Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
File: 1ehYR8xEuGECJwu9do5MPOuhyYg.mft (raw, json)
Hash identifier: iYFBUKbs5Mr7C7lR9D3OMy/XG0LnZCu01nNjdFmJufw=
Subject key identifier: 99:69:7F:49:ED:78:DD:D4:84:FD:63:27:28:51:52:74:30:BE:A2:DA
Authority key identifier: D5:E8:58:47:CC:44:B8:61:02:27:0B:BD:76:8E:4C:3C:EB:A1:C9:88
Certificate issuer: /CN=d5e85847cc44b86102270bbd768e4c3ceba1c988
Certificate serial: 0196BF37F4D8BEAC2EC27F51681385280D55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ehYR8xEuGECJwu9do5MPOuhyYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
Manifest number: 03C6
Signing time: Sun 11 May 2025 12:00:37 +0000
Manifest this update: Sun 11 May 2025 12:00:37 +0000
Manifest next update: Mon 12 May 2025 12:00:37 +0000
Files and hashes: 1: 1ehYR8xEuGECJwu9do5MPOuhyYg.crl (hash: jgxmKME2cmhq4tSMijgziCxlcpSEA3xCzlZA+mwL9Bw=)
2: HP2XU4ErP340JMFJBkwhXt7RSkM.roa (hash: jqU/k+IA4J2nUGc2ePon/4S6+Kq7gFeDjcwyWdzFAK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1ehYR8xEuGECJwu9do5MPOuhyYg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:37:f4:d8:be:ac:2e:c2:7f:51:68:13:85:28:0d:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5e85847cc44b86102270bbd768e4c3ceba1c988
Validity
Not Before: May 11 12:00:37 2025 GMT
Not After : May 12 12:00:37 2025 GMT
Subject: CN=99697f49ed78ddd484fd63272851527430bea2da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:19:8a:39:ff:d4:8a:08:67:fa:17:48:34:24:
1d:56:28:30:39:c2:3a:49:d4:eb:57:85:03:91:a2:
73:b1:d5:e6:49:56:45:a9:13:7d:71:32:74:79:21:
ec:85:fe:a8:72:f0:35:cc:27:c7:b6:fe:be:f1:9e:
4b:d8:24:75:d3:32:6f:ee:1e:3d:87:a6:a7:6a:b1:
a0:ba:40:54:34:7f:86:f8:25:52:29:28:d6:9f:fd:
ed:a8:93:8b:50:a1:b9:61:2e:3b:1f:ea:76:8b:b7:
6f:39:66:e8:13:cd:74:cc:c3:68:db:4a:62:5b:1b:
7e:26:70:06:9a:56:b5:2d:77:10:30:a4:d5:04:8b:
50:75:a7:20:bb:d3:8b:66:29:26:8d:50:45:4b:26:
b1:4a:82:a2:e1:eb:db:e5:20:13:70:73:7c:de:3b:
28:25:db:ca:4a:78:e8:9b:fd:7c:9c:9e:2a:33:36:
9c:84:ef:87:e4:e3:93:11:58:69:1c:d9:ab:a2:a4:
9d:f7:c1:dd:fa:2a:a6:c9:92:fa:be:2d:5f:0a:b0:
7a:18:b5:c4:00:82:d4:67:76:47:4b:72:ff:4a:58:
59:65:ae:db:ba:ed:4e:a5:c5:e3:85:18:5b:8c:0c:
47:2c:70:6f:02:54:55:5a:e6:5d:2f:5f:ec:44:a8:
fb:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:69:7F:49:ED:78:DD:D4:84:FD:63:27:28:51:52:74:30:BE:A2:DA
X509v3 Authority Key Identifier:
keyid:D5:E8:58:47:CC:44:B8:61:02:27:0B:BD:76:8E:4C:3C:EB:A1:C9:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ehYR8xEuGECJwu9do5MPOuhyYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/83f956-e18d-4738-bd6a-729c0f43414d/1/1ehYR8xEuGECJwu9do5MPOuhyYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:a6:7c:67:ed:87:12:8d:a1:5b:05:0e:f8:3d:46:f9:58:38:
6e:b2:c3:63:05:31:cd:08:3f:0c:35:60:e3:2a:55:07:99:45:
01:49:4f:19:d0:1e:86:91:83:29:40:34:e4:e6:c2:f0:41:26:
3a:75:05:91:46:0c:9e:fc:26:81:08:39:35:d6:28:a3:33:d2:
1e:f2:5e:ac:5a:c6:a5:e4:bc:be:fc:12:bd:f2:88:fc:7b:e8:
8f:83:fd:d7:7e:23:65:2f:c6:89:9c:00:4b:df:78:c4:35:87:
16:5c:4d:27:a4:21:7e:6c:3c:f0:77:a2:fe:9c:24:7b:55:f0:
dc:45:3e:87:56:02:07:ca:b1:73:fd:af:50:9e:7b:42:93:7d:
95:5d:79:37:69:74:f4:69:8e:da:61:40:8d:df:f6:a4:bb:7b:
c3:78:13:e6:1c:30:fa:c7:6d:8b:73:3e:35:7e:22:98:48:e4:
a1:89:b1:a8:d5:f9:dd:87:9d:23:40:dd:61:0a:8d:75:a4:b6:
11:27:65:ba:dd:5b:ad:2b:07:18:5a:ce:16:b2:7b:f7:07:12:
d0:b7:bd:4b:bf:30:82:39:71:ef:48:ec:8f:aa:a2:45:ae:37:
af:29:49:b7:23:15:59:e0:5c:74:cb:c4:79:a8:ca:e6:bd:b2:
99:a0:76:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 15:50:07 2025 by rpki-client