Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.mft
File: cKC1rKcx6nHybWPSPCLBI7K7Eg8.mft (raw, json)
Hash identifier: zNbU/3A5kmtZ+MPr54VfHKCxE7Xr5iCmVe4livR+nHA=
Subject key identifier: EC:5D:48:63:C9:8A:E2:E5:66:64:01:D9:A9:CD:B4:17:34:71:0B:45
Authority key identifier: 70:A0:B5:AC:A7:31:EA:71:F2:6D:63:D2:3C:22:C1:23:B2:BB:12:0F
Certificate issuer: /CN=70a0b5aca731ea71f26d63d23c22c123b2bb120f
Certificate serial: 0196C2DD963E290390E5EF7235EDA42DFA2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cKC1rKcx6nHybWPSPCLBI7K7Eg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.mft
Manifest number: 086F
Signing time: Mon 12 May 2025 05:00:23 +0000
Manifest this update: Mon 12 May 2025 05:00:23 +0000
Manifest next update: Tue 13 May 2025 05:00:23 +0000
Files and hashes: 1: 5K2zlrIHADlFytOUhc54zx-uCAw.roa (hash: VJ3nEApsPTUcM1XeIb75bGQ+CbjZ/H8pdnWKdP3UYOg=)
2: cKC1rKcx6nHybWPSPCLBI7K7Eg8.crl (hash: L3+WZ8mncUvhGRHHmdoaFdk052Oa2TcfKa3JauPEMEs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.mft
rsync://rpki.ripe.net/repository/DEFAULT/cKC1rKcx6nHybWPSPCLBI7K7Eg8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:dd:96:3e:29:03:90:e5:ef:72:35:ed:a4:2d:fa:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70a0b5aca731ea71f26d63d23c22c123b2bb120f
Validity
Not Before: May 12 05:00:23 2025 GMT
Not After : May 13 05:00:23 2025 GMT
Subject: CN=ec5d4863c98ae2e5666401d9a9cdb41734710b45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:70:fe:a6:e1:9f:91:c8:4d:02:17:2f:36:22:
6b:c9:80:cd:d1:98:b9:dd:ac:8e:66:8d:2d:4f:40:
7a:58:21:88:f6:3f:5c:d5:e9:f5:a1:a9:27:28:67:
a6:15:b8:4b:b2:4f:68:d9:ba:ee:69:b2:be:44:fa:
01:60:92:57:ed:8e:f7:95:4d:9b:a5:dc:f1:4c:8a:
60:c8:26:27:8f:e5:fb:e4:8e:ad:8a:87:2a:47:34:
8d:e9:5b:e8:d0:23:8b:7c:d2:7a:29:ca:74:88:89:
6e:14:2e:5b:03:bc:5c:5b:85:1d:d7:65:9d:c2:24:
ff:3c:fa:e1:20:6c:f9:0b:65:4f:fc:f8:7a:c2:67:
39:f8:6b:4d:c0:a2:63:d1:75:83:49:9b:e7:3c:c7:
fb:f7:f7:ba:3b:9e:be:5d:2d:c7:16:29:8c:d7:6a:
83:79:18:53:4c:15:a6:4e:60:21:5c:f6:b0:cd:9e:
dc:31:ac:59:58:28:ea:70:a4:e3:5c:19:00:4f:84:
4b:7f:15:6e:00:b2:b3:f0:f6:6c:bf:8d:a5:e3:19:
d0:a5:7d:dc:5e:e9:f5:3c:ac:90:17:58:70:66:df:
c4:c4:61:27:fc:12:69:8c:61:55:dd:d2:2a:a6:2d:
12:05:43:cd:29:5b:3b:78:32:a8:9a:19:a1:26:56:
16:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:5D:48:63:C9:8A:E2:E5:66:64:01:D9:A9:CD:B4:17:34:71:0B:45
X509v3 Authority Key Identifier:
keyid:70:A0:B5:AC:A7:31:EA:71:F2:6D:63:D2:3C:22:C1:23:B2:BB:12:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cKC1rKcx6nHybWPSPCLBI7K7Eg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f649e5-a7cb-4218-93e0-43e31800df0c/1/cKC1rKcx6nHybWPSPCLBI7K7Eg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:b6:ff:8e:49:99:da:e5:fa:86:97:85:43:5b:fe:76:d7:a8:
d7:39:93:7c:36:72:17:f2:5f:04:4e:b7:1d:4e:e4:f0:05:a2:
c9:ac:ea:7f:0e:1c:d3:55:9e:b0:ce:98:e6:68:a8:f6:e7:c4:
35:01:61:20:0c:61:a0:df:77:db:8e:6b:e1:b0:97:08:b2:66:
89:eb:b8:65:9f:1b:26:91:54:46:b9:a6:02:35:1f:da:2f:c9:
37:25:42:3e:12:dc:75:d6:53:bc:4f:65:01:d7:6f:0f:27:b1:
0a:a0:4a:5a:4b:22:e0:19:80:f4:17:37:98:70:bc:a2:1c:f5:
79:d3:5f:03:a0:53:07:6f:5b:fb:6d:23:13:ed:4e:43:56:fe:
3a:db:be:60:3b:e4:f4:20:8e:9b:89:d0:de:00:20:f2:b2:9f:
9b:00:1f:d0:eb:70:81:3d:bc:3b:88:df:59:9f:e3:4a:c4:6d:
a4:d0:55:4f:c5:bf:43:e0:71:a9:83:93:19:6f:14:18:cc:1e:
fb:04:57:17:d4:c1:1c:94:eb:2a:fc:af:28:d0:db:2a:11:ec:
ac:b7:9d:d3:4b:1a:54:c7:5b:98:45:03:f9:77:30:c6:94:1e:
8a:0a:9c:b4:1a:bf:9d:06:b4:1d:70:54:8e:b2:13:f9:ae:68:
45:b7:c2:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 10:42:07 2025 by rpki-client