Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.mft
File: cRc4aXP7-IqGfIKohnsFD8pgsBE.mft (raw, json)
Hash identifier: oyEEw5S9wpgvsUAPME2SO2JzObkYEELWX/axFD6UkUw=
Subject key identifier: AF:46:B4:33:96:90:38:9E:FF:71:E2:F4:C0:C5:B1:71:23:8E:C0:9A
Authority key identifier: 71:17:38:69:73:FB:F8:8A:86:7C:82:A8:86:7B:05:0F:CA:60:B0:11
Certificate issuer: /CN=7117386973fbf88a867c82a8867b050fca60b011
Certificate serial: 0196A0892009CF7FD9828CF1B9F858C0600B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cRc4aXP7-IqGfIKohnsFD8pgsBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.mft
Manifest number: 1525
Signing time: Mon 05 May 2025 13:01:03 +0000
Manifest this update: Mon 05 May 2025 13:01:03 +0000
Manifest next update: Tue 06 May 2025 13:01:03 +0000
Files and hashes: 1: __J8knmzK0D7LeHPBcfH9mDXmDA.roa (hash: KGCws32qTez6CiaSk45QNDqYkcqePM9SEByg+MzKHwo=)
2: cRc4aXP7-IqGfIKohnsFD8pgsBE.crl (hash: 96AhTaRgXhQvVCS5GkoqxdUX59eE1ie7SFLw7hBIAx0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cRc4aXP7-IqGfIKohnsFD8pgsBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:89:20:09:cf:7f:d9:82:8c:f1:b9:f8:58:c0:60:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7117386973fbf88a867c82a8867b050fca60b011
Validity
Not Before: May 5 13:01:03 2025 GMT
Not After : May 6 13:01:03 2025 GMT
Subject: CN=af46b4339690389eff71e2f4c0c5b171238ec09a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:83:d9:c1:35:6c:4e:80:ab:10:01:4c:2c:7d:
fa:e9:92:7c:f1:84:76:83:50:0b:01:83:b6:d8:f7:
38:77:2d:03:c6:d7:c7:66:dc:c9:23:87:d8:30:e3:
a9:72:fb:de:83:83:ff:63:4d:97:d2:0e:6c:8a:00:
db:c5:9a:44:02:40:a8:41:f8:ac:ea:41:b4:48:1c:
00:96:fc:a8:a9:21:80:c5:38:04:a6:ce:d9:08:b5:
af:2c:8e:0c:a3:e4:13:bb:05:c5:95:fe:0d:f6:3f:
82:32:a0:b8:ea:9d:25:cc:93:97:1d:ed:06:1b:ad:
72:4e:9c:37:ea:96:49:54:60:ca:3e:b6:fc:39:bd:
7b:08:be:89:85:3c:a9:f2:39:e3:42:2c:7c:fb:e3:
7f:4a:2a:2a:ac:b0:80:ad:4d:1f:35:7c:02:12:37:
37:fa:64:95:87:cf:61:59:f1:1e:ff:c6:2f:5d:02:
0f:98:6d:7b:33:95:f1:c3:8b:d7:9a:1f:0b:83:9c:
f2:a5:91:30:63:0e:04:92:92:07:7a:b0:5d:de:c7:
85:e9:14:5e:db:49:b3:b0:30:5f:74:ff:97:2b:29:
f8:1c:c2:60:b7:ff:99:c2:4e:d9:e1:e3:09:1c:e8:
77:79:23:64:0a:aa:67:4c:35:38:4f:dc:86:aa:0e:
4c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:46:B4:33:96:90:38:9E:FF:71:E2:F4:C0:C5:B1:71:23:8E:C0:9A
X509v3 Authority Key Identifier:
keyid:71:17:38:69:73:FB:F8:8A:86:7C:82:A8:86:7B:05:0F:CA:60:B0:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cRc4aXP7-IqGfIKohnsFD8pgsBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:6b:b5:67:6b:d7:1e:85:a4:ba:0a:85:2e:ac:6d:56:7f:5a:
09:8c:1e:26:ee:9e:f6:3a:e9:2a:0c:bd:58:8f:3f:05:27:23:
40:b5:2b:df:6c:06:6c:ed:6e:7f:a8:7d:b3:4d:a8:e7:d0:6c:
e6:27:c6:79:22:1f:9e:41:d8:00:7c:b5:9b:42:9c:ae:17:09:
9d:ab:f7:68:c5:68:97:a4:41:f2:fe:df:f4:79:79:b2:bf:7e:
ab:a0:a6:18:ff:a8:6c:ea:95:5d:a4:34:7a:03:60:8c:b3:a8:
4e:ec:1f:6f:bc:11:5f:16:68:33:af:fa:2b:45:c8:d0:9d:ab:
f5:1a:cb:fc:b1:88:41:0b:9c:86:67:bc:6e:04:aa:dd:d9:f6:
e3:eb:02:7c:52:a0:96:f9:1d:5d:7d:2a:66:17:51:49:fb:16:
b4:ef:29:94:ba:c2:ef:76:99:30:f3:0c:f1:fa:60:cb:d3:9c:
e3:42:ad:64:e6:d8:22:23:f1:c7:da:22:bc:f7:da:2c:34:ba:
d8:53:5c:6f:35:cb:4e:53:ff:88:03:ca:7a:71:6a:71:3d:e4:
7b:d3:30:99:c1:3f:45:1c:fb:61:86:73:f7:28:2b:75:6c:59:
a6:14:68:aa:71:0e:a7:75:d4:a9:fc:b5:68:d3:5b:f8:82:5d:
4d:83:f7:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 17:40:15 2025 by rpki-client