Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.mft
File: RKqBMTnAax3PG_6DMrm4Aas-swI.mft (raw, json)
Hash identifier: 2CILsl3X0Usr3UIdPl2SL61Y953A84zP4Q9w2ySavJY=
Subject key identifier: 8C:4E:46:C3:42:2E:76:EB:D3:11:D9:35:F1:FB:0E:C2:78:DD:6F:B6
Authority key identifier: 44:AA:81:31:39:C0:6B:1D:CF:1B:FE:83:32:B9:B8:01:AB:3E:B3:02
Certificate issuer: /CN=44aa813139c06b1dcf1bfe8332b9b801ab3eb302
Certificate serial: 0196BCA4C7089CA2C1D2E2CED95434F0D69C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RKqBMTnAax3PG_6DMrm4Aas-swI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.mft
Manifest number: 054B
Signing time: Sun 11 May 2025 00:00:37 +0000
Manifest this update: Sun 11 May 2025 00:00:37 +0000
Manifest next update: Mon 12 May 2025 00:00:37 +0000
Files and hashes: 1: RKqBMTnAax3PG_6DMrm4Aas-swI.crl (hash: KiPFVKDvEbsa1AvN5wCD8Lnd1oDOoMp+ksVkujIrV5M=)
2: dulLD0ENjA9tfgPr9DrSQJxWn5k.roa (hash: ecAhh1+SnR4Xv8G0G+2S5KTuId8TsIACx8G94ng9hIA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.mft
rsync://rpki.ripe.net/repository/DEFAULT/RKqBMTnAax3PG_6DMrm4Aas-swI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 00:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:a4:c7:08:9c:a2:c1:d2:e2:ce:d9:54:34:f0:d6:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44aa813139c06b1dcf1bfe8332b9b801ab3eb302
Validity
Not Before: May 11 00:00:37 2025 GMT
Not After : May 12 00:00:37 2025 GMT
Subject: CN=8c4e46c3422e76ebd311d935f1fb0ec278dd6fb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ce:68:cb:7d:15:34:ed:23:69:b3:9c:23:48:
a2:ee:94:28:9c:f2:92:50:d7:37:a2:e8:ed:1a:b4:
fe:ec:6a:0d:da:8e:18:2b:71:a4:c1:5f:bd:6b:49:
b1:89:5c:8f:61:28:60:3f:21:4a:ad:24:68:1e:42:
b8:00:31:d4:42:7e:ec:28:0b:9b:fa:d7:c9:26:26:
89:18:b0:03:1a:97:4c:6a:41:a1:90:2e:b0:52:77:
ac:50:f0:a3:9b:9c:75:20:96:22:45:76:df:d9:f9:
80:d9:52:ce:32:38:58:34:d0:2d:fa:38:bf:cb:91:
d4:3b:3f:7f:58:3f:a4:2f:ea:fb:7e:48:09:c2:f8:
39:2c:f6:63:0f:9e:5b:60:51:2e:e5:59:5b:21:eb:
88:96:56:2e:96:3c:9b:6f:d1:35:68:51:79:d4:94:
11:db:76:59:58:fa:62:12:7c:ae:d0:b3:d4:df:aa:
bc:cf:86:d0:67:a9:30:cf:74:4d:ad:17:90:8f:b7:
13:c4:ca:55:24:13:25:cf:47:2e:73:85:43:ae:bf:
fd:0b:e9:d8:7a:09:b8:d2:a9:8e:74:ed:fe:31:c3:
87:01:8f:2b:ab:3c:4c:89:ba:4c:6b:de:02:f0:e7:
0d:b4:9b:77:92:19:4c:d7:a4:35:84:47:3d:18:0c:
57:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:4E:46:C3:42:2E:76:EB:D3:11:D9:35:F1:FB:0E:C2:78:DD:6F:B6
X509v3 Authority Key Identifier:
keyid:44:AA:81:31:39:C0:6B:1D:CF:1B:FE:83:32:B9:B8:01:AB:3E:B3:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RKqBMTnAax3PG_6DMrm4Aas-swI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:e2:ac:b7:8c:5b:5d:88:b8:fc:c8:2e:0f:5a:47:5a:36:58:
00:86:7e:47:c3:12:f3:5e:a2:66:d0:ce:9d:a1:c3:bf:2e:3c:
ec:60:50:0d:e3:af:b8:12:e3:ee:c5:e7:00:b8:6f:4e:c2:6f:
f4:a0:d8:fb:44:89:16:fe:66:17:a0:75:54:d6:40:86:d6:6a:
0e:17:67:f6:e6:96:a4:75:c9:33:51:06:c3:2b:bc:3d:52:a7:
f8:41:04:f4:45:ba:f2:87:ef:4e:6b:9b:69:a8:7f:da:bd:33:
90:34:12:79:2e:cf:21:90:8b:87:1a:e2:b2:fe:96:b6:bb:71:
7d:64:43:8b:ed:95:09:6b:3b:87:6a:f6:d4:ab:18:f1:ae:16:
eb:4b:4d:1e:57:fc:fc:d5:29:ec:55:d1:2b:99:65:14:e8:18:
c1:28:ec:8f:f3:b9:6f:4d:d9:43:c2:f7:df:de:30:04:31:95:
68:ed:c7:12:34:71:3e:47:24:9e:72:93:da:28:36:1d:0e:6a:
70:21:00:cb:6b:0a:f8:20:5c:6c:8e:f3:73:1e:65:85:17:ba:
d3:d9:92:35:d9:06:d7:f7:55:92:33:97:21:0d:39:41:32:fc:
87:32:50:69:00:35:85:58:10:64:df:a9:20:cc:82:fd:14:12:
44:ab:97:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 10:42:11 2025 by rpki-client