Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft
File: dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft (raw, json)
Hash identifier: S3BTKSR5zXECNMcIsq8HXm62xczZ5FxaXfVjG0YgdJI=
Subject key identifier: FB:D4:37:B0:13:1C:B0:EF:5D:ED:1F:6B:77:11:74:24:C5:86:16:31
Authority key identifier: 74:AE:94:1A:68:1C:15:86:37:9E:07:24:7D:CC:19:F3:F4:10:35:D8
Certificate issuer: /CN=74ae941a681c1586379e07247dcc19f3f41035d8
Certificate serial: 0196C0B84520C0F971D698918E02C33C016D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dK6UGmgcFYY3ngckfcwZ8_QQNdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft
Manifest number: 0CD3
Signing time: Sun 11 May 2025 19:00:23 +0000
Manifest this update: Sun 11 May 2025 19:00:23 +0000
Manifest next update: Mon 12 May 2025 19:00:23 +0000
Files and hashes: 1: aRphps94ueev9_cb0Fbr1t6EWos.roa (hash: qY/6yr4D72wfd0je0UgbA5pXBnLSwy4IbEDXkYKHi6c=)
2: dK6UGmgcFYY3ngckfcwZ8_QQNdg.crl (hash: gf40WPOuAFiizJjMAsSvFlNQ1V1besGhrzas4cx4wIc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft
rsync://rpki.ripe.net/repository/DEFAULT/dK6UGmgcFYY3ngckfcwZ8_QQNdg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 19:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:b8:45:20:c0:f9:71:d6:98:91:8e:02:c3:3c:01:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74ae941a681c1586379e07247dcc19f3f41035d8
Validity
Not Before: May 11 19:00:23 2025 GMT
Not After : May 12 19:00:23 2025 GMT
Subject: CN=fbd437b0131cb0ef5ded1f6b77117424c5861631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b4:39:10:3b:4b:af:f2:a5:8a:9f:77:c7:69:
49:14:bc:d1:e5:e5:19:1f:ea:cd:05:99:27:01:5b:
a4:17:ce:fc:1f:97:0a:75:c8:38:b8:e2:f0:25:98:
8d:79:8f:5a:32:f5:5c:8a:c1:fe:1d:7b:de:df:df:
1c:5d:9e:16:55:d2:64:f7:73:d6:8a:a0:5e:f0:00:
66:78:99:1c:ae:ec:f1:f3:e9:11:51:5f:ea:d0:e5:
6a:5b:97:b5:ad:60:18:64:91:89:93:95:03:d5:21:
02:22:ff:13:b6:da:c4:a2:91:27:22:d2:08:71:fb:
cf:17:7d:4d:ca:5b:47:99:03:38:cf:36:a1:91:21:
91:aa:0d:6c:38:07:11:55:90:5d:ef:cf:f8:5e:b2:
0b:d2:96:89:a5:ff:86:ca:e4:c2:a3:91:c1:83:75:
04:7b:a2:a9:3c:71:ac:e3:27:d8:7a:b3:d3:23:df:
97:7d:cd:16:35:b5:0a:c9:9d:c1:72:c8:41:cb:dc:
a7:12:60:d1:4e:4d:a9:44:fb:8e:68:ce:fa:99:24:
42:cb:8d:fc:da:78:3d:48:0a:9b:5a:00:26:f0:83:
9c:41:e1:75:b0:89:b2:c5:0f:30:3a:50:d0:c3:29:
0a:6b:99:e4:f4:ed:30:b1:ad:15:17:a5:a4:80:27:
3e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:D4:37:B0:13:1C:B0:EF:5D:ED:1F:6B:77:11:74:24:C5:86:16:31
X509v3 Authority Key Identifier:
keyid:74:AE:94:1A:68:1C:15:86:37:9E:07:24:7D:CC:19:F3:F4:10:35:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dK6UGmgcFYY3ngckfcwZ8_QQNdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:fb:c4:68:6e:f6:96:c8:92:c9:85:5c:3d:b9:a6:3a:8a:53:
53:33:a5:e6:24:bc:f5:18:34:ad:2c:29:e4:35:cd:7b:81:ff:
e1:39:fe:5e:83:37:41:d7:e8:59:a3:3d:e3:61:36:c5:5c:e9:
5e:f4:52:61:a0:80:12:d2:67:ec:c7:59:91:33:89:1a:30:58:
1f:81:50:d0:87:b5:7a:af:1b:ec:b1:ad:32:66:ea:9f:c0:43:
23:f2:02:0c:c4:c3:48:17:87:d2:d2:9c:c3:f3:76:7a:1f:08:
29:85:c8:53:e8:b0:43:a0:9a:cd:e1:1e:97:84:4d:d8:d4:9a:
68:2f:4a:f0:52:2c:bc:5d:83:d4:a2:5d:47:91:db:d8:e0:1d:
ca:8c:47:c6:6d:da:d5:1f:35:0a:9a:14:d1:f7:10:7e:71:99:
0b:0b:e0:b6:04:b2:7f:91:47:0e:19:47:bf:0f:2f:52:28:11:
3e:78:9b:cc:5a:52:c7:26:03:92:f5:40:37:b0:b4:7c:de:1f:
2f:f9:0f:ef:e9:2f:d0:43:ec:59:68:00:00:82:d7:c0:f5:65:
55:99:d1:aa:7b:82:2a:bb:75:64:0c:5f:14:07:77:a8:9a:df:
ab:bd:18:a5:87:fd:9e:0f:4d:94:3c:bf:07:f3:36:2d:90:ef:
81:a7:2b:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 03:56:49 2025 by rpki-client