Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
File: 2FAiKC40aZ_lSLdShRmiWlDZEzo.mft (raw, json)
Hash identifier: jt47QpsxMFeL0uJa8azifhwwBJQWBgC8a0rKQdDjfps=
Subject key identifier: B3:8A:41:47:3C:28:05:39:B4:BC:92:1E:B2:A4:34:63:D8:38:31:74
Authority key identifier: D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
Certificate issuer: /CN=d85022282e34699fe548b7528519a25a50d9133a
Certificate serial: 0196B710C3A9E9A1ED3CCB13B6651F768A2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
Manifest number: 145F
Signing time: Fri 09 May 2025 22:00:51 +0000
Manifest this update: Fri 09 May 2025 22:00:51 +0000
Manifest next update: Sat 10 May 2025 22:00:51 +0000
Files and hashes: 1: 2FAiKC40aZ_lSLdShRmiWlDZEzo.crl (hash: fVTUHRlVTaHd+ScysayvPfPy/EL11WhH0xG10NjrzZk=)
2: 6R0wvkFPscZQ2uww-ZvwnaXh--0.roa (hash: wyiJ7rZP6x6kzeIfld1VjsLp4nIqzGhNhuxTGdTq1Ek=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 17:53:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b7:10:c3:a9:e9:a1:ed:3c:cb:13:b6:65:1f:76:8a:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d85022282e34699fe548b7528519a25a50d9133a
Validity
Not Before: May 9 22:00:51 2025 GMT
Not After : May 10 22:00:51 2025 GMT
Subject: CN=b38a41473c280539b4bc921eb2a43463d8383174
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:17:05:89:b8:3a:9e:bd:4d:0a:06:cf:2e:b9:
8e:c1:67:ad:a3:d7:a3:5b:5b:7c:b0:24:c1:9c:e9:
73:e0:4a:a7:53:8d:b8:d8:d0:29:4a:c1:f1:51:6f:
d5:7c:63:60:5f:97:10:d5:9a:db:e9:ff:e3:8b:5a:
f1:73:8a:ba:af:de:93:d2:14:6e:be:2b:9f:49:f9:
d1:e9:5d:6c:27:bd:c2:69:f3:da:75:ef:75:84:19:
24:1e:b5:a4:a4:21:fd:e2:11:96:de:ca:67:76:52:
77:4a:14:1b:57:46:d2:64:ce:29:5d:69:0d:eb:0b:
70:a2:f1:ee:89:1b:93:d2:36:3c:57:bb:28:55:6c:
0e:f7:98:7a:8f:52:3d:41:48:52:30:86:60:51:21:
d1:1b:81:21:73:0e:ed:1d:f7:59:6d:6b:3b:44:31:
d9:81:69:5d:90:36:af:cc:c0:93:c1:8f:31:84:69:
fd:20:0a:1d:79:3f:1c:6c:d0:e7:1e:53:c2:31:0b:
88:91:8d:0a:d8:5c:5b:18:61:01:a5:21:28:43:39:
dc:53:d8:44:28:05:44:55:ed:2e:82:f7:89:04:21:
eb:42:64:b8:d4:80:27:94:af:9e:ef:57:f3:90:47:
b6:99:49:c7:c4:95:8e:54:32:a1:2d:80:6b:29:70:
4a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:8A:41:47:3C:28:05:39:B4:BC:92:1E:B2:A4:34:63:D8:38:31:74
X509v3 Authority Key Identifier:
keyid:D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:8a:23:a2:fe:75:a3:9d:4c:5e:c8:74:f5:13:53:84:83:0d:
db:a8:f1:af:31:30:bf:c3:13:a6:32:96:3e:22:a1:79:f1:06:
ec:2a:47:4f:ef:72:5d:05:b1:79:b3:09:f3:67:f7:2f:59:e5:
38:fd:11:90:70:55:ff:cf:4a:9a:b5:ec:29:45:38:fd:b3:1b:
00:04:8c:0f:46:95:2e:80:72:26:6b:3e:dd:3c:57:b1:be:bc:
72:69:e0:e4:63:5e:65:07:fb:87:5a:ba:17:3e:e7:83:13:a9:
4f:6b:bc:ad:f8:fa:88:e3:28:69:4d:75:db:a6:9e:07:a2:79:
9f:81:6c:2c:c4:ed:52:40:e1:07:ca:39:4a:6c:7e:45:96:76:
f8:f9:6a:b4:12:59:c8:fc:4c:26:f8:31:5b:de:c6:a4:83:39:
e5:2e:91:b1:e5:39:e3:9e:96:cf:d9:24:d7:12:63:52:d5:05:
08:56:19:81:19:99:f8:42:a4:f7:51:b4:c7:a5:86:e3:0e:68:
00:25:42:b9:6a:42:cb:b8:9a:cf:af:f1:29:2f:0c:e9:40:9b:
44:48:b7:2b:b9:1f:73:31:e5:7e:cd:75:2a:97:d1:88:ce:13:
ee:87:92:62:ea:c1:26:a5:24:1b:a5:fd:96:07:e0:bb:ba:f8:
55:7d:4e:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 02:20:37 2025 by rpki-client