Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
File: 1kgpREOu0W0GuGrxT1pfClCDd0o.mft (raw, json)
Hash identifier: QFdiruR5Tuh0uocTFK1Cp1phZjwhNgU+uP8iM2c7Nl8=
Subject key identifier: 0C:00:A4:62:D7:A9:DC:65:FF:0A:62:E1:2D:55:7B:2F:C1:27:4D:28
Authority key identifier: D6:48:29:44:43:AE:D1:6D:06:B8:6A:F1:4F:5A:5F:0A:50:83:77:4A
Certificate issuer: /CN=d648294443aed16d06b86af14f5a5f0a5083774a
Certificate serial: 0196BA48857384827B5381C1E436BE6EC695
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
Manifest number: 1531
Signing time: Sat 10 May 2025 13:00:36 +0000
Manifest this update: Sat 10 May 2025 13:00:36 +0000
Manifest next update: Sun 11 May 2025 13:00:36 +0000
Files and hashes: 1: 1kgpREOu0W0GuGrxT1pfClCDd0o.crl (hash: YCKZiFs4d4OsK38LaoGOmo7vdndnDsTx7K/BE5+EzS8=)
2: HUiYQLYoRn-P8-AKIUmGnSk_fUQ.roa (hash: ozdi5qHnRcow/nH1EVH0214AE7vAhAxmdAJcuT+IzE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:48:85:73:84:82:7b:53:81:c1:e4:36:be:6e:c6:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d648294443aed16d06b86af14f5a5f0a5083774a
Validity
Not Before: May 10 13:00:36 2025 GMT
Not After : May 11 13:00:36 2025 GMT
Subject: CN=0c00a462d7a9dc65ff0a62e12d557b2fc1274d28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ba:74:5f:81:87:5c:b2:80:ff:7c:13:5a:fc:
c6:bb:39:ff:57:c7:27:63:79:94:41:17:a3:81:33:
c8:04:60:2a:83:25:ee:fa:a0:d2:ea:b7:41:91:bf:
2f:24:17:7c:c7:2b:3b:5c:26:32:59:57:cc:f2:eb:
07:e6:b0:25:c4:69:09:a3:47:66:43:78:60:79:a3:
de:10:a2:97:de:31:9d:e9:2a:a0:b1:5e:05:49:16:
dd:d2:c6:d7:7e:b4:eb:a4:1a:fa:28:98:78:7b:71:
2b:25:fa:05:69:ac:90:6e:24:86:cf:19:0b:67:91:
da:1c:5b:ba:fa:2a:61:89:cc:de:56:bb:a2:ff:50:
f0:a2:56:08:5e:99:b4:fd:8c:f5:be:30:64:33:75:
89:33:c9:83:ac:bd:c2:6b:f4:2d:a5:23:02:bc:11:
f5:1b:17:d8:e8:29:b3:a6:82:38:27:09:ca:6c:d8:
23:a6:b0:2c:f9:9f:a9:de:d1:0e:72:ce:b9:37:4e:
f1:a0:71:20:6d:10:e4:89:ca:04:3a:39:3c:38:2d:
b6:33:c8:62:a1:4b:47:42:42:81:9f:33:2f:7c:5b:
a5:2c:6e:20:bd:2f:7e:8f:7a:95:91:43:e4:1d:68:
5d:ed:9b:bc:54:95:71:bb:89:67:77:18:c4:08:3d:
c4:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:00:A4:62:D7:A9:DC:65:FF:0A:62:E1:2D:55:7B:2F:C1:27:4D:28
X509v3 Authority Key Identifier:
keyid:D6:48:29:44:43:AE:D1:6D:06:B8:6A:F1:4F:5A:5F:0A:50:83:77:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:70:b2:71:da:b1:48:ae:18:29:e2:c8:53:2d:6d:09:81:d5:
fa:6c:ba:0e:5a:3b:3c:71:37:3d:ee:73:20:da:f0:31:1d:d5:
60:b0:31:e2:54:91:50:0c:3f:d3:37:ae:de:5f:3c:30:d6:89:
01:ed:f2:22:e3:f3:5a:ec:8d:1f:b8:59:2b:43:8d:fe:ab:e0:
50:18:24:34:26:0c:5d:41:71:69:e0:d0:e6:b6:63:43:09:14:
96:e4:ac:df:08:a1:27:30:5d:01:70:5b:40:63:17:ad:74:2f:
93:8c:41:ea:1e:0e:5e:a5:82:50:fa:f3:37:72:55:ff:ec:92:
6f:44:ec:01:20:66:72:80:5c:4f:64:ed:3a:30:12:57:26:ad:
64:0a:19:79:0d:d0:5c:7e:3b:88:8d:7f:0b:5a:30:0f:ad:0c:
47:4e:28:30:06:54:14:8c:31:3f:3f:5b:b1:9f:8f:0d:48:62:
d3:84:95:a6:c6:65:36:43:1a:3e:4d:cf:04:65:50:d0:bc:60:
e3:0d:8e:14:26:76:aa:fd:ad:e4:c3:a8:a2:67:67:e0:16:6b:
b2:df:90:04:3b:36:5d:70:74:6e:70:7f:32:b5:cd:90:6a:51:
83:b0:84:0e:59:cd:4e:36:df:a8:36:cd:29:6e:ee:df:a9:c9:
40:3b:5e:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 20:27:07 2025 by rpki-client