Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
File: rCGhE9G6AdEH_feRMIwKUfPQbdo.mft (raw, json)
Hash identifier: /HOsvnZb+ZIhBCfn1Zw+jZ8QrvdVfoqnQVS09tZrMbg=
Subject key identifier: 3A:EA:56:6A:D4:BC:C5:11:0B:C7:A5:11:78:5C:B9:01:F6:10:F6:DE
Authority key identifier: AC:21:A1:13:D1:BA:01:D1:07:FD:F7:91:30:8C:0A:51:F3:D0:6D:DA
Certificate issuer: /CN=ac21a113d1ba01d107fdf791308c0a51f3d06dda
Certificate serial: 0196B85A674123F1152F59B225A471C38D9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
Manifest number: 041A
Signing time: Sat 10 May 2025 04:00:54 +0000
Manifest this update: Sat 10 May 2025 04:00:54 +0000
Manifest next update: Sun 11 May 2025 04:00:54 +0000
Files and hashes: 1: 0Yi_JnLw94TXhrC5nYi7nz8aE9Q.roa (hash: PcfAm6zv9EFMWgISV3l4XmKFXD7W1Vvh/DKcICx2Ck4=)
2: rCGhE9G6AdEH_feRMIwKUfPQbdo.crl (hash: MnvTZhglVTmf4qSE85oyPRQwrsPJGnCwaDUCOS9jhQc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:5a:67:41:23:f1:15:2f:59:b2:25:a4:71:c3:8d:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac21a113d1ba01d107fdf791308c0a51f3d06dda
Validity
Not Before: May 10 04:00:54 2025 GMT
Not After : May 11 04:00:54 2025 GMT
Subject: CN=3aea566ad4bcc5110bc7a511785cb901f610f6de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:55:32:39:0a:7c:42:c4:fa:9a:79:27:c1:46:
3b:6f:6f:24:f4:f1:d6:3e:c8:28:02:57:06:2e:05:
6b:48:06:2c:cb:4e:8d:2a:69:c3:5b:b7:a7:a2:22:
a4:92:bf:c0:f5:ec:9e:fb:e1:fa:6d:fe:91:f3:62:
65:99:cc:fd:2c:83:83:5e:5e:dd:1c:ac:25:d3:93:
e3:14:d1:ad:61:ba:13:96:65:c8:3e:82:7e:0f:39:
66:84:da:01:3d:49:17:57:6d:76:9c:c4:69:30:a8:
32:c8:14:d6:c1:a7:7d:aa:05:fa:05:3e:18:03:77:
a7:7c:3e:b5:dc:98:d2:42:e2:a6:fc:0a:e1:15:21:
d6:68:97:02:78:5f:a2:5a:55:a0:43:3f:f4:74:a1:
2f:c3:f9:12:e1:95:ed:1e:55:55:76:5e:33:a5:58:
e1:b1:20:73:c4:dd:e7:97:98:ef:1e:59:cb:78:54:
ab:45:86:05:77:3d:c1:81:6c:2a:e9:a3:52:a0:6c:
e7:24:bc:65:42:35:57:ff:4b:1d:06:a2:04:db:db:
f0:4b:fe:9d:21:f6:97:83:ef:3a:3b:30:1e:99:6c:
a5:7b:75:c5:25:fd:25:13:89:a3:62:02:f8:fa:9d:
14:0e:8c:16:80:2e:73:fe:bd:2f:93:20:55:a6:66:
82:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:EA:56:6A:D4:BC:C5:11:0B:C7:A5:11:78:5C:B9:01:F6:10:F6:DE
X509v3 Authority Key Identifier:
keyid:AC:21:A1:13:D1:BA:01:D1:07:FD:F7:91:30:8C:0A:51:F3:D0:6D:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:52:db:a7:68:eb:06:ca:db:b0:0d:34:b6:7a:21:9b:14:bb:
2f:1c:c9:2b:69:c0:d7:53:bf:71:fa:a6:03:c3:16:3c:16:b1:
b4:af:23:36:62:e9:5b:11:45:0d:54:6d:ce:5f:1a:35:ac:fa:
2a:63:74:de:e9:7f:f5:68:13:0e:d2:9a:4f:8f:6b:47:61:0a:
b3:b4:6b:7f:85:41:37:ad:0e:4c:a4:da:89:94:16:36:e9:a6:
9b:45:dc:4c:f5:35:9a:6c:76:51:bd:b5:8d:81:09:14:64:a1:
9d:5b:86:0a:95:51:25:20:62:c7:67:d0:3f:46:9a:49:38:65:
05:9f:d0:fd:90:8e:4c:28:22:36:08:1e:de:94:ff:7f:32:83:
f4:9e:6b:85:30:f2:a5:87:09:87:17:c8:1a:77:4f:be:e6:ea:
d9:ec:4d:28:b4:09:fb:a0:d7:5c:08:d5:90:c1:13:17:aa:2d:
57:7b:8c:cd:13:d0:7a:ec:2a:31:35:f2:5d:b8:f6:e9:fb:56:
a4:5f:96:78:68:5e:5b:1d:50:d4:dc:1e:dc:8b:3e:29:98:8e:
c1:e6:b0:1f:87:85:79:ab:94:06:4a:e7:0e:bb:f4:ab:98:d4:
cc:2b:df:5b:89:94:69:90:d6:d6:53:dd:d0:d2:61:b9:7d:a2:
9f:f9:67:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 11:31:46 2025 by rpki-client