Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
File: 0KNDo37K0r-yw1vZsm1_SLy1dTc.mft (raw, json)
Hash identifier: uP5DOyNi2TVXmIBjziOhsX0NAOe0D+XlEN1HMf9pkvM=
Subject key identifier: E9:BF:0D:A0:42:C5:C0:3A:3C:F9:4E:FF:9C:1E:B0:04:4B:77:FA:E9
Authority key identifier: D0:A3:43:A3:7E:CA:D2:BF:B2:C3:5B:D9:B2:6D:7F:48:BC:B5:75:37
Certificate issuer: /CN=d0a343a37ecad2bfb2c35bd9b26d7f48bcb57537
Certificate serial: 0196A4D3646EC6045981B91C28F1FEC899D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
Manifest number: 14B8
Signing time: Tue 06 May 2025 09:00:39 +0000
Manifest this update: Tue 06 May 2025 09:00:39 +0000
Manifest next update: Wed 07 May 2025 09:00:39 +0000
Files and hashes: 1: 0KNDo37K0r-yw1vZsm1_SLy1dTc.crl (hash: ljVAcwzDEQvVEw/B/l7I5T5RWMXyflGm41ryuXB03b4=)
2: cednPNYKxfRsr4W4osQ0UxWr_xg.roa (hash: bAnClABodJAGvw6mOL61pHv3A1a0Gmryz3vjrqAKOxo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a4:d3:64:6e:c6:04:59:81:b9:1c:28:f1:fe:c8:99:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0a343a37ecad2bfb2c35bd9b26d7f48bcb57537
Validity
Not Before: May 6 09:00:39 2025 GMT
Not After : May 7 09:00:39 2025 GMT
Subject: CN=e9bf0da042c5c03a3cf94eff9c1eb0044b77fae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:33:c6:6c:e8:17:f3:94:66:8c:4b:9f:50:fb:
89:66:af:3a:f7:3e:83:fa:a0:c2:3e:e1:ae:41:66:
ee:ec:5b:99:7b:67:e9:c1:d2:ec:e1:da:8d:b0:c6:
20:57:23:57:26:b9:54:8e:22:67:fb:74:c6:4e:46:
ad:9c:c3:3c:49:95:0a:29:cd:84:29:36:a4:3d:58:
93:2f:e0:a1:4d:02:8a:a7:f1:97:27:b4:9b:f4:d8:
ac:eb:7a:85:65:8a:cc:c9:e6:ef:97:13:3e:af:96:
1d:fc:bb:16:93:2d:c9:5a:08:3c:00:28:8e:32:3e:
ea:bc:18:b5:1b:ed:52:5b:a8:03:39:8c:4b:82:0d:
e9:ff:0c:cd:f5:41:61:6d:55:0c:6a:1e:64:04:7e:
32:0b:8c:79:40:1f:b7:83:a1:cc:ca:ea:1f:3b:07:
bd:3e:74:9f:ce:93:08:1f:e4:f7:ca:c7:52:54:fd:
b4:d3:b6:71:80:c1:e9:f5:e3:12:55:59:12:72:47:
1e:ff:e5:be:b9:19:15:a7:f1:cd:4e:4e:05:67:47:
73:11:e4:a2:12:f2:a2:71:fb:7a:81:76:bf:c0:72:
ec:54:01:35:fa:97:f8:1c:e6:8b:44:fd:a6:de:56:
88:84:4d:74:ff:68:c9:26:7d:db:11:e2:07:c2:2d:
69:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:BF:0D:A0:42:C5:C0:3A:3C:F9:4E:FF:9C:1E:B0:04:4B:77:FA:E9
X509v3 Authority Key Identifier:
keyid:D0:A3:43:A3:7E:CA:D2:BF:B2:C3:5B:D9:B2:6D:7F:48:BC:B5:75:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KNDo37K0r-yw1vZsm1_SLy1dTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/201273-708d-4a46-9ab6-c7b36b8a2685/1/0KNDo37K0r-yw1vZsm1_SLy1dTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:27:60:e1:2e:a0:6d:f6:c1:09:c9:6a:70:14:32:df:09:80:
1c:d5:bd:9e:c1:50:3c:30:ba:c0:2b:65:e0:8f:78:bf:49:18:
d7:2c:43:7d:1c:03:ec:28:29:20:2c:c3:e3:6c:11:5a:8e:14:
1c:32:ae:7d:68:68:e8:98:88:d9:80:89:37:10:ff:6c:b5:9b:
28:78:bd:4a:6f:46:c6:3b:60:b1:c8:a2:a6:6e:43:2c:52:85:
d6:1f:21:68:42:be:54:b6:c4:3e:52:d9:5f:77:cb:b1:c1:3d:
a8:55:27:38:a4:c1:11:fd:82:a5:67:b0:b1:f8:de:96:be:96:
9c:09:cd:a9:05:08:77:a7:6a:53:a5:bd:ed:fb:cb:cb:14:96:
0e:c2:e0:bf:58:f3:89:47:1e:41:19:44:4c:fd:ae:0a:13:e3:
9c:24:57:44:ec:d0:5c:3d:5a:6c:e3:2f:b3:99:c5:4d:8a:90:
22:80:1a:a9:38:f8:da:88:c5:f6:a5:06:4d:77:d1:12:00:e7:
5a:41:76:56:95:58:39:ad:d8:9f:21:5a:ea:05:47:48:29:bf:
ff:64:a6:dd:7a:32:b6:d0:b7:30:f0:62:01:2e:fa:7e:50:4a:
77:93:11:2e:d2:d6:bb:ec:15:9d:db:e4:00:f9:0b:65:5c:2b:
72:91:9a:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 11:28:49 2025 by rpki-client