Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
File: AFA0jPYGQvVOyQck3niqoD3NOOE.mft (raw, json)
Hash identifier: tTEWi+Ea3ov2zgYcQRxixs7K2X7czvxAdrkCVWrcRSM=
Subject key identifier: 43:A5:3C:29:CB:2B:9E:87:F0:BB:69:99:20:42:61:4A:12:05:E3:D8
Authority key identifier: 00:50:34:8C:F6:06:42:F5:4E:C9:07:24:DE:78:AA:A0:3D:CD:38:E1
Certificate issuer: /CN=0050348cf60642f54ec90724de78aaa03dcd38e1
Certificate serial: 0196B9A3AC6043EDDC5FC874D1E44A250C21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
Manifest number: 0CDD
Signing time: Sat 10 May 2025 10:00:33 +0000
Manifest this update: Sat 10 May 2025 10:00:33 +0000
Manifest next update: Sun 11 May 2025 10:00:33 +0000
Files and hashes: 1: AFA0jPYGQvVOyQck3niqoD3NOOE.crl (hash: AeKWGIl1kFH6o4N99vNgZRI337itzjKnbTx9MGia3aE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 10:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b9:a3:ac:60:43:ed:dc:5f:c8:74:d1:e4:4a:25:0c:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0050348cf60642f54ec90724de78aaa03dcd38e1
Validity
Not Before: May 10 10:00:33 2025 GMT
Not After : May 11 10:00:33 2025 GMT
Subject: CN=43a53c29cb2b9e87f0bb69992042614a1205e3d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:30:a0:9b:84:71:88:e3:56:e8:3f:30:ac:72:
5c:91:20:83:3c:d0:7c:a0:c7:b6:e6:21:c4:f1:f6:
58:e4:52:98:31:4d:1e:c6:bc:4f:c8:0c:6e:1c:8f:
18:a8:aa:6a:66:d5:a8:74:52:ca:22:36:cb:14:9b:
a7:4d:9c:73:80:2a:20:d8:f6:52:73:e7:e3:4c:be:
37:ee:2e:14:25:86:c4:f9:bb:eb:19:06:4c:12:fd:
61:ed:54:a5:d0:6b:33:53:11:e0:20:7f:8c:06:ae:
52:1b:77:f8:c4:5d:ee:b1:59:9f:03:9c:46:2c:89:
ed:6a:bc:9b:e5:5c:ce:c3:3a:a4:1d:c6:1c:64:77:
28:99:e5:b9:58:28:9a:1f:b1:a7:fd:98:bc:fb:74:
ca:34:fc:9c:5b:68:55:16:09:03:af:55:dc:f7:ed:
94:bf:98:5e:26:e1:aa:9b:62:82:8a:1f:b5:36:e8:
30:20:a4:f6:84:9b:0f:d6:8b:af:e9:c4:3c:c2:fc:
19:36:fc:ff:2c:a5:e9:83:c0:5e:6f:b4:39:32:e2:
fa:f5:50:bd:35:d7:a3:ee:b6:0a:35:b3:5e:49:2e:
ec:42:57:47:0f:a9:11:df:18:bf:7c:99:ca:8e:6c:
2e:6a:17:04:50:5d:d4:e5:55:4c:b1:2c:f3:2c:df:
d7:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:A5:3C:29:CB:2B:9E:87:F0:BB:69:99:20:42:61:4A:12:05:E3:D8
X509v3 Authority Key Identifier:
keyid:00:50:34:8C:F6:06:42:F5:4E:C9:07:24:DE:78:AA:A0:3D:CD:38:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AFA0jPYGQvVOyQck3niqoD3NOOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/f124b2-474e-45a0-b73a-e54b06a93526/1/AFA0jPYGQvVOyQck3niqoD3NOOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:55:a8:7a:27:b9:90:37:a8:6e:4f:1d:9b:80:86:db:b8:6a:
cc:6e:41:cb:b4:e2:fb:94:7e:10:80:27:15:e9:3d:50:40:e9:
3c:4c:5b:d4:73:3d:fe:54:29:01:db:c3:eb:04:04:c8:e6:40:
de:19:1f:b8:3c:9d:f4:27:3e:60:0a:8a:5d:56:30:4d:55:0c:
ca:26:66:6c:c8:d9:61:21:76:0f:1c:e8:fc:b5:59:a6:61:f7:
5d:13:56:e3:e7:d7:20:f2:5d:e5:b1:65:14:1a:22:d1:a2:c5:
41:4d:dc:0d:48:6a:fe:c6:9d:a0:d6:6c:f9:fa:c0:ed:2a:7d:
50:3b:78:22:bb:41:7a:ee:36:cd:db:09:cb:88:4b:bb:b2:9e:
5c:cc:a1:02:07:53:73:03:86:e0:41:56:05:4b:70:64:f5:bf:
a5:7a:39:64:e5:23:25:6e:53:42:24:a4:0e:8d:d8:a7:b6:59:
1a:c3:c2:ac:a8:55:a5:99:d8:5a:e5:bc:8e:f2:bc:75:86:5e:
0a:ce:d6:84:3f:64:85:78:af:bd:e7:78:c2:06:f6:22:4c:5e:
4c:fc:3a:a8:41:aa:26:09:67:c3:31:e8:de:0e:d3:c7:12:07:
00:1e:40:2c:97:fe:77:b9:b2:c5:6b:dc:1b:5c:35:aa:22:2f:
0c:d0:07:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 19:46:52 2025 by rpki-client