Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
File: 1gTknpKDBavLjzLe8_78A-u83kQ.mft (raw, json)
Hash identifier: YjbqSo2MiNwq8PAOQFhZVpek4IqdfQPXweNYNHoVpJo=
Subject key identifier: 0E:66:00:0F:3A:36:07:0A:FA:BF:78:BA:3B:E3:B4:D3:60:98:A3:15
Authority key identifier: D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
Certificate issuer: /CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Certificate serial: 019675D51ADF98BB749AE8417691745E0A2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
Manifest number: 14A2
Signing time: Sun 27 Apr 2025 06:00:22 +0000
Manifest this update: Sun 27 Apr 2025 06:00:22 +0000
Manifest next update: Mon 28 Apr 2025 06:00:22 +0000
Files and hashes: 1: 1gTknpKDBavLjzLe8_78A-u83kQ.crl (hash: MEjcdcfUphfsFsKnBLsCyRadNR7cKjEvdfUXTRohm7w=)
2: pucl_qoNJsFNHYReBDscEGdx2N0.roa (hash: SiJfUuqs3fjKSI6Mo6WtKDUOtA0gOnKfbqvupwDeWPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:d5:1a:df:98:bb:74:9a:e8:41:76:91:74:5e:0a:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Validity
Not Before: Apr 27 06:00:22 2025 GMT
Not After : Apr 28 06:00:22 2025 GMT
Subject: CN=0e66000f3a36070afabf78ba3be3b4d36098a315
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:79:a0:96:b7:7e:c9:79:9b:6a:1a:1b:5f:1a:
ff:8c:07:b6:5d:3c:c3:1a:44:07:94:da:90:09:f1:
1f:fe:d5:aa:18:ed:f4:91:53:84:1e:1f:ae:93:f1:
23:24:ea:22:48:c9:cf:99:11:c9:ed:34:80:15:b3:
d7:05:30:fa:78:dd:10:8d:a8:c6:f0:2c:b2:1c:70:
1a:61:05:12:7d:18:98:06:d3:9b:55:ad:e7:2a:af:
1e:c9:b0:7f:47:20:35:94:ad:6f:a3:ef:be:c7:72:
c5:48:b5:6e:e5:f7:1d:31:dd:1e:b1:d5:65:94:b1:
33:0c:33:7c:3e:c0:0c:6e:5a:db:28:38:34:b7:29:
52:12:83:d1:70:1f:1c:f2:eb:ee:59:f3:b4:8e:d8:
cb:bc:de:88:aa:94:57:11:22:27:67:49:67:18:a6:
a2:8a:ce:2b:47:05:47:da:32:7f:96:e3:76:2b:86:
aa:d6:a0:d0:fb:bd:80:e6:79:9a:c2:ec:f8:d8:11:
73:6e:a6:71:0f:40:24:80:a1:88:32:dc:fa:60:72:
8f:d2:4f:1a:49:f1:00:95:2a:b8:d9:3e:cb:b5:0c:
e3:9f:c9:45:87:1a:e1:57:18:02:ac:5d:a3:79:df:
e7:37:35:50:44:3a:55:38:e5:33:4e:cb:61:bc:67:
8b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:66:00:0F:3A:36:07:0A:FA:BF:78:BA:3B:E3:B4:D3:60:98:A3:15
X509v3 Authority Key Identifier:
keyid:D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:27:b0:de:7d:52:fd:2b:b8:49:11:e0:f2:90:31:f4:a6:83:
38:61:8c:91:3a:11:32:0e:b0:4f:f4:a8:5e:01:0d:02:46:65:
35:90:b3:7e:7a:b8:d5:67:84:5e:cc:05:3d:bb:ad:b6:65:d1:
94:f0:e8:99:62:66:26:fe:d8:b7:43:19:fe:41:0a:f8:aa:59:
e1:c0:e3:73:b8:f0:23:bf:7f:16:9f:22:9e:82:5a:43:eb:8c:
13:b4:19:1c:ca:a5:b7:b7:cb:a7:e5:3d:f4:ca:f0:d2:2d:91:
38:20:47:fb:0d:10:8f:3b:dd:8e:41:4f:f0:34:5a:fc:24:c2:
41:3d:55:33:53:e1:89:bb:f1:79:2b:e8:e4:a4:b8:a4:30:b6:
2a:a7:9f:7f:8e:b6:39:a6:68:ce:3e:bc:47:59:d1:9d:62:51:
39:be:a2:48:49:57:87:6a:ba:11:83:b3:15:3e:ff:2e:bc:3c:
87:54:89:d6:0f:9b:35:40:45:ea:b3:c0:51:57:b9:06:7b:34:
1a:ca:92:a3:ed:6d:2a:ab:25:0d:41:cf:6e:a9:d6:eb:3d:14:
ab:80:f9:f6:8f:42:cb:8c:be:78:8e:ef:1a:41:af:70:f5:b5:
42:60:9b:48:e5:cd:9c:ab:58:70:6d:93:0a:cc:da:ef:ed:80:
04:8e:17:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:10:12 2025 by rpki-client