Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
File: 1gTknpKDBavLjzLe8_78A-u83kQ.mft (raw, json)
Hash identifier: lTi9OVBlp+YXo+URi0DdHvqqVnHyjwiYp1P2xkim+E4=
Subject key identifier: B4:CA:B8:1B:8D:2E:72:9F:00:B2:85:D7:A2:61:0B:AF:08:ED:54:84
Authority key identifier: D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
Certificate issuer: /CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Certificate serial: 0196A9F95641F4608D8DA6061363B3177D17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
Manifest number: 14BD
Signing time: Wed 07 May 2025 09:00:12 +0000
Manifest this update: Wed 07 May 2025 09:00:12 +0000
Manifest next update: Thu 08 May 2025 09:00:12 +0000
Files and hashes: 1: 1gTknpKDBavLjzLe8_78A-u83kQ.crl (hash: YMscRLiGjS7CZ9+MMvPriEfwCemmc647e1068x2sv2Q=)
2: pucl_qoNJsFNHYReBDscEGdx2N0.roa (hash: SiJfUuqs3fjKSI6Mo6WtKDUOtA0gOnKfbqvupwDeWPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a9:f9:56:41:f4:60:8d:8d:a6:06:13:63:b3:17:7d:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Validity
Not Before: May 7 09:00:12 2025 GMT
Not After : May 8 09:00:12 2025 GMT
Subject: CN=b4cab81b8d2e729f00b285d7a2610baf08ed5484
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:0c:24:9c:71:46:65:02:8f:a0:55:99:d2:f7:
e2:98:36:a9:3b:a6:ff:90:aa:fb:c8:2a:41:10:6c:
f3:bd:32:29:40:e3:b2:50:61:a0:02:63:6c:06:f4:
5a:52:c4:0b:c5:61:f1:07:b9:f1:dc:33:44:f3:1b:
b3:f8:e1:43:8a:4b:35:aa:96:81:7f:bc:8b:df:bf:
83:e1:48:b9:6f:66:97:69:4a:24:3c:c8:19:7a:9d:
13:71:58:09:a1:32:81:64:3f:3b:d5:89:ae:ad:be:
90:27:3e:ea:04:82:bc:be:d3:fe:55:ff:43:d8:90:
1d:94:e4:07:df:24:2d:27:98:8b:8d:48:d0:62:08:
68:0e:96:0a:2b:06:e1:55:f4:67:a6:b3:22:d2:5d:
75:3e:ac:b5:6c:76:70:f6:a3:9f:17:ef:37:8c:66:
e3:6a:e7:c9:35:23:04:91:5b:0c:88:03:ad:83:f9:
29:95:56:7e:4f:48:22:f7:9b:26:2b:06:e2:11:0f:
de:8f:65:40:f3:fc:63:50:9a:d3:36:b4:8a:9f:a2:
79:d3:3c:1e:f9:5b:e6:1d:f5:a9:65:11:79:c8:2e:
a5:9a:32:92:65:cb:f8:36:45:c7:82:39:a5:97:09:
77:0f:ed:7f:93:0c:32:3d:75:1f:58:d8:92:f4:25:
ae:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:CA:B8:1B:8D:2E:72:9F:00:B2:85:D7:A2:61:0B:AF:08:ED:54:84
X509v3 Authority Key Identifier:
keyid:D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:5c:be:e7:ea:b0:7c:4c:8c:a7:32:af:00:af:b2:8b:75:cf:
6f:a8:44:43:01:47:3e:4b:ff:16:b3:51:4f:0f:b6:f7:8e:4a:
2d:84:22:49:7d:fe:51:24:60:4a:11:0a:ce:f4:cd:2f:bf:52:
e1:15:34:14:2a:03:61:e9:01:91:f1:0e:ab:e6:6a:60:9d:9b:
6f:e1:83:24:f2:df:a8:a8:b7:4a:ec:1e:29:a5:01:90:48:5c:
de:57:2d:20:27:11:97:50:d7:af:7d:c0:b4:f5:37:46:bf:c9:
eb:62:c5:30:8f:bc:80:e9:4c:d8:cd:0a:4d:18:2d:75:d6:20:
ca:e8:1f:51:06:4d:6e:0e:16:af:98:28:fc:83:76:bd:c7:be:
65:18:a7:91:5f:06:8a:84:17:bb:a9:13:7e:56:40:6f:7f:59:
b6:36:d6:ba:56:7a:2c:6e:49:be:a0:30:ec:b8:c1:63:53:3b:
f4:25:df:56:67:41:df:1f:25:bf:11:c5:ff:c8:ab:15:60:cf:
f1:16:c4:6b:b1:59:a5:24:50:5a:60:1f:c6:7c:b6:04:1d:c5:
fd:ea:f7:34:5f:f2:7a:93:68:03:92:e0:0a:dd:60:33:fb:02:
f7:d0:18:68:69:be:ac:be:78:26:fb:5e:5c:28:74:ed:1c:a0:
91:9f:e0:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 12:34:21 2025 by rpki-client