Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.mft
File: esYj77_BJHEhYiQMugKk2h1NzqM.mft (raw, json)
Hash identifier: dBoL3iOgvyLPIKyTh+BrEbWxISEbcpPPDZvxP5N4UtQ=
Subject key identifier: 98:3F:FE:A7:F6:B7:58:F4:6F:99:A8:7C:31:A9:A1:6E:53:1A:C5:35
Authority key identifier: 7A:C6:23:EF:BF:C1:24:71:21:62:24:0C:BA:02:A4:DA:1D:4D:CE:A3
Certificate issuer: /CN=7ac623efbfc124712162240cba02a4da1d4dcea3
Certificate serial: 0196C502DEC5CC605BE5AA91162833863F5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/esYj77_BJHEhYiQMugKk2h1NzqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.mft
Manifest number: 0D2F
Signing time: Mon 12 May 2025 15:00:21 +0000
Manifest this update: Mon 12 May 2025 15:00:21 +0000
Manifest next update: Tue 13 May 2025 15:00:21 +0000
Files and hashes: 1: SYRnChSsh0_v6fjwXGx7ILcwh_8.roa (hash: ub+o2UwDjpsKp4KwHEYNQcFaXm52BqcyybdGRXcC+wM=)
2: esYj77_BJHEhYiQMugKk2h1NzqM.crl (hash: Pka3gTjAluQUZ8/QdtuMy9h7iBa5A8EMDiQzrM2qoxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.mft
rsync://rpki.ripe.net/repository/DEFAULT/esYj77_BJHEhYiQMugKk2h1NzqM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c5:02:de:c5:cc:60:5b:e5:aa:91:16:28:33:86:3f:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ac623efbfc124712162240cba02a4da1d4dcea3
Validity
Not Before: May 12 15:00:21 2025 GMT
Not After : May 13 15:00:21 2025 GMT
Subject: CN=983ffea7f6b758f46f99a87c31a9a16e531ac535
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:66:c0:43:bc:cc:f0:15:58:42:83:49:ff:46:
b0:82:17:5b:77:65:a5:01:c8:10:f1:24:7b:ec:f3:
50:d2:3f:5f:eb:02:ec:c9:d8:7a:6f:65:74:c7:87:
a7:1b:47:75:ec:6d:ca:4c:47:8c:85:a1:cc:00:4f:
1f:fb:8e:3e:82:8b:41:01:72:b3:9c:81:74:4e:c7:
3d:11:61:fa:14:09:67:55:11:cf:78:9a:1d:9a:18:
57:6f:a0:c8:c9:18:72:d9:35:04:b0:d2:16:1f:07:
ed:6e:60:b9:e0:d9:07:26:72:ce:8c:f2:fa:8c:6d:
cd:17:1c:db:31:65:74:c6:9d:75:a8:5c:ee:9c:04:
8e:e3:ba:29:e8:75:c9:1c:b3:97:92:14:8b:ac:f1:
06:87:3f:3b:2d:08:de:f5:38:1d:fd:c9:2c:b0:40:
83:8d:8a:e5:7a:16:cc:3e:1f:ac:1f:e4:5c:af:3c:
b8:ad:86:7a:0a:04:b2:36:e1:e2:60:cf:e0:89:d9:
a3:d6:50:a3:97:96:b9:d1:4f:ac:30:3f:f0:0c:e1:
d9:a5:15:1e:39:e1:be:1c:0c:f0:53:a6:ce:5f:08:
23:cf:5d:45:a1:8f:b9:94:80:7e:cd:e1:a9:3d:76:
c6:77:51:dd:da:58:35:d3:e7:9f:c4:69:29:c1:4d:
5e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:3F:FE:A7:F6:B7:58:F4:6F:99:A8:7C:31:A9:A1:6E:53:1A:C5:35
X509v3 Authority Key Identifier:
keyid:7A:C6:23:EF:BF:C1:24:71:21:62:24:0C:BA:02:A4:DA:1D:4D:CE:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/esYj77_BJHEhYiQMugKk2h1NzqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:2f:2f:c8:b3:eb:f2:36:2a:00:27:3a:1f:5c:14:f7:41:54:
cc:64:aa:c5:53:c0:e0:1a:59:72:44:98:e6:44:f6:a4:2e:27:
21:ce:13:a8:78:ca:bb:8c:b5:94:dd:28:3f:1f:f5:e9:c2:55:
fc:c0:fe:fc:10:b5:27:73:90:a9:bb:2b:b1:28:75:15:3e:c9:
34:4f:ff:94:b2:14:3c:60:8c:f7:c1:f8:e4:a4:12:ca:7e:45:
b4:19:64:01:4f:7b:09:d2:c3:03:25:49:1b:26:9a:bc:21:e2:
da:f0:b1:13:04:5f:ba:23:8e:a2:d9:4e:7a:50:79:56:54:00:
05:fa:70:6b:1e:92:1f:25:11:66:65:37:90:69:23:7d:64:bf:
fd:4f:4a:2c:0d:4d:d9:0c:d1:cd:1f:05:9d:d7:25:b7:e9:f8:
d9:0d:41:50:aa:cf:1b:d8:f9:2e:7e:3d:2f:69:e4:a6:da:9a:
7d:49:ba:1c:40:8b:c4:76:1c:31:57:a6:e7:9f:49:4e:5d:dd:
c0:77:b8:5c:77:41:4b:d8:7b:e1:73:02:f8:c1:5f:99:8b:ac:
60:fa:40:5b:db:74:74:89:2c:65:6b:a7:94:24:e3:cf:8a:34:
3e:04:d5:32:9c:18:65:a7:57:13:ac:8f:e7:02:8f:02:fc:ab:
61:8c:38:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 22:53:49 2025 by rpki-client