Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
File: ss0DX6sYpLeCYURWP2DniYpO8PE.mft (raw, json)
Hash identifier: ZI25xll1f6P0D8SOcSnlrQ9tEwwi/b2c82PCzBOvm34=
Subject key identifier: 7E:02:E7:7C:AB:BC:84:10:0A:7E:06:A4:73:A7:27:19:BA:6B:A3:FA
Authority key identifier: B2:CD:03:5F:AB:18:A4:B7:82:61:44:56:3F:60:E7:89:8A:4E:F0:F1
Certificate issuer: /CN=b2cd035fab18a4b7826144563f60e7898a4ef0f1
Certificate serial: 0196BE9313CF5EC48B59965A2B41F92820CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ss0DX6sYpLeCYURWP2DniYpO8PE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
Manifest number: 1051
Signing time: Sun 11 May 2025 09:00:32 +0000
Manifest this update: Sun 11 May 2025 09:00:32 +0000
Manifest next update: Mon 12 May 2025 09:00:32 +0000
Files and hashes: 1: 8ioI1P3WjfVGZeocJzXjV25zEAM.roa (hash: R5/GZ5yigab2BnvLmrfCDXR0klk9Au0FN2fkvOAY+V4=)
2: ss0DX6sYpLeCYURWP2DniYpO8PE.crl (hash: UdFI5C7gF/hGhp0lVJfD/pom1R4xtJcSfBYYS06LhXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ss0DX6sYpLeCYURWP2DniYpO8PE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 09:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:93:13:cf:5e:c4:8b:59:96:5a:2b:41:f9:28:20:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2cd035fab18a4b7826144563f60e7898a4ef0f1
Validity
Not Before: May 11 09:00:32 2025 GMT
Not After : May 12 09:00:32 2025 GMT
Subject: CN=7e02e77cabbc84100a7e06a473a72719ba6ba3fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:36:2c:ad:20:ff:a6:f6:0a:09:61:d0:91:e7:
d0:46:50:40:4e:f6:67:38:dc:27:2c:30:a2:8a:08:
26:39:e8:bb:eb:04:36:ac:8a:25:69:dd:66:1a:98:
8e:29:c5:ce:9a:05:7c:60:b9:f6:f0:dc:8f:4a:9b:
35:da:99:47:dd:cd:ae:1f:30:ed:c5:72:bd:1e:7d:
55:20:ca:bc:6e:b6:a9:2f:48:e9:71:9c:a5:93:1c:
9d:6f:d1:a1:72:74:a8:76:e4:e0:17:94:83:8f:df:
62:ec:e0:b9:71:55:d7:99:d0:43:7e:ed:78:24:74:
ec:e6:37:59:9a:dc:eb:c1:0b:61:7d:96:29:ac:4f:
df:d8:7a:fa:cd:42:c3:ef:67:f0:2b:85:80:03:fb:
13:e3:bb:5f:cf:29:01:17:03:33:c5:b2:17:05:11:
be:9b:42:1b:f9:59:25:5c:5d:38:6a:81:ba:b8:63:
ab:5d:56:a4:cd:43:33:ff:e7:1f:0c:4c:bf:5b:e5:
df:2d:8b:d3:09:0b:79:d6:3b:b1:5f:43:fd:a9:07:
ff:33:06:64:2c:c4:72:2c:be:66:02:ee:2e:48:f8:
63:40:df:40:79:d7:f0:f4:af:d8:72:10:4f:88:56:
eb:4c:f1:ce:72:57:87:63:e5:e8:83:36:04:50:ca:
df:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:02:E7:7C:AB:BC:84:10:0A:7E:06:A4:73:A7:27:19:BA:6B:A3:FA
X509v3 Authority Key Identifier:
keyid:B2:CD:03:5F:AB:18:A4:B7:82:61:44:56:3F:60:E7:89:8A:4E:F0:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ss0DX6sYpLeCYURWP2DniYpO8PE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:be:fe:fa:ce:29:0c:dd:9c:26:3f:70:6e:9a:e6:23:ee:63:
82:6f:09:50:ec:c9:97:6a:e0:2d:b4:a0:e0:73:e0:ab:f8:1a:
1d:36:47:77:80:6e:64:7a:9a:20:55:ac:8f:e5:28:e9:6e:63:
06:38:5f:d6:ef:c2:bc:02:e8:30:bb:79:68:f5:97:3d:73:09:
66:1f:3a:06:12:a8:30:a4:83:5b:8a:1a:5c:46:ef:ba:08:ae:
aa:fc:95:d6:e0:65:dc:22:69:eb:05:49:e7:0a:36:7a:d0:1b:
ef:5a:06:65:3c:48:f0:fd:8b:cf:4a:5c:3b:a1:20:9f:d4:c3:
47:32:9c:9a:b6:f0:a2:63:c9:b5:77:e6:86:eb:c3:fc:8f:28:
e5:fc:7e:73:2f:aa:f9:13:3c:e6:12:13:bc:d4:2d:7a:f8:4a:
3c:cb:0d:54:b7:3a:d4:18:c5:96:83:96:f1:9c:48:96:40:51:
64:7d:57:df:cd:1d:fb:ef:c8:4e:70:dd:06:c6:fb:27:db:23:
4f:8b:f0:ca:7f:44:6b:92:5a:f5:aa:0c:74:ac:e8:67:b5:df:
e5:d7:0a:b5:a6:1f:84:09:10:8a:da:a8:2b:b0:48:ee:30:2e:
45:c8:4e:28:10:ac:5c:f6:e3:2d:0a:4c:84:43:82:3a:b5:e7:
fd:b6:c6:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 18:55:52 2025 by rpki-client