Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
File: TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft (raw, json)
Hash identifier: MX976utiNh1cgtLKV9I6U3AQsE3aoNw3LT8z4dDlqAs=
Subject key identifier: 06:94:04:97:19:3C:F9:D5:B7:1E:43:DF:AF:BD:C6:7F:B3:13:DA:3D
Authority key identifier: 4C:EA:66:AD:DA:9D:F9:62:5A:3D:78:D6:28:FB:05:E2:48:4D:D8:78
Certificate issuer: /CN=4cea66adda9df9625a3d78d628fb05e2484dd878
Certificate serial: 0196BF0110B193F07748739B8E9D8DD7059B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
Manifest number: 01DD
Signing time: Sun 11 May 2025 11:00:40 +0000
Manifest this update: Sun 11 May 2025 11:00:40 +0000
Manifest next update: Mon 12 May 2025 11:00:40 +0000
Files and hashes: 1: 1-QbsigNOAsIOrzATvCDKf5YVw3s.roa (hash: gWNRwRZG0Ifn0uSFb+Au9uZSZqHds/SqKOwbteITnow=)
2: TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl (hash: 1Y8/urnbSH4wg9cTMsFuf2wo2MreUdNRAv/H3gSdEQc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:01:10:b1:93:f0:77:48:73:9b:8e:9d:8d:d7:05:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cea66adda9df9625a3d78d628fb05e2484dd878
Validity
Not Before: May 11 11:00:40 2025 GMT
Not After : May 12 11:00:40 2025 GMT
Subject: CN=06940497193cf9d5b71e43dfafbdc67fb313da3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:19:12:30:c2:14:76:85:4b:83:4c:92:a3:f2:
99:46:73:54:42:60:64:fc:59:c3:48:a8:89:34:2b:
fb:eb:09:ff:b5:1a:14:a7:a0:5a:f5:b5:75:4f:28:
a8:b7:25:22:5d:34:90:7a:fa:2e:fb:b8:cf:99:f5:
03:46:8b:c0:5f:eb:6c:ac:21:c3:48:01:00:04:52:
19:fb:c0:3f:e8:9c:27:8d:86:fb:a5:6e:cc:e6:10:
c0:bc:76:b3:24:c3:22:9a:b4:2e:4d:3b:8a:13:c7:
cf:33:78:db:90:47:12:4b:9b:91:ac:9b:7e:73:86:
8c:b7:de:f4:fc:53:1a:63:76:97:1f:d4:38:63:e1:
03:9e:1e:59:2b:0b:04:18:d3:0a:ed:40:03:e3:7e:
ea:61:7c:13:ad:da:bd:bd:47:0a:05:4e:eb:d6:25:
df:fc:62:1f:f5:70:8c:45:1f:cd:a5:dc:2b:1c:fa:
12:d5:d1:17:7c:28:17:4b:ff:82:8c:06:8f:f9:ad:
76:a2:98:b1:23:65:ea:71:19:90:2f:84:cd:0a:b1:
cc:46:b6:3c:72:a7:96:3c:10:6c:7d:dc:18:aa:94:
04:3b:2d:ac:1e:82:18:fb:ba:4a:57:9e:79:87:89:
6d:ef:e8:91:37:e0:30:63:53:52:e9:00:ff:af:05:
3c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:94:04:97:19:3C:F9:D5:B7:1E:43:DF:AF:BD:C6:7F:B3:13:DA:3D
X509v3 Authority Key Identifier:
keyid:4C:EA:66:AD:DA:9D:F9:62:5A:3D:78:D6:28:FB:05:E2:48:4D:D8:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TOpmrdqd-WJaPXjWKPsF4khN2Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/570d93-696d-47eb-93b1-77836e2fcbdd/1/TOpmrdqd-WJaPXjWKPsF4khN2Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:f5:cc:e9:72:72:c0:1c:0c:41:d3:54:6b:2a:0e:b5:aa:b7:
64:5e:cd:6a:c2:a9:29:e6:c4:0a:20:9d:43:22:47:1a:d0:84:
33:b4:72:27:7f:02:4b:ed:97:d0:d4:64:8d:f5:14:7d:6e:ef:
e0:7f:2c:9a:07:8d:61:94:87:13:28:d7:12:f4:9e:fd:03:c3:
6e:6f:08:a0:18:8b:94:74:b8:1b:a5:d2:e8:25:a5:dd:e7:af:
46:44:4e:44:57:23:b2:17:83:e2:de:60:68:3c:61:c9:9e:67:
86:8b:ba:a2:36:e9:6f:07:b7:82:21:a0:16:8d:64:ff:db:73:
ff:c0:0a:a2:49:38:8b:50:c6:7e:55:52:23:75:6f:e5:d8:bc:
4c:7f:cc:bd:cd:dd:41:75:d8:cc:06:66:3a:41:a3:3c:50:cf:
25:00:73:86:5a:8b:3a:4b:f4:53:3c:7b:52:a1:bb:a0:a9:63:
3b:b4:66:a5:7d:c5:83:1d:4d:2a:55:c2:fc:31:01:ba:08:13:
98:6b:a6:1b:8e:f5:63:58:bb:a4:81:d6:d1:af:ca:e8:65:23:
db:d4:ca:04:78:c3:7c:61:11:88:9d:c7:a0:37:78:6b:16:14:
93:cf:cb:bd:d9:6f:2e:ca:b9:be:11:7e:99:eb:b0:76:06:80:
e5:19:bb:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 13:35:20 2025 by rpki-client