Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/c40875-061a-42df-9c6d-87a6845f66f9/1/cimwOc-KrxQdbm1hbnwWkInLyzI.mft
File: cimwOc-KrxQdbm1hbnwWkInLyzI.mft (raw, json)
Hash identifier: f4ZxdcntrO/2OgCfmSmnmaNbRBiy/Xw3Gofz+GvKwQY=
Subject key identifier: 35:B8:A5:D7:10:48:74:89:F0:9D:AC:BE:75:D7:BA:95:12:99:F1:20
Authority key identifier: 72:29:B0:39:CF:8A:AF:14:1D:6E:6D:61:6E:7C:16:90:89:CB:CB:32
Certificate issuer: /CN=7229b039cf8aaf141d6e6d616e7c169089cbcb32
Certificate serial: 0196B66BF34E2088E663F89C99EC57DACD53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cimwOc-KrxQdbm1hbnwWkInLyzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/c40875-061a-42df-9c6d-87a6845f66f9/1/cimwOc-KrxQdbm1hbnwWkInLyzI.mft
Manifest number: 0C6D
Signing time: Fri 09 May 2025 19:00:50 +0000
Manifest this update: Fri 09 May 2025 19:00:50 +0000
Manifest next update: Sat 10 May 2025 19:00:50 +0000
Files and hashes: 1: _11c4KnryngFBZ3LrSwCjXVWAnI.roa (hash: 4suX3JVW+dbra41XqoLSgaNnHC7+X6k6GS1R8JLgxL8=)
2: cimwOc-KrxQdbm1hbnwWkInLyzI.crl (hash: RiokSwoJuXjNJ+FfDd3DRvbvrgD6OqzsuXGBfajGorc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/c40875-061a-42df-9c6d-87a6845f66f9/1/cimwOc-KrxQdbm1hbnwWkInLyzI.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/c40875-061a-42df-9c6d-87a6845f66f9/1/cimwOc-KrxQdbm1hbnwWkInLyzI.mft
rsync://rpki.ripe.net/repository/DEFAULT/cimwOc-KrxQdbm1hbnwWkInLyzI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 17:53:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b6:6b:f3:4e:20:88:e6:63:f8:9c:99:ec:57:da:cd:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7229b039cf8aaf141d6e6d616e7c169089cbcb32
Validity
Not Before: May 9 19:00:50 2025 GMT
Not After : May 10 19:00:50 2025 GMT
Subject: CN=35b8a5d710487489f09dacbe75d7ba951299f120
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e8:c0:d5:4c:50:86:c7:46:47:db:23:e1:c8:
18:f8:ca:26:76:a3:25:15:17:92:b5:89:15:6c:5e:
64:91:db:98:05:93:00:4d:89:50:80:8a:d6:7b:85:
43:8c:4f:d9:aa:2e:3f:9d:c9:44:06:27:cf:7a:4c:
c5:61:d2:8c:fb:67:62:d7:db:97:48:d1:e9:32:14:
76:03:1c:98:55:94:4d:4c:e1:fd:a1:d0:11:c3:80:
92:ec:11:52:f3:1a:5e:02:4a:29:d7:01:40:9b:0c:
ab:46:b5:41:b4:33:d8:5f:bc:c1:ce:1d:df:29:56:
db:89:43:f8:2c:aa:f1:0d:e4:66:5e:40:58:d9:33:
1b:b2:5b:93:98:d3:f6:0d:2f:8f:8b:c9:a6:80:e3:
7d:a7:6e:c9:fc:0d:44:d7:05:99:85:ca:cf:d1:a3:
34:e0:c3:83:73:88:ca:54:0e:b1:e6:d1:8d:f6:5b:
82:05:5d:7a:06:d7:1f:25:0b:0e:ed:ec:0a:a5:7c:
0f:6b:d2:02:19:3f:bf:5f:dc:88:a3:6a:c4:c5:a9:
b7:ee:38:bd:85:26:72:79:7d:23:96:5f:0b:c1:20:
f8:3a:c9:15:5e:bb:9e:b3:31:89:36:5a:3d:09:12:
cd:1f:d5:e0:1b:8d:23:00:07:4c:11:14:40:79:b8:
da:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:B8:A5:D7:10:48:74:89:F0:9D:AC:BE:75:D7:BA:95:12:99:F1:20
X509v3 Authority Key Identifier:
keyid:72:29:B0:39:CF:8A:AF:14:1D:6E:6D:61:6E:7C:16:90:89:CB:CB:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cimwOc-KrxQdbm1hbnwWkInLyzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c40875-061a-42df-9c6d-87a6845f66f9/1/cimwOc-KrxQdbm1hbnwWkInLyzI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c40875-061a-42df-9c6d-87a6845f66f9/1/cimwOc-KrxQdbm1hbnwWkInLyzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:ba:27:96:4b:99:66:88:6a:49:dc:9d:3b:cf:ce:c2:39:2c:
f2:10:21:52:90:51:af:74:0a:ec:33:f8:ab:2e:65:0d:d4:58:
f6:c0:86:bc:c3:a3:51:48:83:f3:89:24:10:ab:c4:cb:15:7e:
9d:e1:64:ed:51:64:9d:02:37:5b:5e:97:bd:45:be:2d:51:2c:
4f:08:84:5c:5c:2c:29:8a:64:40:c2:09:c4:37:e7:da:5d:51:
83:fc:1c:dc:3d:dd:f8:a7:94:48:5a:59:10:ea:2b:13:16:41:
13:c0:b5:38:04:04:63:61:70:5d:26:32:7c:68:8a:94:3c:7d:
eb:9f:5a:a2:e4:60:f1:1d:f9:6f:1e:ff:fa:06:f0:60:a8:33:
9a:7e:b1:45:26:b4:63:0b:81:41:8e:cb:6e:d6:90:40:66:ec:
fc:d3:d8:61:1f:11:d8:99:2b:5b:f4:3a:ea:7e:97:9e:2e:09:
9c:7b:f7:20:89:fb:e5:b4:cd:bb:e1:bd:57:89:05:f8:3d:e7:
e5:ad:5d:f6:07:fc:af:ad:a6:7e:a7:be:28:39:f8:15:61:97:
46:f5:f3:f8:94:f2:20:07:8c:d3:27:40:c6:09:de:2a:39:84:
b5:2c:54:da:86:a1:74:0d:e8:8b:8e:ff:89:76:f4:9f:08:e1:
45:ab:dc:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 23:43:50 2025 by rpki-client