Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft
File: tDJYoYz00SKOXHkHDfpjMRaDIMU.mft (raw, json)
Hash identifier: l1AtYWETL6rPrEgINRGLrq8App8U7fNufPIC1+StJgY=
Subject key identifier: F9:83:18:9B:59:1C:CA:4F:E7:D8:06:1D:B0:CC:36:0C:52:42:F6:D6
Authority key identifier: B4:32:58:A1:8C:F4:D1:22:8E:5C:79:07:0D:FA:63:31:16:83:20:C5
Certificate issuer: /CN=b43258a18cf4d1228e5c79070dfa6331168320c5
Certificate serial: 0196B66C0F9565A408260713185B33166602
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft
Manifest number: 1373
Signing time: Fri 09 May 2025 19:00:57 +0000
Manifest this update: Fri 09 May 2025 19:00:57 +0000
Manifest next update: Sat 10 May 2025 19:00:57 +0000
Files and hashes: 1: 28g4Blr7nuSyJeVmwy4cGLK9eb8.roa (hash: Q3uRjW4ymMVkt8l5TduM8mGnhXb4GzyvEHZ5j93is8c=)
2: psNnDsOb3MJQFpyT8HfsVNSnwog.roa (hash: KJkUgz1VxvV5lZj00xJ9seKTuebHbMbR6MJlSYq/h5Q=)
3: tDJYoYz00SKOXHkHDfpjMRaDIMU.crl (hash: t/tnGV91Qew9grVnHrSAu9ubnGODKW4iSRvk39OP8Ck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b6:6c:0f:95:65:a4:08:26:07:13:18:5b:33:16:66:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b43258a18cf4d1228e5c79070dfa6331168320c5
Validity
Not Before: May 9 19:00:57 2025 GMT
Not After : May 10 19:00:57 2025 GMT
Subject: CN=f983189b591cca4fe7d8061db0cc360c5242f6d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:56:3c:df:4d:85:5d:05:5c:47:c1:e4:f8:5d:
84:9d:a5:dc:55:07:71:d8:42:1f:dd:a2:07:32:dd:
67:12:04:6e:13:5d:bd:c3:14:4d:73:64:e6:bb:a8:
35:07:89:79:a3:6e:d6:ff:a0:20:9c:15:0e:c3:7f:
b3:b9:f2:96:e5:64:1e:6e:d4:88:a9:e9:63:ea:01:
46:ff:ca:17:04:74:cd:2a:e6:40:5e:e2:7d:04:22:
69:7c:f4:d7:98:1f:fa:83:40:1b:79:85:60:75:0f:
eb:ac:31:72:f4:a0:75:49:70:9e:dd:1f:38:3a:ce:
51:6f:e2:c2:24:b0:83:d2:e1:82:4a:27:c5:3d:59:
89:3a:d0:d5:44:70:91:7b:da:dd:bd:a7:a6:34:b9:
bd:4a:dc:ea:42:03:5d:b5:7f:73:f5:ed:22:5e:b3:
e4:20:06:ed:0a:b4:4b:47:ce:e4:fb:2f:85:c4:25:
5f:46:61:a7:9e:f8:76:7a:07:cb:2d:96:99:de:be:
42:48:1e:3f:41:7c:8f:d9:9b:4a:56:bf:1f:80:46:
6e:73:0c:01:ab:44:b8:32:fa:dd:85:a4:29:14:e5:
e4:aa:25:62:75:f9:47:7f:00:b1:d3:ee:ec:63:3d:
bf:1c:83:e6:e9:54:04:c2:74:07:e3:c9:5a:bd:27:
18:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:83:18:9B:59:1C:CA:4F:E7:D8:06:1D:B0:CC:36:0C:52:42:F6:D6
X509v3 Authority Key Identifier:
keyid:B4:32:58:A1:8C:F4:D1:22:8E:5C:79:07:0D:FA:63:31:16:83:20:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDJYoYz00SKOXHkHDfpjMRaDIMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/03a325-a169-44ce-84ec-5728fb24bf0e/1/tDJYoYz00SKOXHkHDfpjMRaDIMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:0f:95:7c:b2:83:fa:1a:aa:78:25:52:9c:65:f9:f2:68:70:
dc:3b:f6:e2:7c:75:40:a9:1b:44:59:b6:47:a1:1c:c0:37:fc:
4a:0e:e8:3f:83:e8:dd:7c:66:64:03:a9:9e:8d:e5:cb:9e:41:
28:6a:48:12:80:4c:25:9c:ef:14:0f:cb:1a:bc:7a:6e:2c:92:
b2:48:a0:3f:56:cc:d1:dd:d6:18:4e:18:56:0a:08:c9:63:67:
24:00:ed:4d:5d:ec:de:54:39:25:57:5e:f5:9e:9c:ec:90:db:
a8:ab:ce:35:59:c6:9e:6b:f4:43:3a:10:46:09:17:40:a4:e8:
04:b8:2e:1e:f4:5c:8d:4c:46:ab:20:2a:41:8f:19:85:b1:10:
30:26:65:c6:f1:af:62:1b:a5:d6:b5:a6:69:f2:ae:6b:d2:8c:
28:c9:2f:ec:5b:61:a0:42:29:59:52:20:47:ea:17:6f:97:03:
c1:09:a7:1a:6e:41:0c:49:45:7f:cd:a2:4a:dd:ac:23:c6:0d:
1f:16:a6:97:4c:b8:24:de:38:be:be:c3:3d:d5:20:b6:98:c6:
a8:ab:3e:a6:04:17:7f:7b:55:56:95:db:99:69:57:90:58:b1:
3d:39:2b:83:33:5c:02:69:c6:20:0c:75:43:09:53:58:cb:b4:
7b:a2:df:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 05:16:59 2025 by rpki-client