Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
File: xN8L0EqoQ-aAgvbezgeYcytviDI.mft (raw, json)
Hash identifier: TBHASbLAT0XrsJLZCCDtZMpmoSfhNxGiWo/B5YS6Rr8=
Subject key identifier: 6C:1B:7F:C1:F0:C4:8E:32:62:CE:A0:2D:C4:2B:C4:63:F3:77:55:DF
Authority key identifier: C4:DF:0B:D0:4A:A8:43:E6:80:82:F6:DE:CE:07:98:73:2B:6F:88:32
Certificate issuer: /CN=c4df0bd04aa843e68082f6dece0798732b6f8832
Certificate serial: 0196D74014C70D2C514D5DE62474992BDDF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
Manifest number: 14D3
Signing time: Fri 16 May 2025 04:00:23 +0000
Manifest this update: Fri 16 May 2025 04:00:23 +0000
Manifest next update: Sat 17 May 2025 04:00:23 +0000
Files and hashes: 1: 0PsILassVkdjO3YLqLzhDep43F0.roa (hash: BTuwwmqm+lVoIfqGdzicWWpXk8ZLAGxFDZrA6HPrjFA=)
2: T00AB9xipsEuuuK1wmFSrgJa6EQ.roa (hash: h2lLCAhcvRlcJCiD1oieS2PrcXQxs+tKUD+48vFOxxo=)
3: ZB1bFwuNv6eWdiv8dDMsMnuoFfs.roa (hash: +Mo9nvZ4p8mpAlYTdnVEDmvUa5mEw+oncE82//f49Ts=)
4: j4_7U96IEPffvwOTiMn9moiTZAE.roa (hash: Z8Hyt/Bq5aoXLuGUE36BT9I0Ee4e3qh5AvVB4wMCsaI=)
5: xN8L0EqoQ-aAgvbezgeYcytviDI.crl (hash: fUdZ9ldinMfuZM52bdhuV1HogKuaod1lYxvlW+MYdFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 17 May 2025 04:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d7:40:14:c7:0d:2c:51:4d:5d:e6:24:74:99:2b:dd:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4df0bd04aa843e68082f6dece0798732b6f8832
Validity
Not Before: May 16 04:00:23 2025 GMT
Not After : May 17 04:00:23 2025 GMT
Subject: CN=6c1b7fc1f0c48e3262cea02dc42bc463f37755df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:5b:ee:99:88:23:bf:b0:71:0a:b4:f1:c1:f2:
68:1a:61:f7:b2:ef:50:eb:c3:23:de:3c:2c:f4:7a:
68:21:1d:6e:03:b4:d5:7e:7f:f1:d4:ed:43:3d:cd:
30:02:fe:48:e7:b5:2f:56:b3:ff:3a:90:0f:5c:6e:
94:86:6d:83:62:d2:2c:9f:0f:d1:4c:de:21:6d:2e:
b6:03:47:9f:45:a6:5c:ef:2a:51:df:ba:3f:16:d4:
b7:49:a3:ad:7c:ff:31:80:a0:ff:7c:1f:cf:92:66:
9f:69:d9:cd:25:56:32:c7:37:6f:fa:68:46:25:47:
4d:48:10:96:7e:b2:8f:fd:d5:a0:6b:84:e5:bb:c8:
dd:a3:bf:3c:45:d7:cc:10:92:f1:59:18:74:3e:92:
aa:33:db:8f:65:c0:71:1a:2e:6e:2e:ab:72:ca:03:
0b:0c:57:91:48:eb:03:c6:98:b8:36:0a:0f:86:bc:
7e:96:ea:84:b8:a7:6a:81:55:41:b3:df:a0:00:67:
02:e7:d1:8b:be:3b:f0:1b:1d:f5:e9:0b:e8:b0:c3:
31:97:55:f2:60:8a:c0:06:12:83:44:f2:6c:67:d5:
33:d7:83:41:57:cf:7a:b8:85:51:f5:02:cc:98:5a:
64:06:c4:ac:c3:fb:f6:74:61:c3:91:48:d7:9c:32:
d3:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:1B:7F:C1:F0:C4:8E:32:62:CE:A0:2D:C4:2B:C4:63:F3:77:55:DF
X509v3 Authority Key Identifier:
keyid:C4:DF:0B:D0:4A:A8:43:E6:80:82:F6:DE:CE:07:98:73:2B:6F:88:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xN8L0EqoQ-aAgvbezgeYcytviDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/95de21-0fbc-4d13-b6e0-cb9e1ed779ac/1/xN8L0EqoQ-aAgvbezgeYcytviDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:c6:a8:7c:0a:c0:2f:a2:af:96:de:fd:22:08:7e:77:db:78:
43:29:f0:41:57:cd:80:16:13:9e:4e:da:1b:fa:7d:2e:b9:5a:
e1:cd:b3:88:61:ae:0c:d6:e5:71:f4:95:2c:11:a5:12:04:7f:
8b:76:f5:6c:44:98:07:d9:4c:81:63:51:73:f6:fd:7f:cb:f4:
3c:1e:3f:73:d1:94:53:b8:68:e9:9c:ea:9a:c1:57:9e:d2:0b:
de:39:cd:69:29:67:03:5d:72:20:77:53:82:ad:7a:07:45:c6:
b4:ad:33:80:e0:d8:78:ea:4d:06:76:b6:18:23:e8:9f:12:06:
17:29:51:8b:52:fa:e0:cb:4b:6d:9e:12:d7:81:01:21:39:d2:
29:11:a5:e8:7e:ee:67:1d:a2:7a:c2:9e:b1:83:35:dd:cc:d6:
b4:a1:a9:25:d2:5a:73:f4:d8:4a:8f:53:45:99:cb:b5:5f:c0:
4b:cb:60:7d:09:7b:0f:49:77:52:92:16:02:bd:4f:bd:17:f8:
a0:f9:e0:b0:31:7d:f6:d1:77:b8:37:e0:f4:a9:e7:70:51:61:
74:94:04:fb:96:0e:59:5e:5a:72:e0:d9:3d:94:cc:b6:dc:74:
cd:4a:42:f8:d4:95:57:52:5f:09:95:25:57:13:10:e2:11:69:
4e:1a:83:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 16 12:07:31 2025 by rpki-client