Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft
File: sPoMerwQeWkV4zW6GXgORz4CeWk.mft (raw, json)
Hash identifier: FD+USxRdC6sUupih2zuv1AhmxNSoDsWkUHb/4ZDNRig=
Subject key identifier: C5:D4:BB:0C:F4:C0:DD:6A:FF:FE:2C:D1:7B:4C:AD:F4:42:2D:97:58
Authority key identifier: B0:FA:0C:7A:BC:10:79:69:15:E3:35:BA:19:78:0E:47:3E:02:79:69
Certificate issuer: /CN=b0fa0c7abc10796915e335ba19780e473e027969
Certificate serial: 0196BA489B85C8B77B758562FBD5597D339A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft
Manifest number: 1024
Signing time: Sat 10 May 2025 13:00:42 +0000
Manifest this update: Sat 10 May 2025 13:00:42 +0000
Manifest next update: Sun 11 May 2025 13:00:42 +0000
Files and hashes: 1: Y9lkKqKsnQqZGmQo1Xo2fiLr5iU.roa (hash: 6A0trmFdZaEK+JW4D/IW96VMnZJTTVLOPMuYPUfapNM=)
2: sPoMerwQeWkV4zW6GXgORz4CeWk.crl (hash: 7PUZY3frbuCgBvT45Zmj8CKILzzZVQ2NW8SUqxr/hcA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:48:9b:85:c8:b7:7b:75:85:62:fb:d5:59:7d:33:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0fa0c7abc10796915e335ba19780e473e027969
Validity
Not Before: May 10 13:00:42 2025 GMT
Not After : May 11 13:00:42 2025 GMT
Subject: CN=c5d4bb0cf4c0dd6afffe2cd17b4cadf4422d9758
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:cf:94:29:c5:05:1a:ee:16:70:0e:4e:d9:d2:
23:e1:47:b1:d1:28:a4:0e:50:10:6a:66:07:29:0d:
05:1f:b0:f5:47:68:45:bb:cb:fa:54:dd:b8:9d:95:
74:f2:bd:e5:f0:d7:71:48:a7:ec:6c:55:fb:0e:ad:
a0:e8:16:e7:8e:16:6f:81:87:c4:58:af:cb:b4:1e:
29:e8:56:01:af:4d:7a:62:44:86:09:93:1f:5b:e5:
fb:9e:83:ff:36:33:b1:89:91:cc:f5:d6:5b:20:66:
f5:0f:68:68:a2:a0:19:bc:42:3e:e0:d6:d1:72:3a:
6c:35:af:e7:6c:40:53:02:e7:16:6e:a1:81:71:4d:
a1:97:dc:d1:c5:3d:64:00:42:55:66:59:4d:d5:dd:
61:a6:3b:94:b7:22:8b:f8:a1:c6:16:80:fa:25:1a:
69:9e:e9:51:79:3a:3f:2b:3c:d7:97:1d:31:f2:2b:
a1:cd:44:86:30:2f:2f:77:33:cc:f5:92:73:e3:c3:
1f:38:9a:8d:2f:37:0b:9a:09:2f:95:fe:20:fc:ec:
73:ea:ab:18:2d:4d:96:1f:04:fa:91:89:ec:5a:46:
36:99:d4:c7:70:a4:53:d7:77:1d:81:c8:14:71:3d:
f6:b4:a3:ab:67:04:0a:52:99:a9:a3:5c:7e:6b:1a:
0d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:D4:BB:0C:F4:C0:DD:6A:FF:FE:2C:D1:7B:4C:AD:F4:42:2D:97:58
X509v3 Authority Key Identifier:
keyid:B0:FA:0C:7A:BC:10:79:69:15:E3:35:BA:19:78:0E:47:3E:02:79:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:5c:61:9f:b7:47:d3:ce:63:b3:9a:87:47:db:e9:a4:87:38:
d0:e0:d9:90:45:2a:e9:d4:c1:ea:55:09:fe:d8:70:ee:87:0c:
31:0d:37:cd:c2:9c:06:7c:bb:42:7f:1a:9c:5a:44:3d:10:b3:
c9:d6:14:b9:6e:3f:be:1f:af:88:91:10:c9:16:e4:57:94:85:
7f:da:1c:35:87:12:b2:96:7c:fa:b7:5f:b0:8e:59:32:9c:a1:
b1:6f:da:6f:6b:f5:d1:aa:6a:89:1a:81:3f:01:d4:09:95:f1:
89:93:09:1d:a3:a0:c3:c2:8b:a3:cc:71:84:3e:93:cd:91:03:
1f:f5:fb:93:12:4b:78:4d:bb:50:49:e5:a6:b1:64:32:b8:d1:
7a:f2:d6:1d:cd:99:5f:72:0a:af:d9:cf:48:f3:f6:dd:e9:57:
6b:f7:8d:3b:39:8a:4a:50:87:e2:4b:a7:5c:4a:bf:2c:17:ce:
73:2f:8d:39:e4:a4:1d:10:6a:bf:f9:40:72:ec:87:bb:29:34:
a8:cb:76:0b:38:e0:ff:4d:ad:78:ab:d0:2c:37:18:3a:98:72:
91:4c:2c:57:5f:0c:fb:ba:cb:e3:ec:2e:68:75:20:ee:00:fe:
56:63:d6:76:30:e8:3c:bc:79:0b:8a:8f:53:8f:8b:eb:8f:28:
86:9b:35:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 22:59:14 2025 by rpki-client