Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
File: shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft (raw, json)
Hash identifier: dmCinNeuH5hgKLM0SUfv5GRAAaPtQFDeZz9bkyifoX8=
Subject key identifier: 17:90:EC:AA:A2:5A:7D:0F:DB:32:5A:E5:70:93:14:90:9D:98:FC:12
Authority key identifier: B2:15:CD:8E:6D:B3:54:41:98:4D:9C:7D:FC:9A:FB:65:3E:55:DF:F1
Certificate issuer: /CN=b215cd8e6db35441984d9c7dfc9afb653e55dff1
Certificate serial: 0196C15D8F4BE63372A00B068A3B73F6D575
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
Manifest number: 149E
Signing time: Sun 11 May 2025 22:00:56 +0000
Manifest this update: Sun 11 May 2025 22:00:56 +0000
Manifest next update: Mon 12 May 2025 22:00:56 +0000
Files and hashes: 1: UkWKB7R6wSYKBpsuiwwV880UfCk.roa (hash: pQhrMKgkx/zqcMJYjMVoXY14ZtF5KkWfSepRK8YAXxs=)
2: shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl (hash: pEkgbJBUTgcgVl2YDADp+XfRteyiSoh4Z6cQw2Bj+Jo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:5d:8f:4b:e6:33:72:a0:0b:06:8a:3b:73:f6:d5:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b215cd8e6db35441984d9c7dfc9afb653e55dff1
Validity
Not Before: May 11 22:00:56 2025 GMT
Not After : May 12 22:00:56 2025 GMT
Subject: CN=1790ecaaa25a7d0fdb325ae5709314909d98fc12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b9:e8:e5:ce:48:5f:46:95:b6:1d:69:b3:79:
51:d8:21:98:c1:56:d7:07:cd:c1:03:19:9b:1d:ea:
85:c8:cb:47:1a:9f:b2:c5:83:a8:c0:dc:cb:aa:35:
4f:26:28:d4:27:be:97:72:c5:92:9f:72:34:ad:32:
eb:45:e0:11:27:f8:0d:a8:ad:84:3b:f9:d0:1e:a3:
63:6f:fb:e1:f8:a4:d0:d6:84:6e:6c:38:bc:c1:c7:
f1:83:0c:14:d0:6f:5e:e7:3d:01:e3:5c:03:fe:45:
25:b8:42:c1:fd:3f:aa:47:8f:5a:67:c9:9a:b6:ee:
20:1e:d8:37:93:e6:59:98:48:64:4a:b2:1d:c1:42:
28:7d:45:d4:58:e3:c5:c4:48:08:55:24:97:52:e3:
66:16:eb:ca:4e:58:8f:43:8c:51:89:54:c6:d5:45:
1e:ab:bf:0b:ce:74:2c:4d:41:87:6e:f4:75:d8:bb:
9c:78:c1:db:f7:0b:56:71:bf:c2:ab:8d:a1:79:a9:
46:1d:96:1c:48:d1:1b:14:7c:86:8f:d2:e9:2e:ad:
08:25:a7:cd:32:dd:8c:b3:90:12:67:e6:1f:65:72:
67:f9:7f:66:88:c6:00:8c:e7:29:50:a4:ec:03:f2:
ca:ad:ad:73:45:a0:10:fd:5d:49:7a:1c:c0:f2:b6:
44:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:90:EC:AA:A2:5A:7D:0F:DB:32:5A:E5:70:93:14:90:9D:98:FC:12
X509v3 Authority Key Identifier:
keyid:B2:15:CD:8E:6D:B3:54:41:98:4D:9C:7D:FC:9A:FB:65:3E:55:DF:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:ca:e4:50:ff:e0:0b:55:86:6f:31:90:7f:cf:6e:3d:5e:4b:
8b:9c:ee:ca:a4:01:f7:63:88:01:3e:0c:2a:fa:37:4a:46:a9:
fa:78:95:1d:f4:1f:0e:09:1f:75:a5:91:a0:aa:3a:0b:e5:7f:
2e:7e:77:84:dd:e8:04:7d:05:ba:a6:65:bb:8e:93:8f:54:09:
51:0e:5b:7b:8e:cc:70:64:4f:df:fe:8c:d4:3e:21:e7:5f:f4:
dc:63:9f:74:32:f9:c6:fc:0d:c8:a5:c0:8a:97:12:85:9d:44:
9c:3c:cc:53:03:9e:4d:f5:9e:a7:d0:84:41:69:4a:0f:3d:d6:
1d:be:f3:d2:c6:62:d8:5b:40:8c:56:2d:cc:04:b2:dd:32:b1:
4a:6f:57:2b:87:be:6e:13:57:33:49:67:a2:ca:00:3f:48:8a:
c6:8b:82:b8:d1:44:eb:4b:76:b3:9e:e4:2c:e6:80:98:5a:dd:
3d:50:61:45:91:0b:74:76:d2:3b:dc:5f:94:1d:58:f2:34:4e:
d9:25:3b:ba:70:e9:50:30:00:36:e4:c0:d6:af:02:24:55:99:
c5:a3:33:3d:a1:51:fc:cb:45:9a:0e:3b:40:3c:e1:c2:ae:35:
e7:16:0d:9c:67:76:a1:46:e6:8e:b1:8b:10:7c:f1:cf:37:8f:
d2:5f:2f:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 02:16:01 2025 by rpki-client