Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.mft
File: cKdpKcviHO3ZTAErpYuwtvEpci4.mft (raw, json)
Hash identifier: AVHDTg6dptOcFpVC/a0RC4QpETY71k2Bmy+XayyKQuc=
Subject key identifier: 63:A9:71:64:84:47:76:53:CF:E5:D3:22:0C:A5:F1:56:EF:99:5A:10
Authority key identifier: 70:A7:69:29:CB:E2:1C:ED:D9:4C:01:2B:A5:8B:B0:B6:F1:29:72:2E
Certificate issuer: /CN=70a76929cbe21cedd94c012ba58bb0b6f129722e
Certificate serial: 01969FE438258096F31B415D5BF92E57B095
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cKdpKcviHO3ZTAErpYuwtvEpci4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.mft
Manifest number: 1523
Signing time: Mon 05 May 2025 10:00:55 +0000
Manifest this update: Mon 05 May 2025 10:00:55 +0000
Manifest next update: Tue 06 May 2025 10:00:55 +0000
Files and hashes: 1: cKdpKcviHO3ZTAErpYuwtvEpci4.crl (hash: 4jeljh5ndtBG4cEZYOEtfGj1y2jZAKzXncQzya+Ppoc=)
2: inuScwE1S9lEULUDFOPt0YYBMRU.roa (hash: hvD+jjYBAY5jZaJA8u8QgEl8M7kubkCEj9ntL0iNAX4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cKdpKcviHO3ZTAErpYuwtvEpci4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:e4:38:25:80:96:f3:1b:41:5d:5b:f9:2e:57:b0:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70a76929cbe21cedd94c012ba58bb0b6f129722e
Validity
Not Before: May 5 10:00:55 2025 GMT
Not After : May 6 10:00:55 2025 GMT
Subject: CN=63a9716484477653cfe5d3220ca5f156ef995a10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:70:9d:a9:97:98:8c:51:60:55:35:3f:b4:95:
39:f7:3e:35:9c:36:5c:17:65:dd:75:95:d0:b0:d2:
ed:5c:73:2b:06:97:7c:ac:5a:56:ee:30:d0:f5:ad:
22:81:34:1d:12:1e:ae:5e:82:8d:99:48:52:40:c0:
49:21:77:5d:0e:90:65:a7:f1:e6:64:91:7f:83:15:
d7:57:b4:4e:b2:a2:35:c9:51:8e:3f:ac:fc:82:a8:
8b:f9:bb:a5:ce:80:29:3b:70:98:32:9f:85:d4:fc:
0c:54:2e:df:b6:e2:12:3d:d6:54:0d:be:a8:ec:c9:
eb:ae:cd:fb:73:f5:64:a9:f4:bf:2b:d4:34:01:8f:
a0:e2:d6:74:a6:af:ac:d7:6a:33:55:1c:ff:7a:c2:
d9:04:b1:91:42:d0:56:cf:f9:1f:6c:d8:d7:16:b0:
02:2b:20:e4:d2:13:af:ec:2c:f2:ef:87:b5:99:f2:
aa:10:34:5e:57:a7:dd:74:95:ca:3b:98:a2:ed:03:
50:c2:e1:fa:ca:77:04:2e:b3:2f:51:cc:2f:d8:1d:
ab:47:20:4c:54:87:5c:d7:e7:19:7d:e8:c5:c0:35:
55:76:3d:74:b9:e4:aa:23:d3:ca:fe:36:5b:c7:14:
e5:2f:3b:e6:03:ca:df:a1:5f:29:9f:03:46:c9:00:
98:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:A9:71:64:84:47:76:53:CF:E5:D3:22:0C:A5:F1:56:EF:99:5A:10
X509v3 Authority Key Identifier:
keyid:70:A7:69:29:CB:E2:1C:ED:D9:4C:01:2B:A5:8B:B0:B6:F1:29:72:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cKdpKcviHO3ZTAErpYuwtvEpci4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:5b:77:a7:0e:c0:98:55:cb:24:13:8b:01:25:b1:c4:f9:0b:
00:d5:c2:30:dc:5e:5d:66:02:5f:67:bf:5c:29:63:d4:41:77:
eb:35:7d:90:a2:48:f9:85:53:96:f4:37:ac:fb:4e:75:c1:20:
f3:80:47:45:15:d3:38:18:76:6a:d0:65:df:b6:d4:74:1c:b6:
2c:0f:11:3f:62:1e:89:4e:fa:7e:af:90:00:4a:df:4d:27:3e:
6c:c9:9a:32:a5:fe:0f:8a:3f:cd:6c:b6:8b:ca:25:80:ef:1f:
f3:bb:29:bb:a9:ae:f1:22:16:1c:34:d7:9e:d0:3b:2b:a4:72:
61:35:91:2a:44:08:c4:b8:88:16:ca:4c:f5:ec:ab:94:fd:3d:
5c:c4:25:76:27:16:1f:3a:a7:31:33:a7:39:97:cf:d2:a3:3d:
df:49:3d:83:ab:95:4b:50:51:ed:a7:66:9b:4f:6d:90:e4:c6:
db:85:da:08:b3:ff:93:ca:eb:d4:b4:b9:53:e4:e6:fc:4b:66:
f6:82:88:4d:33:18:a9:e3:07:fa:5f:2e:22:a1:58:9a:23:1e:
ce:cd:fe:da:32:50:f2:5f:99:5a:64:b5:1a:25:ef:98:73:42:
86:5f:31:0f:ed:7a:c7:ee:c6:b9:36:50:e9:02:db:94:b4:0f:
90:51:e8:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 19:40:33 2025 by rpki-client