Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft
File: 0cpnYQKGq3OPhs6TX99e1iDwLZY.mft (raw, json)
Hash identifier: cyBUb6qcMCxROGghWhf01PEGOyi6AkfM9WzDW9ab+Io=
Subject key identifier: A6:1C:C0:B9:0E:32:7A:73:F5:31:75:1C:F0:33:3C:D5:FB:07:3B:EA
Authority key identifier: D1:CA:67:61:02:86:AB:73:8F:86:CE:93:5F:DF:5E:D6:20:F0:2D:96
Certificate issuer: /CN=d1ca67610286ab738f86ce935fdf5ed620f02d96
Certificate serial: 0196C75F27A15F259A580B964DC6B22C32CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0cpnYQKGq3OPhs6TX99e1iDwLZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft
Manifest number: 042F
Signing time: Tue 13 May 2025 02:00:24 +0000
Manifest this update: Tue 13 May 2025 02:00:24 +0000
Manifest next update: Wed 14 May 2025 02:00:24 +0000
Files and hashes: 1: 0cpnYQKGq3OPhs6TX99e1iDwLZY.crl (hash: Z6SQa1eyz4qmLlyrz/fUDtPZOoLyxF4wPa4EH9WXvVE=)
2: y5znuwpLKZ8JL_6tjS8ThMPHHLE.roa (hash: Ff9QtDrzEqE+YPfo1QrUfXElhWcFkl8EJxj88BmOBUY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0cpnYQKGq3OPhs6TX99e1iDwLZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c7:5f:27:a1:5f:25:9a:58:0b:96:4d:c6:b2:2c:32:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1ca67610286ab738f86ce935fdf5ed620f02d96
Validity
Not Before: May 13 02:00:24 2025 GMT
Not After : May 14 02:00:24 2025 GMT
Subject: CN=a61cc0b90e327a73f531751cf0333cd5fb073bea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:32:ef:f2:67:fc:79:4a:95:e8:a0:fb:a2:05:
8a:08:83:e5:cd:42:d5:f9:ec:63:90:4b:ce:fd:f0:
7b:27:08:7d:c1:46:cb:4c:0b:03:6e:83:97:66:0c:
ad:16:88:3e:b5:a7:4d:6f:17:5c:22:6a:dc:f9:c4:
8e:34:b8:5a:e3:b0:ce:89:02:6b:4b:15:bf:e3:19:
21:21:19:99:67:a6:c0:ee:04:63:23:f1:e8:f0:ad:
22:16:5e:1c:0f:fb:73:44:00:81:4f:22:18:56:c5:
5c:74:a6:bc:27:9c:b1:be:98:9f:cd:bf:7c:6b:e0:
41:81:1c:c7:b0:e1:3b:a2:b2:04:32:36:3a:db:37:
95:28:f7:d1:48:de:99:de:1d:64:92:d4:0f:4e:a4:
b1:75:1c:80:89:6b:a5:3a:67:21:47:f9:15:aa:4e:
87:ca:d7:ee:9f:c2:e1:f0:3f:aa:3c:1c:94:8b:87:
3a:ea:f3:3f:19:d5:6c:76:f1:2a:7f:38:94:6f:d9:
1f:a0:eb:3f:20:91:f1:9b:9c:1f:ed:ba:a9:d8:37:
a8:f9:4b:21:21:09:e9:4e:2e:27:a2:6b:76:c8:c9:
b3:c8:1e:f7:e4:b2:77:29:de:62:a9:a9:66:d0:30:
ea:a6:56:e7:91:53:5e:fd:45:7a:06:8e:ae:28:4a:
46:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:1C:C0:B9:0E:32:7A:73:F5:31:75:1C:F0:33:3C:D5:FB:07:3B:EA
X509v3 Authority Key Identifier:
keyid:D1:CA:67:61:02:86:AB:73:8F:86:CE:93:5F:DF:5E:D6:20:F0:2D:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0cpnYQKGq3OPhs6TX99e1iDwLZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:b7:d5:79:07:a7:dc:c1:b3:7b:00:57:e8:3e:3f:97:b3:b8:
78:25:b6:c2:74:e9:d1:dd:7e:e3:78:3f:56:d3:65:7b:ae:8b:
f8:ae:af:94:89:9b:a9:51:d5:f9:e8:d5:34:85:f7:94:59:a2:
2c:8b:8a:f1:c1:8c:29:cf:0d:1e:f0:83:2b:e3:84:66:12:a9:
86:d0:f5:d9:5c:76:d0:63:da:d2:35:a3:68:b0:15:0b:6f:8c:
98:a7:8d:57:db:87:28:42:5e:59:40:f0:d6:7d:80:99:77:08:
81:2f:89:b7:d7:d9:28:1a:fa:a0:60:a1:55:25:68:1e:67:66:
09:99:0f:74:ab:2b:47:c4:ec:fb:7a:dc:a6:1e:04:3f:de:2c:
af:92:cd:06:c7:31:56:4f:89:80:9c:f2:36:0b:4e:a5:55:ab:
ca:dd:6d:de:d0:de:3d:30:5e:ea:99:e9:5c:59:20:5a:c9:01:
65:3e:0d:dc:02:5e:c6:54:03:d2:7e:f6:2a:ff:ea:7e:0a:fc:
a3:02:d5:1a:4e:7a:ff:8d:60:61:79:9a:02:ee:d8:50:89:cd:
91:a2:f2:da:9c:33:db:8a:12:e9:9d:f7:98:6a:d4:f8:40:ec:
0c:c1:81:66:59:35:ee:9c:e4:d2:c8:c9:b1:d6:a2:1c:65:38:
65:b9:cd:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 06:28:37 2025 by rpki-client