Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
File: geTmB1l46pR2tkHOAIx4erKOXRM.mft (raw, json)
Hash identifier: W1o36fhXqtcoU37EgHErsxUz8RTmMxxNsYVA7uop6S4=
Subject key identifier: 06:75:16:65:D0:D3:E7:D3:C5:10:64:DC:D9:61:E6:03:98:02:1B:CB
Authority key identifier: 81:E4:E6:07:59:78:EA:94:76:B6:41:CE:00:8C:78:7A:B2:8E:5D:13
Certificate issuer: /CN=81e4e6075978ea9476b641ce008c787ab28e5d13
Certificate serial: 0196C9BBD75B5782E4235AB4E7B67412ECDE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
Manifest number: 1539
Signing time: Tue 13 May 2025 13:00:52 +0000
Manifest this update: Tue 13 May 2025 13:00:52 +0000
Manifest next update: Wed 14 May 2025 13:00:52 +0000
Files and hashes: 1: dBbI1Z81Mloa7W2OzhoKXchOrRQ.roa (hash: cFMz5yq3xJCpOCH1TXFzmCMMTxw6N/8cLdoB9ZDvza0=)
2: geTmB1l46pR2tkHOAIx4erKOXRM.crl (hash: oJxHb98dA4OPl/a6c+6mxBo2ez6ujN1SBuIkaKc1jKM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 13:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:bb:d7:5b:57:82:e4:23:5a:b4:e7:b6:74:12:ec:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81e4e6075978ea9476b641ce008c787ab28e5d13
Validity
Not Before: May 13 13:00:52 2025 GMT
Not After : May 14 13:00:52 2025 GMT
Subject: CN=06751665d0d3e7d3c51064dcd961e60398021bcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:33:ae:61:49:d8:d9:c5:f9:e3:48:3d:b4:61:
40:0c:37:cc:67:a5:1d:3b:37:24:48:b7:2d:15:46:
3a:fa:8f:05:44:34:67:36:83:4c:e1:3e:a7:a5:bf:
23:c9:6e:2b:9b:67:54:93:8f:bc:60:6f:4b:54:ab:
32:8c:b0:10:22:e8:a8:02:af:de:68:a2:80:be:96:
bd:fb:b5:bc:03:9e:c8:19:f8:15:a8:4e:29:d2:a3:
1c:e0:ed:8f:e6:07:cc:d9:9f:fd:98:3f:d5:4f:05:
6d:ad:2b:48:fd:39:eb:7b:ee:87:09:74:bd:1e:14:
ea:70:ad:dd:d1:72:6f:c9:1d:3d:12:fe:ec:bf:8a:
b7:9c:af:99:84:4e:3e:7b:a5:69:73:2a:77:12:9b:
2a:de:9d:3e:5c:a3:97:a1:34:8a:4a:8a:83:fc:92:
92:83:9b:aa:55:91:72:1c:d4:1e:78:ef:17:98:c6:
36:c4:29:fa:85:52:34:af:92:ed:81:81:0e:62:31:
26:d4:fd:dc:a2:ae:d5:d4:83:52:d7:dc:18:12:cd:
bc:e1:b4:75:3d:e1:ed:87:82:bd:c9:8b:65:c2:b3:
e5:e8:1a:75:bd:f8:5f:34:90:de:00:b3:1b:24:bb:
16:27:8e:4d:db:1b:45:a6:dd:10:ac:d0:62:30:11:
0d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:75:16:65:D0:D3:E7:D3:C5:10:64:DC:D9:61:E6:03:98:02:1B:CB
X509v3 Authority Key Identifier:
keyid:81:E4:E6:07:59:78:EA:94:76:B6:41:CE:00:8C:78:7A:B2:8E:5D:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:21:37:d0:09:fb:d9:fc:37:3c:b3:c0:c0:6c:2b:10:53:cf:
eb:00:7c:5e:19:59:fb:0a:51:32:a1:bc:6d:81:7f:25:40:16:
db:b1:ca:94:31:a6:79:25:7d:fe:dc:a3:fd:2f:5b:e4:69:e5:
65:3f:da:d0:62:34:fb:2d:18:78:1a:bf:55:b6:4d:b2:12:80:
13:e0:bc:0a:36:aa:d4:e0:2f:42:c5:e6:a8:3b:67:cb:27:2f:
02:79:2e:87:91:6b:48:8c:de:1b:f2:c0:9f:b6:46:57:f3:aa:
94:39:e2:7a:a5:6f:23:5d:43:3e:ff:61:4c:d1:75:40:d1:62:
e1:0d:a4:08:a5:7d:0b:c8:ee:40:14:9b:7d:ed:80:c3:d8:6c:
b8:20:9a:b4:a2:31:4a:67:a4:67:24:92:9b:c7:01:e7:bf:cd:
bb:9a:ee:88:1d:3a:4f:d9:e0:1c:54:dc:dd:c5:74:49:de:47:
34:f7:97:6e:55:8d:6e:2f:81:70:4a:02:4f:d9:bf:b4:70:02:
a7:f8:0b:28:3d:ce:c4:66:d6:f6:66:e2:03:97:6e:c4:c8:d6:
fa:78:09:af:9a:87:45:22:aa:43:20:d9:27:ed:c1:18:a1:86:
70:cc:70:3f:f1:e7:56:ff:12:36:a9:53:81:9f:76:95:72:14:
80:13:d9:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 19:39:03 2025 by rpki-client