Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.mft
File: 1P97rGRNWVZyLl4YOiL7FFXnVUY.mft (raw, json)
Hash identifier: uKE0qcuANCehMZq5EtyQbhDeWAPOdLPBEdJzijS5q8s=
Subject key identifier: A0:5F:23:E3:F3:4C:DE:E8:EE:5D:45:AE:95:9E:9C:A2:72:6C:E0:85
Authority key identifier: D4:FF:7B:AC:64:4D:59:56:72:2E:5E:18:3A:22:FB:14:55:E7:55:46
Certificate issuer: /CN=d4ff7bac644d5956722e5e183a22fb1455e75546
Certificate serial: 019683FF513D476D9FBE50DA2EB91E00B43F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1P97rGRNWVZyLl4YOiL7FFXnVUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.mft
Manifest number: 01A2
Signing time: Wed 30 Apr 2025 00:01:09 +0000
Manifest this update: Wed 30 Apr 2025 00:01:09 +0000
Manifest next update: Thu 01 May 2025 00:01:09 +0000
Files and hashes: 1: 1P97rGRNWVZyLl4YOiL7FFXnVUY.crl (hash: igkHKNg3dat5NaLaWc0RCSxTJjY+vxN3eXFsKCgGqtE=)
2: BBrcZolorsy-tffprBkzb6kzxjw.roa (hash: LubTLYd6O/FVL7Y6tbf5xWEWtjZWCQG4GmiGhTzuDxo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1P97rGRNWVZyLl4YOiL7FFXnVUY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:ff:51:3d:47:6d:9f:be:50:da:2e:b9:1e:00:b4:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4ff7bac644d5956722e5e183a22fb1455e75546
Validity
Not Before: Apr 30 00:01:09 2025 GMT
Not After : May 1 00:01:09 2025 GMT
Subject: CN=a05f23e3f34cdee8ee5d45ae959e9ca2726ce085
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ec:b5:3e:56:e1:31:aa:8a:5c:6f:54:f1:e3:
a4:d0:a5:ef:45:3a:67:46:9e:fa:0f:eb:50:1f:64:
8a:3f:d8:8f:e3:c0:bf:aa:f4:f6:e0:76:99:5f:93:
0e:fe:d1:68:72:72:6e:d0:70:0c:de:b1:b2:c1:8b:
4b:43:58:20:c2:4f:46:80:f5:5c:0a:b8:d4:3a:69:
a0:dd:e9:9a:2b:ef:19:c5:58:8d:1d:39:11:78:df:
fd:75:12:f0:85:4f:9a:5e:2a:39:25:37:47:d3:7b:
f1:3d:00:d2:bc:25:72:e9:b3:fa:ab:30:e6:da:e1:
99:eb:ba:b0:4f:4c:3d:4f:55:e8:f5:a7:0a:05:92:
e7:e2:1e:a9:1c:81:d6:e2:c1:da:0b:16:02:51:03:
5b:02:ce:29:d4:72:80:c6:43:3d:b2:16:5e:03:8a:
71:cd:e0:5a:c1:cc:29:5c:a5:a0:0e:00:77:77:c1:
49:f9:23:26:79:29:3d:de:f5:ea:ed:b8:b8:63:31:
5f:4e:f8:5d:1a:1c:a6:31:73:68:8e:40:6f:d0:35:
de:ea:ab:4d:c3:3b:db:cc:e1:3e:06:c6:01:fc:9c:
ec:e7:aa:75:2b:ff:6f:55:0e:fd:3d:42:ab:ed:60:
1c:1f:24:b4:e7:c0:21:e1:6c:27:c0:c0:6d:69:9f:
d5:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:5F:23:E3:F3:4C:DE:E8:EE:5D:45:AE:95:9E:9C:A2:72:6C:E0:85
X509v3 Authority Key Identifier:
keyid:D4:FF:7B:AC:64:4D:59:56:72:2E:5E:18:3A:22:FB:14:55:E7:55:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1P97rGRNWVZyLl4YOiL7FFXnVUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:69:43:ac:ea:71:64:13:fe:79:65:41:87:13:e1:a5:a5:2b:
5c:ce:5d:1a:e1:0a:5c:a5:b0:1f:a8:04:81:7a:79:61:a0:2c:
12:14:fa:77:ed:69:5d:5b:4a:73:25:16:c4:95:50:76:58:3a:
b4:7d:f1:45:7b:74:eb:03:d5:52:87:a7:95:1b:a3:b1:03:bf:
58:21:ae:d3:1f:c2:f0:a7:b1:21:f6:f9:09:b6:f2:7f:e6:1e:
3f:11:9c:56:8a:08:4f:1a:de:39:e3:8b:1f:5b:76:6e:a2:0c:
c7:07:4e:9f:93:98:36:7b:29:d5:62:14:33:e6:64:7f:a6:de:
5e:13:47:10:b4:2e:ab:74:6f:d0:c1:fb:38:5f:87:18:00:b9:
2f:e2:e2:d8:4f:32:57:d0:03:bf:ba:99:47:e1:1e:96:92:45:
7f:a2:f5:b7:57:a2:87:24:e0:fc:e3:aa:65:2c:1e:4c:fb:1c:
c9:f3:81:f8:af:9b:c8:9f:6f:0b:79:18:4c:3a:09:10:bb:6b:
98:f1:74:18:89:6d:04:c5:db:8e:70:5f:32:01:58:2b:1c:7f:
17:f0:e3:e8:24:1d:1b:35:1e:62:e8:6b:1a:b3:fc:a1:22:a0:
66:e8:ca:45:00:66:b0:5b:02:eb:d7:da:ca:24:65:77:d9:86:
11:73:16:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 02:53:26 2025 by rpki-client