7IZmumFcFdyPR532pI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:9a:ec:f3:0d:19:50:0a:cf:8d:7d:d9:93:81:f8:68:b7:be:
79:3e:04:6c:d7:ea:f1:f7:18:ed:b3:87:e3:29:f5:a9:b9:f5:
d2:6d:54:ef:5b:63:6d:7e:42:4e:65:56:66:f5:2f:f4:d2:36:
dd:64:a1:2b:b1:c1:8f:3e:94:d1:31:fd:bb:37:ca:72:34:b5:
cb:35:a5:73:05:13:ac:ac:73:77:6a:b6:20:6e:3b:22:a5:84:
47:a4:98:c2:74:eb:47:d8:68:94:e5:51:88:07:fd:de:59:9f:
e4:c6:17:70:79:57:03:a2:d8:ad:dd:b4:ec:e4:78:b9:1b:96:
7f:56:4e:77:b2:d5:47:81:df:ca:72:2b:f6:8b:2f:8d:64:97:
4f:fa:a5:88:bd:82:ce:0e:ce:7a:ab:45:21:98:dd:87:66:a1:
5f:8d:c7:03:ee:62:24:da:8e:cf:fe:72:c9:81:b9:05:b3:dc:
bd:3c:e7:59:9e:83:95:c7:5c:5b:2c:61:16:9c:53:cc:65:d4:
8b:83:a4:81:74:51:96:93:c0:01:57:27:36:db:98:5c:e5:78:
97:da:59:91:d9:b0:6a:6c:19:87:11:d7:54:fe:95:35:7b:6c:
b9:7e:1a:fe:65:b9:c4:3e:aa:5d:58:4c:43:ce:12:b2:b5:2a:
70:b7:c7:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 09:33:28 2025 by rpki-client