Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
File: rfDfdxFHQeE6F9chPmlWv5YntVg.mft (raw, json)
Hash identifier: QVIz/eyxfJnah4mQyBXWMSxEvkB3azJIWQHodx8B7CQ=
Subject key identifier: 4D:10:4A:9D:B8:1E:FA:3E:A6:6A:5F:D6:ED:7C:32:B2:36:42:00:98
Authority key identifier: AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58
Certificate issuer: /CN=adf0df77114741e13a17d7213e6956bf9627b558
Certificate serial: 01969F76155B689E08E95D7663B912749B55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
Manifest number: 13D8
Signing time: Mon 05 May 2025 08:00:38 +0000
Manifest this update: Mon 05 May 2025 08:00:38 +0000
Manifest next update: Tue 06 May 2025 08:00:38 +0000
Files and hashes: 1: 53yfdczv1so3h7m6p_kJKapwYb0.roa (hash: 8fm3UETmOMmwp3oE4jpSkcDNkIYvAEXotF2eKRsyjLw=)
2: rfDfdxFHQeE6F9chPmlWv5YntVg.crl (hash: C9rf+533L4NLECipTUUZmIniPdPGjof0WgQKccc2W5o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 08:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:76:15:5b:68:9e:08:e9:5d:76:63:b9:12:74:9b:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf0df77114741e13a17d7213e6956bf9627b558
Validity
Not Before: May 5 08:00:38 2025 GMT
Not After : May 6 08:00:38 2025 GMT
Subject: CN=4d104a9db81efa3ea66a5fd6ed7c32b236420098
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:e4:bd:14:0c:ad:7e:8e:4e:13:c3:f4:f4:9e:
6b:bd:0f:d1:07:e1:d7:0b:5e:50:5c:ff:23:2a:e7:
18:95:af:c7:75:4e:7e:e7:3e:95:76:db:07:13:37:
7b:f5:46:49:46:b6:73:5f:77:93:f5:c0:fe:82:20:
4a:1e:94:8b:b3:b3:e1:35:23:fe:b8:32:23:b4:21:
4d:29:db:e4:9e:b4:65:64:69:3f:9a:50:9b:66:f2:
1b:2d:12:f9:98:92:82:db:74:ac:8f:17:fd:5d:72:
2d:fe:2e:5b:a3:14:6b:d8:d9:0f:77:8c:38:38:4a:
3c:db:a0:7f:51:3a:15:00:ed:b6:a7:a1:2a:ff:39:
e8:84:47:00:74:0a:fe:25:dc:1f:b2:a8:51:1c:c7:
9a:c4:8e:5b:72:9e:a7:7c:7d:11:24:d2:92:16:1f:
f7:d6:a6:c6:ae:51:4c:c5:c3:d1:c0:7f:03:77:77:
08:89:cb:d2:80:a6:55:da:1c:0f:5f:81:c6:32:e3:
2e:9b:26:51:99:19:07:84:22:b8:99:33:7b:e0:01:
37:a4:36:4e:5c:0a:0b:41:cf:31:e8:bc:4b:e9:40:
3f:8b:91:59:4b:50:82:4d:d3:91:0c:2d:1a:eb:89:
20:43:c2:6e:1f:b9:8c:a5:f8:66:86:42:90:b7:57:
af:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:10:4A:9D:B8:1E:FA:3E:A6:6A:5F:D6:ED:7C:32:B2:36:42:00:98
X509v3 Authority Key Identifier:
keyid:AD:F0:DF:77:11:47:41:E1:3A:17:D7:21:3E:69:56:BF:96:27:B5:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfDfdxFHQeE6F9chPmlWv5YntVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/a30bea-9e93-4091-b6e1-e1ef27772eaf/1/rfDfdxFHQeE6F9chPmlWv5YntVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:82:b6:04:1f:5c:1c:7e:2f:cd:41:f5:6b:0a:24:f6:29:26:
f5:70:25:3c:01:99:e8:d0:5a:19:05:31:67:d1:63:e6:3c:80:
3d:36:d3:dd:b0:85:3f:84:fe:66:f9:ea:71:77:22:a2:9a:68:
32:25:39:4b:3e:e7:ad:cc:f5:4f:90:97:2b:c4:7d:c1:04:a6:
99:95:b9:0b:ce:01:9e:5b:c2:72:99:45:fc:48:60:99:23:d1:
60:01:89:bb:24:13:81:e8:f4:a9:01:89:01:50:bc:94:20:a5:
15:a1:43:e6:46:c2:96:cf:61:31:42:c5:d2:d7:17:6f:3f:9e:
7c:e1:44:a9:82:8c:a0:fa:0e:59:cd:40:6b:10:46:76:b8:af:
66:17:c3:6c:d0:15:23:57:c0:7d:d2:b9:03:73:47:7e:b0:84:
2c:b3:c2:08:2b:44:4f:53:ef:23:b5:91:9c:b7:12:88:91:2b:
93:d6:32:a4:86:e4:bc:9a:cc:b3:55:df:79:b3:5c:56:0b:75:
3f:17:c9:c4:a0:a8:40:82:2f:73:1d:ff:a6:00:d1:03:04:c7:
35:02:50:2f:d1:f5:63:39:1b:93:e6:db:d5:cb:7c:18:30:55:
00:53:81:37:ae:01:8c:58:8a:4a:2c:8e:3b:ae:58:92:59:8a:
fb:cf:55:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 12:13:05 2025 by rpki-client