Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
File: dotOLq79y-wVupnop6IcieSyzL0.mft (raw, json)
Hash identifier: H6NH7PZVnNF5OljWjAz69CveGN9T8VnXd4bh53PXXq8=
Subject key identifier: F8:2C:33:A9:57:6F:63:F5:FD:17:38:78:07:32:DE:E1:0D:38:CD:15
Authority key identifier: 76:8B:4E:2E:AE:FD:CB:EC:15:BA:99:E8:A7:A2:1C:89:E4:B2:CC:BD
Certificate issuer: /CN=768b4e2eaefdcbec15ba99e8a7a21c89e4b2ccbd
Certificate serial: 0196BB92E276AF6A8AE93A8149140719AED6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
Manifest number: 9E
Signing time: Sat 10 May 2025 19:01:27 +0000
Manifest this update: Sat 10 May 2025 19:01:27 +0000
Manifest next update: Sun 11 May 2025 19:01:27 +0000
Files and hashes: 1: 2d_NXZtW0ODYRMQ4wdJe7FkxoW0.roa (hash: PhAe9DgdWLVDbJJiZelbxMyByKXlfBNEMtHqWSG1jZ8=)
2: dotOLq79y-wVupnop6IcieSyzL0.crl (hash: jbu0qZKsgJUBUoOYnrUWdfMDgd2O0vQuy2ZUzVpaX8M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 19:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:92:e2:76:af:6a:8a:e9:3a:81:49:14:07:19:ae:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768b4e2eaefdcbec15ba99e8a7a21c89e4b2ccbd
Validity
Not Before: May 10 19:01:27 2025 GMT
Not After : May 11 19:01:27 2025 GMT
Subject: CN=f82c33a9576f63f5fd1738780732dee10d38cd15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ce:59:7b:ab:c1:1e:7e:78:3a:a4:33:9c:33:
c6:40:be:51:c6:53:03:e7:39:71:62:55:b4:b4:78:
ed:99:c0:2a:f0:4a:0e:2e:2d:f0:dd:4f:7d:b9:79:
96:6b:75:af:4a:bf:92:7f:fe:37:12:b3:b2:cd:f8:
fd:bf:ae:4d:6e:29:f7:7f:2b:82:d1:da:00:b1:c7:
a9:fd:30:00:02:d4:74:30:09:b4:d8:11:9c:41:41:
03:26:28:c3:f9:5b:2b:e6:17:5b:ad:d3:29:81:30:
59:05:bc:25:ef:0b:32:6c:6d:ec:ef:5e:e9:7c:ba:
48:09:eb:f9:c5:46:b4:f2:d7:52:1a:08:5e:70:3e:
2e:32:bb:97:32:28:e1:d8:ce:24:eb:bc:f9:c1:0d:
37:0a:57:83:bc:ab:88:c7:be:da:97:8b:57:54:26:
3e:81:4d:6c:c1:e9:08:68:09:8e:a3:57:ec:d3:18:
7f:be:ae:47:0b:8c:5f:c7:eb:a6:46:ef:96:16:0d:
b7:47:33:4e:53:e7:26:07:46:7d:db:71:ec:18:d1:
7b:cb:a4:45:a3:b7:33:e5:17:df:b1:1a:31:78:12:
a3:8e:0a:cb:a4:f9:93:97:a9:06:9d:ed:a4:c8:31:
c1:88:8b:6f:b3:20:f0:d2:3d:92:7d:63:d2:26:eb:
d0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:2C:33:A9:57:6F:63:F5:FD:17:38:78:07:32:DE:E1:0D:38:CD:15
X509v3 Authority Key Identifier:
keyid:76:8B:4E:2E:AE:FD:CB:EC:15:BA:99:E8:A7:A2:1C:89:E4:B2:CC:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dotOLq79y-wVupnop6IcieSyzL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/b57892-cd3d-4f06-91f7-55387bfb5e66/1/dotOLq79y-wVupnop6IcieSyzL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:de:1a:95:bc:e1:9f:56:0d:ce:2e:a6:8c:cc:25:fe:fa:b2:
62:03:1b:3c:e8:14:e9:81:4f:9e:9e:8d:8a:95:e9:d7:60:9b:
73:6e:4c:a1:15:7c:80:c7:0e:5b:c8:23:fa:a8:5a:ec:1a:4c:
58:f8:b8:af:1f:58:0a:ae:03:fb:76:03:69:0f:0c:9b:93:d0:
49:88:33:90:fd:f6:95:2c:e0:18:f8:5c:04:a3:7d:41:ec:fb:
8e:39:a0:19:af:04:62:93:32:80:02:f9:83:67:97:05:af:17:
1f:4a:78:bc:35:d5:d9:1b:ba:9d:0e:7d:3b:ab:1e:b2:a9:b7:
19:c4:8b:fb:3a:b6:9d:ce:f5:9e:95:cb:c6:e0:14:ec:e9:bf:
db:e3:76:9a:1f:2a:84:02:e5:3b:31:56:2c:05:20:20:ad:d1:
75:a8:77:53:fc:1a:27:6e:54:ea:4e:e1:b9:34:d8:8c:f0:b0:
15:4d:a4:40:b8:fb:7f:ee:4b:c5:f8:3a:84:c1:1a:2b:76:2e:
97:d5:89:1e:9d:2f:0f:8a:40:f7:89:4e:d9:5d:c3:b6:c9:8b:
25:de:2a:c4:c4:5f:71:e0:27:d2:4d:68:66:98:b4:a4:de:a9:
99:4b:15:27:31:0a:c6:62:79:8c:3f:ea:9f:12:df:cd:a3:58:
f4:7c:61:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 05:33:32 2025 by rpki-client