Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
File: ctdCYWpoBB9_D80HkvOOQQOnncI.mft (raw, json)
Hash identifier: 5Cp9N39bger2Vy3M48V2T4Vbgx4HRNbtOrfGTREYMxQ=
Subject key identifier: 42:81:11:66:7A:FC:2D:89:37:13:72:DF:9A:9F:FF:89:33:99:B0:F1
Authority key identifier: 72:D7:42:61:6A:68:04:1F:7F:0F:CD:07:92:F3:8E:41:03:A7:9D:C2
Certificate issuer: /CN=72d742616a68041f7f0fcd0792f38e4103a79dc2
Certificate serial: 0196BA11CD1DE3E139B2AE9E4C0397E0B1C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ctdCYWpoBB9_D80HkvOOQQOnncI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
Manifest number: 0205
Signing time: Sat 10 May 2025 12:00:50 +0000
Manifest this update: Sat 10 May 2025 12:00:50 +0000
Manifest next update: Sun 11 May 2025 12:00:50 +0000
Files and hashes: 1: ctdCYWpoBB9_D80HkvOOQQOnncI.crl (hash: 8kSwF/g2/OUupT4cCSrAGXY+ZXoWKZD9Jxgo5P767I4=)
2: zto4NeQB1_I3QORAJXQ-oNO5db0.roa (hash: 4X/MAtxcgqfp8hiwe6Iai+qfAWiiXuU0LC7+GPHFtZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ctdCYWpoBB9_D80HkvOOQQOnncI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 12:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:11:cd:1d:e3:e1:39:b2:ae:9e:4c:03:97:e0:b1:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72d742616a68041f7f0fcd0792f38e4103a79dc2
Validity
Not Before: May 10 12:00:50 2025 GMT
Not After : May 11 12:00:50 2025 GMT
Subject: CN=428111667afc2d89371372df9a9fff893399b0f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:43:57:24:b8:50:c9:8c:08:62:1b:3e:6a:0d:
9a:13:3b:2c:11:57:54:d6:88:31:6d:5b:54:41:1d:
5b:75:0d:56:46:5b:a2:b2:21:54:fe:35:fe:7d:9d:
7d:b3:c2:17:84:d5:fc:25:43:80:35:cb:bb:ec:1d:
25:3e:d7:e1:d9:88:7c:5a:05:af:51:ef:98:67:f5:
eb:0c:e0:85:e3:4f:0e:a3:79:f0:68:4b:22:2e:92:
1a:3f:f4:1f:5f:9e:65:81:83:31:d1:d0:e2:c2:7b:
e7:0e:9e:a8:fe:cb:90:eb:2c:76:df:38:94:b3:02:
49:00:d5:91:94:e1:d7:64:78:0a:b0:c6:af:33:83:
37:3f:f0:d9:a2:70:93:27:87:e6:dc:92:fa:ec:ee:
f3:ac:21:7b:55:1d:38:bf:70:cc:20:f6:7a:c6:62:
94:71:b7:b4:6d:58:6b:0f:f5:76:76:6f:18:f9:32:
f1:1a:11:cf:07:63:02:ec:37:af:ee:57:ef:72:ce:
14:bc:dc:76:48:81:cc:38:71:f3:e0:b7:a5:c8:0c:
68:d2:de:40:ef:ff:31:8e:8c:83:33:52:b9:5f:a7:
23:2d:f8:a9:5c:97:9e:09:ee:f9:43:ba:f8:eb:75:
3f:3a:5f:98:46:b8:7f:1e:71:df:12:20:05:8a:62:
a6:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:81:11:66:7A:FC:2D:89:37:13:72:DF:9A:9F:FF:89:33:99:B0:F1
X509v3 Authority Key Identifier:
keyid:72:D7:42:61:6A:68:04:1F:7F:0F:CD:07:92:F3:8E:41:03:A7:9D:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ctdCYWpoBB9_D80HkvOOQQOnncI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:7a:33:5e:70:94:fd:49:e7:4c:61:87:dc:b4:98:10:f2:07:
d2:03:1a:a2:57:92:36:87:52:27:dd:81:4e:40:4c:a2:fe:86:
75:1e:81:99:6d:eb:5e:6f:65:9a:6f:b7:dd:f9:4c:7b:a2:6b:
4f:5c:2d:10:5c:19:ce:3c:d2:31:be:83:8a:30:3b:24:1e:22:
e3:7f:79:28:38:f8:23:9e:4f:c0:df:64:d0:78:07:13:ba:c1:
8c:19:e6:5b:2f:78:89:8b:da:98:e5:22:ee:55:fe:3b:24:bc:
de:34:44:7a:95:54:35:65:f7:55:a6:10:5e:db:40:a2:58:05:
5d:cd:7a:c6:d7:33:19:54:d7:29:57:7e:08:1b:f0:18:93:8d:
2e:d0:fb:7e:78:24:82:4f:33:3c:30:6a:22:11:59:cc:0f:6d:
0e:65:c0:a3:4e:07:f0:4e:03:f1:4f:30:6f:87:b3:bd:1a:aa:
b5:fb:f4:51:22:51:3b:7a:5c:f0:02:05:6c:e4:64:70:03:c6:
93:8c:8b:9f:2e:08:f1:8a:06:46:6c:85:86:7c:28:6d:88:26:
5b:a1:fb:db:70:a6:86:fe:93:82:39:c8:17:ef:ff:17:3e:f5:
5b:51:1d:62:07:45:d6:ad:f6:98:66:c0:a0:d7:66:7d:87:2d:
fc:3f:26:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 19:58:54 2025 by rpki-client