Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
File: 1GL5scD2-pylMXZOJtOu0hG_7YE.mft (raw, json)
Hash identifier: 4owyPODbjBp5YSozMP6+8SdRukxOD3aZgmO17zM5NQs=
Subject key identifier: D4:46:15:A9:A3:48:8C:42:EC:27:B5:B5:0D:5B:3F:40:57:09:21:68
Authority key identifier: D4:62:F9:B1:C0:F6:FA:9C:A5:31:76:4E:26:D3:AE:D2:11:BF:ED:81
Certificate issuer: /CN=d462f9b1c0f6fa9ca531764e26d3aed211bfed81
Certificate serial: 0196BCA4731DDDA842E072E50E19A46DB9A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
Manifest number: 0B52
Signing time: Sun 11 May 2025 00:00:16 +0000
Manifest this update: Sun 11 May 2025 00:00:16 +0000
Manifest next update: Mon 12 May 2025 00:00:16 +0000
Files and hashes: 1: 1GL5scD2-pylMXZOJtOu0hG_7YE.crl (hash: 8T4ObaC1uI7IHVooX6cJi0RNoimN4j4mhQ+VIS4UQLQ=)
2: CzS60ntrl-ifakYiPMHnNys_2hg.roa (hash: gJEVLSYuR5fsAEatKrGL8Os1DpygWBOtVxsvnHWW9x0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:a4:73:1d:dd:a8:42:e0:72:e5:0e:19:a4:6d:b9:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d462f9b1c0f6fa9ca531764e26d3aed211bfed81
Validity
Not Before: May 11 00:00:16 2025 GMT
Not After : May 12 00:00:16 2025 GMT
Subject: CN=d44615a9a3488c42ec27b5b50d5b3f4057092168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:27:e1:4c:ff:85:40:5c:73:0f:91:88:9d:b7:
11:c9:ed:dc:bc:c1:31:be:11:a0:09:79:4a:01:e7:
1b:48:3f:b6:f2:a0:17:9b:f1:8e:b6:80:7c:90:fb:
0b:fb:ae:11:4b:9c:fa:6a:6e:4e:dd:df:e4:3c:c1:
f7:17:fd:ef:27:29:b1:75:80:11:78:bd:11:30:01:
84:70:c1:94:4b:b3:3a:a1:aa:30:3a:5b:36:d3:4b:
a5:7e:6a:58:69:07:0f:72:aa:95:63:7f:35:b8:49:
62:aa:b2:8a:90:de:27:da:fd:fd:80:11:3e:d9:50:
b4:b2:28:4d:8a:ed:0b:61:e6:15:ba:75:a2:9f:1a:
40:fd:25:b7:ff:be:f4:32:e7:47:0c:f9:df:13:ba:
6b:f8:0c:18:25:9e:b7:fe:e3:c7:81:80:54:ac:06:
d0:30:59:bc:d0:fe:c9:90:4e:b4:b0:4f:d7:a1:3d:
8f:59:f3:d2:f3:c7:36:ff:3c:78:16:80:fb:04:02:
96:26:c1:f7:41:c7:df:8c:74:38:bd:93:59:e6:ec:
07:52:6d:e8:36:74:62:80:b3:6f:16:9c:64:b1:8a:
35:64:ca:9a:6a:0c:5e:ba:22:f2:6c:2a:b2:e5:05:
52:80:7a:42:8f:0a:a0:cc:12:08:bd:c9:7e:a7:32:
a3:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:46:15:A9:A3:48:8C:42:EC:27:B5:B5:0D:5B:3F:40:57:09:21:68
X509v3 Authority Key Identifier:
keyid:D4:62:F9:B1:C0:F6:FA:9C:A5:31:76:4E:26:D3:AE:D2:11:BF:ED:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:3e:cc:da:0e:5b:e5:72:f9:c3:67:22:50:37:5d:f5:f4:14:
2b:34:c9:b3:4f:89:ba:64:4a:88:7a:24:1a:ec:4e:ee:8e:db:
12:96:fd:cc:ed:59:d7:52:2b:33:37:16:c1:e3:f1:be:66:15:
ca:ed:f5:e9:b4:8e:f5:00:f7:58:75:6b:7e:cc:fe:2c:04:0a:
1f:15:e8:3f:ac:b3:65:2f:aa:f4:ce:b6:8f:e2:95:cf:2c:52:
54:2f:5f:7a:ea:d5:70:46:fa:b7:86:6b:05:e1:50:b8:2e:82:
5f:aa:6b:05:29:35:c1:b3:cf:3c:c8:a8:64:1d:c1:8c:41:17:
c1:b9:eb:c7:f9:9f:33:6f:7c:a4:88:a8:41:9d:ef:2d:68:e2:
62:2e:48:66:a7:eb:7a:22:17:c8:17:14:dd:ac:75:34:2a:58:
23:67:9b:87:db:de:19:da:b5:99:02:37:23:67:75:56:cf:0f:
7a:53:d5:39:c1:f7:7c:c8:87:7e:fc:31:a4:b6:ad:db:46:14:
3b:ec:0a:09:21:e1:7b:d9:e5:c0:74:d4:df:fb:a8:ee:e3:58:
43:95:06:cc:06:ec:af:b7:8a:9e:e4:f1:76:f1:4a:81:5d:97:
8a:03:a0:70:33:99:42:9e:9b:71:0a:e9:91:02:cb:a6:3b:f3:
28:b4:81:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 02:32:37 2025 by rpki-client