Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
File: CFr4G5nr9ILzxrU1Hiniii4gs5g.mft (raw, json)
Hash identifier: sRcMaDWL8OZVPPadG/9OQOJYny8IUVF1v6jIqUtqaPY=
Subject key identifier: A0:2F:33:7A:3D:23:05:A6:32:21:B9:6A:0C:8C:46:A2:FD:B0:A0:BA
Authority key identifier: 08:5A:F8:1B:99:EB:F4:82:F3:C6:B5:35:1E:29:E2:8A:2E:20:B3:98
Certificate issuer: /CN=085af81b99ebf482f3c6b5351e29e28a2e20b398
Certificate serial: 0196C04B3FC103ECD072DCCA88F0F305EA1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CFr4G5nr9ILzxrU1Hiniii4gs5g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
Manifest number: 02E4
Signing time: Sun 11 May 2025 17:01:19 +0000
Manifest this update: Sun 11 May 2025 17:01:19 +0000
Manifest next update: Mon 12 May 2025 17:01:19 +0000
Files and hashes: 1: CFr4G5nr9ILzxrU1Hiniii4gs5g.crl (hash: 1mvEslN/cHKxGD+vJXisuUQNOZ6t0S1Fg/dhovXdzE4=)
2: UmoMMcgLYQ1NME06W-RaoSwOLvs.roa (hash: DXndsPFPDd7x23rCZc6g3GNT4ZixvQ1GmrG9rBzETuc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
rsync://rpki.ripe.net/repository/DEFAULT/CFr4G5nr9ILzxrU1Hiniii4gs5g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:4b:3f:c1:03:ec:d0:72:dc:ca:88:f0:f3:05:ea:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=085af81b99ebf482f3c6b5351e29e28a2e20b398
Validity
Not Before: May 11 17:01:19 2025 GMT
Not After : May 12 17:01:19 2025 GMT
Subject: CN=a02f337a3d2305a63221b96a0c8c46a2fdb0a0ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:55:77:43:15:c1:23:73:80:f6:f7:de:10:e6:
0d:94:32:a8:01:4e:c1:cf:60:2c:15:10:bf:e1:8d:
f4:7c:b6:a1:9a:78:60:ad:89:47:bf:e5:a3:e5:4a:
f0:92:1e:58:fa:d1:41:8b:ce:39:11:6e:bd:19:c9:
6e:57:75:9c:6b:d7:be:57:fd:ad:63:b1:96:43:f7:
a3:b4:b2:8f:a2:d9:1c:b2:d5:1c:8f:42:c7:11:77:
63:57:e7:fa:85:50:42:11:c3:b9:87:b9:42:25:cc:
6f:72:b3:bd:ad:01:29:d7:14:1d:68:99:5f:cb:7c:
36:47:1f:ad:4f:3d:f1:2d:9e:4e:32:03:8e:73:06:
9b:2c:df:60:59:d2:c2:09:e3:17:83:c1:1f:cb:9d:
67:60:7f:32:9a:65:b3:22:50:62:78:f8:1f:86:0d:
6c:1e:35:d1:9a:08:67:8c:a4:30:54:70:04:bc:b4:
79:16:dc:d4:c7:df:7e:ff:b2:a9:5e:24:85:07:34:
d2:cc:0c:17:cf:be:44:7e:09:36:46:96:dc:5a:70:
9e:cc:45:da:4c:78:66:c0:71:21:89:f0:43:29:85:
3f:21:8b:d0:a9:9e:12:62:d5:c7:c8:39:23:80:38:
8e:70:a0:51:5d:63:20:73:9d:8b:33:31:bf:b8:a5:
79:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:2F:33:7A:3D:23:05:A6:32:21:B9:6A:0C:8C:46:A2:FD:B0:A0:BA
X509v3 Authority Key Identifier:
keyid:08:5A:F8:1B:99:EB:F4:82:F3:C6:B5:35:1E:29:E2:8A:2E:20:B3:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CFr4G5nr9ILzxrU1Hiniii4gs5g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0840e9-7199-4e03-84fd-c28d14c7b731/1/CFr4G5nr9ILzxrU1Hiniii4gs5g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:40:9a:8b:8f:6a:48:3b:e3:20:b0:e1:bc:4e:d1:79:70:71:
c4:e0:02:9e:e4:fd:d2:3a:b1:ad:b4:31:50:05:5d:0f:55:c1:
7c:4a:b1:69:ea:00:3a:f0:40:c9:69:1b:73:f2:f0:ac:64:19:
29:08:87:90:31:3c:43:5f:8e:ff:8b:1d:7f:c3:e6:21:8a:e7:
3d:1a:3d:6d:b2:54:ed:a9:e0:9d:88:13:fb:f6:7c:65:ff:94:
3c:3f:f1:2e:98:d4:a3:bf:8a:24:2d:ca:c3:93:e0:83:85:6c:
de:55:94:d0:40:a6:d6:32:c7:a0:a3:0b:d8:e7:de:88:3e:18:
28:07:de:fa:84:58:00:69:e0:b4:d1:24:15:89:e2:08:33:e6:
ae:92:0e:12:5c:31:da:2d:7f:65:10:a6:02:50:38:ae:0b:b3:
c8:d1:0e:96:99:52:e7:ef:e9:ce:f6:d8:2f:2d:45:b8:0e:68:
ee:93:65:ab:18:72:0f:10:33:a4:e7:61:d1:40:d6:c3:6f:5b:
f6:50:ce:b2:f5:8f:c4:49:cb:92:70:83:d2:70:11:13:30:15:
d4:93:91:c9:31:23:3a:4a:01:83:4a:e2:d4:59:e3:e6:dd:6e:
e2:42:e5:b5:39:8a:9e:8b:b4:b8:92:37:12:c9:b0:0d:c0:d6:
18:6d:e1:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 00:18:22 2025 by rpki-client