Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft
File: RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft (raw, json)
Hash identifier: QF7Bu+aPO5xXF2bFDwjKcfacqnst2S/IfqqCXxrDMVE=
Subject key identifier: 07:8C:4E:53:79:5F:0F:81:29:6B:12:74:74:40:E5:FA:CC:36:5E:4E
Authority key identifier: 44:81:4E:A7:E8:3B:40:19:BF:D5:79:7E:BA:98:9D:A0:6D:D9:0E:33
Certificate issuer: /CN=44814ea7e83b4019bfd5797eba989da06dd90e33
Certificate serial: 0196C9F2E2E3215DB2D12E53D56E18A21812
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RIFOp-g7QBm_1Xl-upidoG3ZDjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft
Manifest number: 0D01
Signing time: Tue 13 May 2025 14:01:00 +0000
Manifest this update: Tue 13 May 2025 14:01:00 +0000
Manifest next update: Wed 14 May 2025 14:01:00 +0000
Files and hashes: 1: RIFOp-g7QBm_1Xl-upidoG3ZDjM.crl (hash: sbvNvWEJ9mU4oR2s/VSmrkTtHSa0Ncw4ptqKvrJs0n0=)
2: UjkL1yTwH0Ugfy2br2JpH0C8VqU.roa (hash: byfiFTAulr+F8qmR9o1/fYHwOTE6vMHjzS05/tD7xBQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft
rsync://rpki.ripe.net/repository/DEFAULT/RIFOp-g7QBm_1Xl-upidoG3ZDjM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 13:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:f2:e2:e3:21:5d:b2:d1:2e:53:d5:6e:18:a2:18:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44814ea7e83b4019bfd5797eba989da06dd90e33
Validity
Not Before: May 13 14:01:00 2025 GMT
Not After : May 14 14:01:00 2025 GMT
Subject: CN=078c4e53795f0f81296b12747440e5facc365e4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e7:37:ef:4f:f2:d0:cc:d6:c0:87:e8:93:18:
ce:a7:94:28:4d:3d:df:1c:64:ab:ba:9e:d6:5e:52:
40:44:1e:e6:42:de:2d:52:93:f0:98:c1:57:2f:c8:
f1:9c:b3:94:0c:5f:f1:da:9b:dd:88:fb:b2:6b:97:
94:66:10:73:63:e2:67:02:4d:3f:c9:ed:8a:c5:f6:
7a:46:e9:f1:82:1e:fe:c7:ad:1e:59:c0:a9:89:7e:
8c:08:00:4f:4b:ed:4d:0b:e7:bd:50:03:c1:a0:6c:
34:43:24:cb:aa:ef:bf:47:12:2b:de:a9:e2:ec:94:
b7:3e:d6:86:89:52:df:31:f6:38:b8:20:64:ca:8c:
56:b6:35:3d:6c:32:55:5d:39:07:7b:32:05:2a:40:
69:ff:5a:2e:84:df:13:5c:32:13:8e:d4:26:39:18:
89:d8:26:2f:a0:44:d5:4f:82:b8:42:1c:81:cc:e8:
05:c9:17:10:00:1b:14:fe:47:f9:93:0b:01:09:d8:
67:c5:a4:57:aa:d0:7a:ad:5d:96:73:05:60:11:bc:
55:02:00:f0:21:e0:b1:54:fb:30:7c:4c:78:68:53:
a5:cb:56:c5:f1:62:c8:88:8b:7e:c8:17:71:cd:2e:
16:54:4d:64:59:54:03:37:cb:e9:eb:af:7c:9c:18:
2c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:8C:4E:53:79:5F:0F:81:29:6B:12:74:74:40:E5:FA:CC:36:5E:4E
X509v3 Authority Key Identifier:
keyid:44:81:4E:A7:E8:3B:40:19:BF:D5:79:7E:BA:98:9D:A0:6D:D9:0E:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RIFOp-g7QBm_1Xl-upidoG3ZDjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:88:49:01:25:59:cd:46:10:3a:b9:16:90:21:50:ef:50:18:
46:5b:32:e4:c1:91:32:b3:37:e3:2d:f6:e9:29:4a:53:c6:fc:
b7:82:72:55:87:aa:3d:29:b4:9c:05:0d:87:82:16:14:ff:ac:
d9:85:80:cd:f4:bd:3c:20:b4:7f:e2:7e:aa:b9:27:18:4f:c4:
92:33:3e:f4:8a:13:78:c3:f3:70:7e:18:e0:55:03:c2:dc:25:
97:68:aa:08:58:18:02:7f:53:de:db:bf:46:db:f0:ad:48:8f:
fd:4a:41:8e:8c:07:4b:bb:f0:45:68:df:55:7c:d0:c4:66:e4:
fc:32:14:a9:c0:5d:39:a9:8e:33:1d:30:3d:c7:0d:67:87:69:
9d:db:42:6f:7b:24:2a:15:62:80:10:3c:3d:8f:e1:c7:09:7c:
39:8e:b0:ae:16:fb:9e:0f:8c:59:77:05:ba:b4:e6:a1:4e:d4:
f1:f1:e5:96:48:e3:0f:37:9e:23:82:9b:2a:c3:c2:96:43:ef:
17:d0:c1:46:17:d9:65:3e:16:de:c3:58:a3:f5:dc:f1:8b:06:
69:0c:fa:df:00:9b:67:f8:d9:96:65:df:f2:41:fd:2c:6a:c4:
68:d8:6c:d1:02:b5:85:8b:cb:4a:e6:04:82:aa:70:ad:8f:4f:
dc:a3:b5:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 16:36:02 2025 by rpki-client