Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft
File: 0pigcUzBvyWsfH8c9sKIbIxhkqM.mft (raw, json)
Hash identifier: yhRqI7kignw7IVUU/GyFrj8yjjRS1XxQjVIH1Bn+l8g=
Subject key identifier: 33:38:92:E3:D5:77:B5:C1:B6:E3:75:79:B2:B2:B8:43:45:16:1D:4D
Authority key identifier: D2:98:A0:71:4C:C1:BF:25:AC:7C:7F:1C:F6:C2:88:6C:8C:61:92:A3
Certificate issuer: /CN=d298a0714cc1bf25ac7c7f1cf6c2886c8c6192a3
Certificate serial: 0196C382555BA8C3397FBC1CBFE5D12F7EFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0pigcUzBvyWsfH8c9sKIbIxhkqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft
Manifest number: 02B2
Signing time: Mon 12 May 2025 08:00:20 +0000
Manifest this update: Mon 12 May 2025 08:00:20 +0000
Manifest next update: Tue 13 May 2025 08:00:20 +0000
Files and hashes: 1: 0pigcUzBvyWsfH8c9sKIbIxhkqM.crl (hash: ey1EW8LMk/+ToU5367OwA6jJuHA5rQlDrERVwN/3etU=)
2: eBrn60Df7uG_ub_L-IV105lzs58.roa (hash: O8+G2XvuPwR1yEXnK+zmEZeJLzoyxFForxI59j5WNAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft
rsync://rpki.ripe.net/repository/DEFAULT/0pigcUzBvyWsfH8c9sKIbIxhkqM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 08:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:82:55:5b:a8:c3:39:7f:bc:1c:bf:e5:d1:2f:7e:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d298a0714cc1bf25ac7c7f1cf6c2886c8c6192a3
Validity
Not Before: May 12 08:00:20 2025 GMT
Not After : May 13 08:00:20 2025 GMT
Subject: CN=333892e3d577b5c1b6e37579b2b2b84345161d4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:bd:29:77:82:5b:a4:89:6b:f8:c1:e3:71:d9:
35:54:30:de:e6:b9:f7:f4:96:cc:ff:06:39:5a:a8:
c7:fd:8f:4e:e2:aa:01:f8:5a:09:a6:ed:05:55:f6:
c0:c8:68:ad:62:51:9d:44:e4:c8:14:e0:4b:dc:ad:
6f:91:8e:34:f8:22:19:1c:b5:96:cc:7c:8d:5e:a8:
be:16:52:6b:9a:a0:5e:28:65:79:cf:70:14:7f:cc:
2d:4f:2f:10:46:ec:f1:f8:83:fc:c0:06:4b:b8:8d:
5d:eb:fb:bc:74:9e:d5:fd:f3:cf:ec:5d:0d:2b:18:
bb:84:73:bd:9c:1a:3c:d2:de:5a:4c:ea:1b:c7:14:
99:ef:a4:4b:cf:79:51:e0:c5:26:cd:25:74:b8:33:
90:a6:1c:ae:62:aa:af:60:6e:0a:5a:4b:a1:58:34:
f6:63:99:0b:f0:2b:39:01:c3:85:af:0e:3b:a3:de:
2a:1d:08:f4:ff:13:e3:96:a1:a6:91:36:d9:ff:26:
a0:6b:db:70:8d:a9:87:f7:1e:1d:07:44:12:b9:75:
52:60:74:62:55:27:32:16:cf:8a:39:90:3f:6b:d2:
51:b8:2b:27:20:db:48:63:96:8c:d2:c7:7c:3d:f4:
ea:f5:1e:03:11:e7:a8:85:0e:68:1c:e8:f6:68:79:
39:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:38:92:E3:D5:77:B5:C1:B6:E3:75:79:B2:B2:B8:43:45:16:1D:4D
X509v3 Authority Key Identifier:
keyid:D2:98:A0:71:4C:C1:BF:25:AC:7C:7F:1C:F6:C2:88:6C:8C:61:92:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0pigcUzBvyWsfH8c9sKIbIxhkqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:57:b4:53:2a:14:37:3f:cf:0a:b3:88:68:34:d3:40:21:12:
6b:70:42:70:44:ec:28:88:3e:75:f7:4f:af:1b:14:3c:7a:48:
14:c4:87:09:1a:fd:4f:fa:c5:54:97:82:8a:36:2d:69:d9:8a:
79:f2:3b:4d:96:f5:90:13:67:0e:31:a5:fc:b7:da:db:e6:d1:
f5:88:ee:03:2f:3c:0d:b9:92:8d:bb:54:79:a8:13:76:03:0c:
77:d3:eb:7c:b8:d6:82:2a:75:4a:e0:b0:bc:1a:a8:a5:30:21:
29:85:19:f3:f0:1a:aa:fd:7c:f0:9f:ee:7a:9d:df:61:3f:52:
ed:ad:ad:70:d8:ff:62:2d:81:06:70:b1:4f:31:f8:d4:38:76:
78:a9:8d:89:5e:f6:83:89:8f:14:55:30:9b:5f:21:ce:87:f2:
db:9b:34:ad:1b:03:fb:64:98:ec:53:54:b6:7f:0c:fd:3f:03:
62:99:f1:41:a0:a4:28:53:c1:44:9b:c4:0a:c9:c9:89:6e:a6:
0f:3f:6c:6f:7f:ee:04:f6:20:01:ab:8b:30:bd:7e:10:88:cd:
15:ec:c2:2d:e9:59:f4:70:a2:25:43:f9:f0:5b:88:a9:1a:fe:
f5:73:b4:79:e3:a6:80:90:72:f7:62:68:49:23:48:6b:34:76:
ba:20:1c:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 16:17:20 2025 by rpki-client