Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft
File: sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft (raw, json)
Hash identifier: LpQunmFyY1+6fPjn5fP1R6AT3uAJRKOOt3BsYObk5p8=
Subject key identifier: CD:5E:A5:20:F2:F1:74:54:21:5E:2B:2D:31:48:F7:E5:7B:E4:64:E6
Authority key identifier: B2:4D:58:8D:F2:0B:32:DB:97:87:D7:78:64:39:4C:D7:A6:6D:40:30
Certificate issuer: /CN=b24d588df20b32db9787d77864394cd7a66d4030
Certificate serial: 0196778C988419ACBA9F56776C2B5425F042
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sk1YjfILMtuXh9d4ZDlM16ZtQDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft
Manifest number: 13F4
Signing time: Sun 27 Apr 2025 14:00:24 +0000
Manifest this update: Sun 27 Apr 2025 14:00:24 +0000
Manifest next update: Mon 28 Apr 2025 14:00:24 +0000
Files and hashes: 1: YAynT2rFqTF7GPjWR_vJKmQMToY.roa (hash: Nj9HjgClC5YboiO8+CeqUE2/z4iqwPpiEtBTjxVCiAo=)
2: sk1YjfILMtuXh9d4ZDlM16ZtQDA.crl (hash: l1YwHIZO+2UQjbA2UgYFyafEOs9mfcyDxDoJX4/+0Xs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft
rsync://rpki.ripe.net/repository/DEFAULT/sk1YjfILMtuXh9d4ZDlM16ZtQDA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:8c:98:84:19:ac:ba:9f:56:77:6c:2b:54:25:f0:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b24d588df20b32db9787d77864394cd7a66d4030
Validity
Not Before: Apr 27 14:00:24 2025 GMT
Not After : Apr 28 14:00:24 2025 GMT
Subject: CN=cd5ea520f2f17454215e2b2d3148f7e57be464e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:01:2e:2d:15:3b:ee:c5:ad:d7:25:bd:3f:7f:
65:2c:d1:8d:c0:76:69:99:a1:5d:9d:5b:8a:6d:db:
69:46:56:0d:70:91:f5:15:98:ad:02:40:78:0e:d3:
7c:e2:75:f9:11:f4:c3:0c:ad:80:6e:26:76:be:36:
9d:be:03:06:82:b9:fc:10:68:56:76:82:de:06:88:
0e:10:f3:58:0c:c6:db:74:e1:15:ac:7a:af:cd:7f:
a5:3b:26:b2:df:72:97:42:44:a5:26:f9:87:93:b2:
58:bc:d7:80:50:91:4b:45:9b:0a:b7:f0:f1:66:4c:
55:12:f6:cb:17:9b:80:5f:e2:46:3a:14:b3:24:63:
f0:8c:3a:a2:2d:92:ab:45:74:c3:08:6a:13:a9:da:
e9:79:46:07:b5:f2:45:13:59:cd:58:d0:99:f6:de:
db:73:7f:17:c7:78:f6:48:c9:57:8e:76:26:60:64:
b3:da:e8:9c:ec:0e:ae:88:32:36:da:c0:06:29:7a:
e5:ae:1e:9b:a8:e6:06:2d:a3:97:4f:1a:00:a8:05:
81:bf:bd:1f:cc:36:6b:4a:8e:05:66:f7:b2:4b:89:
80:7e:9e:90:d9:ac:da:73:ae:47:9e:f8:48:9d:3a:
c4:67:5a:5a:8e:62:90:d9:93:4a:64:c1:03:de:31:
ef:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:5E:A5:20:F2:F1:74:54:21:5E:2B:2D:31:48:F7:E5:7B:E4:64:E6
X509v3 Authority Key Identifier:
keyid:B2:4D:58:8D:F2:0B:32:DB:97:87:D7:78:64:39:4C:D7:A6:6D:40:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sk1YjfILMtuXh9d4ZDlM16ZtQDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:af:02:bc:29:2b:98:28:47:79:f5:24:3c:b2:b3:8f:d9:2b:
99:58:f7:cd:02:ef:19:04:7c:b8:b8:5e:cd:52:40:4b:a6:cd:
f8:27:35:7c:83:77:d2:1a:9a:53:34:3f:32:c6:cb:43:d6:dd:
1b:73:5e:ef:c3:af:e8:a6:79:56:82:48:1e:dd:0c:23:12:68:
72:d3:d1:eb:0a:65:e3:c5:47:31:3b:ea:7c:17:ff:a4:f0:ce:
aa:a3:b1:80:e3:51:5d:03:a1:5e:60:8f:42:b3:a7:dd:b5:88:
5b:c8:22:fb:9a:69:66:45:ce:e8:fe:db:e6:eb:25:cb:a5:bd:
91:0a:ee:64:52:82:91:8a:ee:e7:1d:d9:a6:76:f7:5e:ab:8d:
b1:e7:95:cb:85:c9:23:33:d0:00:67:0b:b0:53:e2:62:aa:49:
89:48:39:63:80:c0:23:ae:c3:68:0e:07:98:88:84:85:50:ee:
53:91:66:ab:b5:05:2b:86:c8:0b:1d:18:f1:33:5d:b2:a8:96:
b9:96:8e:71:30:68:fb:33:c3:e1:a8:29:98:ae:43:4b:1a:9f:
6f:53:64:f7:68:35:8b:58:8c:e3:79:2b:4b:4c:cb:c2:ac:8a:
5a:9a:3c:b0:e8:ef:07:4b:43:b9:4a:93:4f:bd:6e:7f:a7:e4:
51:af:19:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:08:45 2025 by rpki-client