Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft
File: vX2BeM7FzTdlSKkEkRf0acCnQxw.mft (raw, json)
Hash identifier: mfv/ZPobsOjpMAN+esFoTZJ1MuZEK9xFsfmFMO78Esk=
Subject key identifier: 16:3F:35:52:9D:6F:76:E9:BD:71:F2:EB:60:79:3D:61:8D:13:3F:70
Authority key identifier: BD:7D:81:78:CE:C5:CD:37:65:48:A9:04:91:17:F4:69:C0:A7:43:1C
Certificate issuer: /CN=bd7d8178cec5cd376548a9049117f469c0a7431c
Certificate serial: 0196BAB63B714D2573BA37FB342770733FB0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft
Manifest number: 153E
Signing time: Sat 10 May 2025 15:00:26 +0000
Manifest this update: Sat 10 May 2025 15:00:26 +0000
Manifest next update: Sun 11 May 2025 15:00:26 +0000
Files and hashes: 1: Ndw7HVDtjP0mKBQVp0z9A-CbAvY.roa (hash: Gvsu5qwW/HZfnE/HXNRfeWRnDFzMBicoBm7giJXuEbI=)
2: QPWAwQFNqSZZic2_WlAPH58qqA4.roa (hash: skiFt149qEZ92Md1xg5hAbPh0VVNiYKSR7UbnADB92E=)
3: fHkoAZxOrb4jS9uptQ9di3MomH4.roa (hash: OuL9G7DUjjtpe04g3KNS/iW0YgxTMwqsjJxCgrATRoE=)
4: vX2BeM7FzTdlSKkEkRf0acCnQxw.crl (hash: KlaMh4Y0szs1DFoO8LQdEOVfUXNQTb+LbEly+umL9xQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft
rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:b6:3b:71:4d:25:73:ba:37:fb:34:27:70:73:3f:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd7d8178cec5cd376548a9049117f469c0a7431c
Validity
Not Before: May 10 15:00:26 2025 GMT
Not After : May 11 15:00:26 2025 GMT
Subject: CN=163f35529d6f76e9bd71f2eb60793d618d133f70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8d:89:47:1f:8c:dd:c4:b2:53:d3:7c:6e:02:
92:04:1d:4c:cd:e6:b2:01:67:eb:3e:f9:86:e1:c4:
79:c7:95:8d:79:63:3e:3a:b9:c7:06:c8:88:44:de:
f6:ed:86:49:92:b5:fe:59:52:a2:13:96:09:04:ca:
05:8e:6c:ce:ff:9d:ee:91:60:3c:c0:d3:58:5c:13:
6c:cd:e9:e1:63:9c:3e:33:7d:f9:2a:29:8e:23:f0:
cd:10:c9:f8:15:41:72:62:9e:26:e9:a6:7f:d8:91:
07:2f:4d:b3:78:f5:7d:15:0c:15:01:cf:1e:eb:e7:
11:4d:4e:4d:a4:68:2d:f1:e7:c1:fb:8d:1b:0c:dc:
d3:02:84:cc:a8:a3:14:51:a4:8d:b9:0c:fe:e9:f0:
0e:ce:eb:af:10:af:44:75:12:9c:01:80:0f:cc:13:
3f:20:72:e0:39:b2:9c:d2:d1:6b:8e:66:2f:6c:d4:
9f:c6:8b:92:7e:f7:ed:05:f5:88:d8:83:2d:a6:bb:
e7:8d:f8:13:99:e5:3e:2d:2e:5c:3a:89:88:7c:34:
05:9f:48:3d:fc:10:f5:7e:01:15:66:44:d4:82:82:
97:96:58:ab:29:2e:01:cf:21:c5:53:a7:d5:50:fb:
9b:5e:49:26:ab:7d:52:eb:d4:14:4c:45:4e:af:8c:
f4:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:3F:35:52:9D:6F:76:E9:BD:71:F2:EB:60:79:3D:61:8D:13:3F:70
X509v3 Authority Key Identifier:
keyid:BD:7D:81:78:CE:C5:CD:37:65:48:A9:04:91:17:F4:69:C0:A7:43:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:b5:4d:71:ee:ef:d5:41:16:3f:9a:32:c7:45:b2:cf:be:32:
a4:63:1b:9c:8d:77:51:85:f6:17:19:8b:ac:09:03:3f:42:b3:
47:e3:86:2a:49:e6:37:d9:f2:9d:2c:f2:aa:e7:33:96:cf:a5:
c1:10:d8:43:15:f1:c1:7b:dc:a9:8a:d3:ed:19:5c:2e:e3:1b:
27:54:ea:31:b1:eb:39:94:78:42:72:43:af:fa:63:90:f9:73:
12:3d:cf:f7:63:79:ec:1c:d1:68:08:24:31:26:81:5a:3c:00:
d6:00:2c:79:fa:db:d7:18:e7:ca:ca:d8:77:f7:35:05:9c:9f:
1c:45:67:bf:74:f0:51:3b:c3:9d:3c:79:2f:8e:15:7a:02:32:
c3:23:6f:21:d4:ff:b0:5a:08:3c:a9:36:77:35:7d:94:f3:70:
27:82:11:90:c4:1d:b1:5f:bd:73:97:fd:a7:61:c1:e9:bc:a2:
eb:2d:85:02:22:f7:58:33:5a:ad:36:b5:a7:36:05:84:ea:7f:
ea:d5:34:30:e6:d3:5e:db:5f:41:81:b2:38:36:ec:4d:21:e2:
6f:76:37:61:15:03:f5:60:37:68:98:c0:13:af:71:09:2e:b5:
49:25:d1:a8:46:25:93:62:11:aa:50:ad:9f:86:5b:24:ff:8e:
94:d3:f1:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 19:15:04 2025 by rpki-client