Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft
File: 0f00NtehmnND-oANh6Aa8YPaMYs.mft (raw, json)
Hash identifier: BuXYF+WsKgH3mVDUV87+O4rnQpxbeWR12SJWVcFdnSs=
Subject key identifier: 14:9C:4C:55:A1:8F:6B:AB:7D:9F:A2:2E:7B:C8:A7:A7:B6:34:BE:1F
Authority key identifier: D1:FD:34:36:D7:A1:9A:73:43:FA:80:0D:87:A0:1A:F1:83:DA:31:8B
Certificate issuer: /CN=d1fd3436d7a19a7343fa800d87a01af183da318b
Certificate serial: 0196A1D2AA7B3076586F28193A5D534269A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft
Manifest number: 0B32
Signing time: Mon 05 May 2025 19:00:59 +0000
Manifest this update: Mon 05 May 2025 19:00:59 +0000
Manifest next update: Tue 06 May 2025 19:00:59 +0000
Files and hashes: 1: 0f00NtehmnND-oANh6Aa8YPaMYs.crl (hash: Wth67boKNh9C4g4XvDMJMzfQdxChtYhKkgunm76k1dU=)
2: 289E-Jj1-_NHnfIspmJ6dDyJHMo.roa (hash: WdW5apU9mzQj50OlelJWc6bz8hGD+pm8qBunEBj3yw4=)
3: Cs1qBn4VjrBIRHmPJXLiE1xFxCY.roa (hash: MWgCuKpBS+l+AyVioTFlRoxqt43GEYXQ/PHcMYuFOog=)
4: h6nXa6s8OWHMrQG1DSMZKlfJDE8.roa (hash: oPs+na6jf/GLFYpEpQKvloInu3ZuLoam22sOPdiiyEs=)
5: iW93Iii_wpRaBJx4UitIZE8Hirs.roa (hash: nFhRjV7MRzVZ4mQI/ZjUoZj1OD4mh/1+uDWJfZv9Rc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft
rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 18:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a1:d2:aa:7b:30:76:58:6f:28:19:3a:5d:53:42:69:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1fd3436d7a19a7343fa800d87a01af183da318b
Validity
Not Before: May 5 19:00:59 2025 GMT
Not After : May 6 19:00:59 2025 GMT
Subject: CN=149c4c55a18f6bab7d9fa22e7bc8a7a7b634be1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:da:3e:f5:63:2d:90:9c:bd:91:e4:7b:c5:00:
81:9b:5a:fa:25:74:96:b9:f9:c0:61:47:9c:e5:70:
af:aa:b8:ea:1e:2b:02:aa:3c:41:9b:d1:68:c5:c6:
80:ce:2f:42:e4:21:74:8b:14:61:98:f6:4f:61:22:
f3:69:90:00:bb:60:42:e6:9a:23:30:72:bf:48:50:
20:a3:55:f3:70:94:c2:eb:e8:1f:cb:8b:8a:00:01:
30:e6:f3:8b:e1:49:f3:f2:ef:65:54:2a:f5:73:ef:
ad:ae:65:9e:4a:5c:e8:89:2d:77:0a:15:33:d4:99:
16:76:d4:e7:89:d0:8b:d7:3a:b6:05:a0:12:80:0c:
62:0f:3a:f6:40:54:ac:f3:0b:7c:fb:ed:a6:ba:e3:
2d:f5:07:52:85:a8:b3:82:d4:e8:5d:f8:95:e3:2d:
a6:b9:ec:e3:e5:fe:c2:cd:3f:17:e6:00:f6:b7:91:
58:ae:f1:4f:ed:6f:55:41:ee:c7:ea:e3:69:8e:29:
b6:50:95:cd:93:38:87:99:82:35:54:93:6f:d5:ef:
53:d1:80:b7:cc:d0:73:58:15:a8:01:29:87:31:c8:
32:4c:d1:b0:77:6a:c0:56:18:9a:c5:68:15:eb:d5:
35:05:44:22:d4:3e:1a:54:88:7c:ad:42:cc:5c:e9:
78:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:9C:4C:55:A1:8F:6B:AB:7D:9F:A2:2E:7B:C8:A7:A7:B6:34:BE:1F
X509v3 Authority Key Identifier:
keyid:D1:FD:34:36:D7:A1:9A:73:43:FA:80:0D:87:A0:1A:F1:83:DA:31:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:06:b6:9d:b2:7c:5f:57:77:6d:43:91:9c:5e:b6:95:01:e1:
fc:46:2a:67:11:4d:a5:32:de:f8:ec:f9:ce:67:77:65:a5:5f:
9a:19:89:9f:5d:d9:37:4a:1b:01:f9:a5:db:10:6b:35:0c:64:
01:ee:04:e6:bb:1a:35:ac:ea:c3:11:53:13:a1:3b:68:50:8d:
2f:7c:21:6b:49:a0:e5:44:3c:9b:6d:52:32:69:b0:c1:a7:f7:
7f:a3:2f:22:37:5c:eb:81:98:3b:1a:ff:02:cd:a2:78:51:49:
29:07:b8:09:df:28:04:e5:4c:ac:fe:13:8b:e0:da:73:09:53:
12:51:bf:48:20:05:19:d8:10:8b:05:79:92:9b:82:fa:83:85:
cb:29:07:1b:ab:cd:54:31:87:81:5e:88:79:46:bc:a2:30:d2:
65:93:f0:09:88:63:ca:b6:10:4e:de:a1:21:f4:30:37:b9:24:
83:63:d0:8a:3e:09:ff:90:da:3f:cd:6e:7c:cf:29:0a:0b:31:
5a:73:dd:94:6c:24:09:8e:cc:7a:4e:94:01:0a:74:46:ae:b0:
7e:01:35:28:11:d0:b8:d1:e1:2e:9b:97:50:b1:aa:35:cd:90:
e8:38:6e:08:96:e8:1f:f2:b6:60:ca:bc:33:fb:92:8c:a2:29:
16:ab:5f:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 23:03:17 2025 by rpki-client