Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
File: fKWYMippkFpcbgKVoMoftVZmwUs.mft (raw, json)
Hash identifier: ttolrxs7B8kvz3F4nsgfQ6b8y4+rHkO7oz2JuYmXmkw=
Subject key identifier: CB:96:5E:44:E1:21:F5:FC:0E:79:F0:FB:A8:14:5D:5D:1D:C8:7E:3C
Authority key identifier: 7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
Certificate issuer: /CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Certificate serial: 0196A0898F0E8AC8767E7BE44AD262369182
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
Manifest number: 04C9
Signing time: Mon 05 May 2025 13:01:31 +0000
Manifest this update: Mon 05 May 2025 13:01:31 +0000
Manifest next update: Tue 06 May 2025 13:01:31 +0000
Files and hashes: 1: fKWYMippkFpcbgKVoMoftVZmwUs.crl (hash: nt3TdBQyty30W/v9pX7O8w89JU3gm/x+vw/KtkPx1wQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:89:8f:0e:8a:c8:76:7e:7b:e4:4a:d2:62:36:91:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca598322a69905a5c6e0295a0ca1fb55666c14b
Validity
Not Before: May 5 13:01:31 2025 GMT
Not After : May 6 13:01:31 2025 GMT
Subject: CN=cb965e44e121f5fc0e79f0fba8145d5d1dc87e3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e8:c1:34:51:0b:17:f0:ae:bb:c0:a1:54:48:
c8:c3:6c:2d:e4:d1:5a:4c:3c:61:0b:a2:40:ee:37:
61:7c:9b:aa:0a:ce:9e:81:e7:8f:2a:53:73:6e:df:
09:24:3a:c8:fd:2b:f3:dd:aa:b0:42:91:8a:b5:fb:
a8:3a:35:4c:4b:bb:29:05:c2:d7:31:7c:ff:c3:c3:
c6:b9:8c:16:ef:79:d2:36:f7:cf:5a:41:c3:81:c1:
50:9a:03:b7:0b:3b:a4:bf:3f:ab:35:d1:68:6c:79:
7d:ca:a2:30:12:d2:65:0c:74:a7:c2:15:28:ce:43:
81:c4:a2:17:11:75:97:f3:04:c5:03:88:28:d0:0e:
7c:4b:f5:a3:fd:19:5b:3e:d4:40:70:89:5d:b0:b4:
12:a0:33:32:9a:fe:04:05:d8:83:33:96:dd:e5:11:
1e:c0:e6:3d:8a:f9:1c:03:bf:20:ea:86:db:9d:32:
f6:68:ff:0e:d0:a3:0e:81:dc:65:35:85:8e:99:d4:
df:6a:b1:32:33:39:0c:4b:26:a1:18:3f:b0:93:ce:
e3:ec:ea:eb:0f:05:ce:28:c0:52:31:45:29:09:69:
53:c4:43:15:da:f8:40:10:2b:fe:98:10:b1:a9:10:
c5:ed:64:1a:30:54:b7:6f:b5:ef:6c:1a:f3:96:62:
23:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:96:5E:44:E1:21:F5:FC:0E:79:F0:FB:A8:14:5D:5D:1D:C8:7E:3C
X509v3 Authority Key Identifier:
keyid:7C:A5:98:32:2A:69:90:5A:5C:6E:02:95:A0:CA:1F:B5:56:66:C1:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKWYMippkFpcbgKVoMoftVZmwUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/da66c0-b9f8-4094-a935-580d876885a1/1/fKWYMippkFpcbgKVoMoftVZmwUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:51:83:35:5e:f4:a3:c9:28:a3:3e:2b:ba:6e:3a:31:b1:05:
0b:9a:80:13:f8:6c:b2:be:54:f9:e9:7d:f5:f8:05:4d:7b:49:
7d:bb:bd:eb:48:21:68:25:ec:ea:d1:66:30:e7:55:6c:4a:91:
65:60:d6:c8:ab:ea:aa:ef:f6:45:f1:f3:3b:7e:4d:78:ae:de:
b4:a1:95:e7:ac:8d:ca:41:46:a8:d0:a6:ef:d2:30:8c:b7:23:
a4:05:bc:00:3d:29:7a:dc:87:5b:b5:73:95:65:cd:9e:44:a7:
5c:1d:8a:da:cb:26:f3:fc:8d:df:43:72:d6:25:27:48:e3:a4:
61:6b:53:f6:34:86:4d:d6:d6:0d:10:e8:f2:dc:01:24:ba:fa:
c0:4e:f3:ff:52:e1:ed:64:d1:c3:b8:3d:dc:42:37:d4:95:c6:
5c:b1:15:90:e6:68:0c:50:e3:34:fb:2f:11:61:36:48:7c:61:
46:4a:8c:ae:55:3a:67:c8:33:90:fa:29:da:11:1e:59:62:26:
cc:ce:d4:1c:70:b6:17:2d:31:dc:b2:78:71:24:fc:ba:ae:85:
98:69:e1:32:9e:cd:bb:61:81:44:c8:64:81:12:da:6b:cd:6c:
da:4d:e3:b8:4b:05:78:c5:8b:ac:8f:fd:93:aa:3d:73:6a:fb:
3a:dd:2e:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 15:04:28 2025 by rpki-client