Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
File: 8iL76FrkCNN3shfU66eziyS69d0.mft (raw, json)
Hash identifier: 1DtGxwjbfE18O6NP+rgrPa/0Ja1YqL2KP6EuIzeIIy8=
Subject key identifier: 2C:EB:3C:04:C2:38:24:39:D0:37:3A:E9:2B:4C:77:C7:32:2B:DA:9E
Authority key identifier: F2:22:FB:E8:5A:E4:08:D3:77:B2:17:D4:EB:A7:B3:8B:24:BA:F5:DD
Certificate issuer: /CN=f222fbe85ae408d377b217d4eba7b38b24baf5dd
Certificate serial: 01969DBED59DD09EB8ED8230E3E734C1B3C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
Manifest number: 0BD3
Signing time: Mon 05 May 2025 00:00:51 +0000
Manifest this update: Mon 05 May 2025 00:00:51 +0000
Manifest next update: Tue 06 May 2025 00:00:51 +0000
Files and hashes: 1: 5-tO1DtUPdvn-gHncHuAbgt6OiM.roa (hash: L6Z02H1tfyOJ9fsH+lsAomG7wfqgJlWMWjJh/1Ka9SI=)
2: 8iL76FrkCNN3shfU66eziyS69d0.crl (hash: JBy3DXXYaUdkwWweREIOb24wHkTAuUX9G9vk0kqAS80=)
3: gPE9V0tO8JPLDv8MCZH-UuWvdnQ.roa (hash: 5qjlUc3/t7psPBo135Wzs5OYxrc/B+KKSYzn0gcEaGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 00:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9d:be:d5:9d:d0:9e:b8:ed:82:30:e3:e7:34:c1:b3:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f222fbe85ae408d377b217d4eba7b38b24baf5dd
Validity
Not Before: May 5 00:00:51 2025 GMT
Not After : May 6 00:00:51 2025 GMT
Subject: CN=2ceb3c04c2382439d0373ae92b4c77c7322bda9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:83:d0:ad:32:4e:44:8a:4a:ec:fc:85:0c:8d:
d0:52:f2:cf:1f:51:82:a8:96:ba:ed:84:45:0f:a9:
e1:71:34:4b:bb:d5:36:9c:b3:83:08:94:69:e6:11:
24:a7:2b:0a:05:9f:74:ef:5e:d9:c4:97:b2:81:11:
ea:72:f0:70:c6:61:39:ce:6e:71:97:b1:54:2b:de:
92:bf:45:e2:38:41:af:83:0c:b4:95:d5:aa:22:d4:
c7:5c:d6:b9:0a:f0:cf:6f:19:3e:29:59:72:29:f4:
fe:43:f5:3d:37:ca:0e:90:ab:fd:9f:ad:cb:51:b4:
55:3b:7c:46:25:2b:fa:6b:55:61:1d:32:0e:39:2f:
33:43:0b:b5:e1:40:b6:de:5a:c6:f3:1d:ae:48:08:
4c:78:a4:46:92:9f:2f:2b:21:1c:29:4f:34:4c:94:
c8:8c:6b:92:13:f8:9d:cc:3d:ce:2e:ed:62:f9:de:
7b:68:32:b9:de:ad:6f:d3:92:ea:0f:75:83:8a:80:
28:c6:2d:a0:9b:2d:2c:ed:5b:c0:c1:6a:f2:bd:a4:
cd:19:6d:72:f6:6e:e8:92:9d:93:c9:ab:63:1f:90:
e0:0f:42:f0:eb:bb:cc:81:77:82:b5:28:a3:94:b2:
b7:bb:66:00:f4:bf:e8:e1:d3:5a:54:52:f4:d1:00:
87:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:EB:3C:04:C2:38:24:39:D0:37:3A:E9:2B:4C:77:C7:32:2B:DA:9E
X509v3 Authority Key Identifier:
keyid:F2:22:FB:E8:5A:E4:08:D3:77:B2:17:D4:EB:A7:B3:8B:24:BA:F5:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8iL76FrkCNN3shfU66eziyS69d0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1aa875-03b5-4c17-bb39-b0c1e3304e74/1/8iL76FrkCNN3shfU66eziyS69d0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:62:5d:63:d1:30:f6:b5:37:74:a5:b2:c4:ec:8e:40:ee:50:
da:ee:ff:59:31:f2:0a:0a:b7:1b:ca:4f:7f:2b:65:78:99:ac:
e1:a4:20:d2:ee:aa:31:af:98:ca:8b:41:3d:50:23:c2:2d:c0:
28:0f:03:a6:1b:42:38:fa:ff:f2:68:91:f7:f5:96:ee:35:24:
89:ee:0f:fd:c9:4b:ec:b8:10:5e:84:a8:08:b3:21:ac:1c:d6:
4e:7d:13:17:77:92:f0:51:b2:06:ee:8a:7d:8c:ba:da:4f:ea:
7a:ab:a0:fe:58:94:b3:e0:6d:33:f1:66:91:de:38:f6:89:f6:
74:36:c9:2e:3b:ba:bd:8b:33:31:ae:7a:70:9d:e2:de:db:98:
cd:a9:7d:dd:fc:61:75:0a:84:e3:28:fd:8a:aa:59:da:2b:60:
92:6e:9a:c1:6f:7d:85:b3:b0:a6:b9:f9:e8:05:c8:70:f0:ed:
85:de:53:5e:83:07:40:c9:ea:00:f7:54:2d:f3:ff:35:22:69:
d5:65:a8:1d:83:56:9b:a5:04:c4:c9:5f:49:8a:90:4a:eb:0e:
8a:5e:4a:d2:49:b5:c6:e2:f3:33:f1:fb:f5:6a:2f:56:d2:46:
b4:a7:13:3d:41:a2:52:76:e1:57:48:4d:50:f3:0d:01:94:cc:
07:fb:79:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 08:43:43 2025 by rpki-client