Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
File: SujQiQnRha9B0KDDvl6ijDUvAiY.mft (raw, json)
Hash identifier: sYV2xPfrhQi8sB2X2o+0OpaYmQ+Dp6qDjKf1UFW4hRw=
Subject key identifier: 50:85:1A:7C:51:44:1A:C5:AF:14:1C:37:43:6A:2E:45:F5:2F:2C:D8
Authority key identifier: 4A:E8:D0:89:09:D1:85:AF:41:D0:A0:C3:BE:5E:A2:8C:35:2F:02:26
Certificate issuer: /CN=4ae8d08909d185af41d0a0c3be5ea28c352f0226
Certificate serial: 01978B1114C8F2D679DAD5B544311F130A91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SujQiQnRha9B0KDDvl6ijDUvAiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
Manifest number: 141D
Signing time: Fri 20 Jun 2025 02:00:41 +0000
Manifest this update: Fri 20 Jun 2025 02:00:41 +0000
Manifest next update: Sat 21 Jun 2025 02:00:41 +0000
Files and hashes: 1: SujQiQnRha9B0KDDvl6ijDUvAiY.crl (hash: BeM9byt/d/zN6DbrDtD1qoTZcCldsTRYsUv2J0xBU5M=)
2: nP21AC5prEFloL4b-rvpds4zVIk.roa (hash: uwmza4+iHSYo9L5fLNkaMpr9S0IJA2DNF48xVtFHmFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/SujQiQnRha9B0KDDvl6ijDUvAiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Jun 2025 00:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:8b:11:14:c8:f2:d6:79:da:d5:b5:44:31:1f:13:0a:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ae8d08909d185af41d0a0c3be5ea28c352f0226
Validity
Not Before: Jun 20 02:00:41 2025 GMT
Not After : Jun 21 02:00:41 2025 GMT
Subject: CN=50851a7c51441ac5af141c37436a2e45f52f2cd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:54:f6:43:98:af:f4:d6:da:51:19:3e:9d:21:
90:11:c3:5b:23:aa:b3:7a:3a:61:01:33:b7:97:6a:
a5:0c:4d:7e:f5:c8:d5:2f:4e:fd:d3:94:8d:84:06:
df:0f:ba:a9:96:4b:b7:e8:c5:a6:04:7a:0f:32:c8:
5b:85:bc:2c:54:87:a3:af:24:10:6f:cc:f2:9f:b8:
88:27:60:12:b5:05:70:7e:71:95:1e:74:d5:9e:43:
6f:f7:c7:dd:82:2a:8b:73:92:75:53:09:22:1f:73:
10:a3:4e:3b:9d:27:af:35:01:3f:78:e1:be:9b:fc:
7a:8f:e6:da:85:9e:8a:0a:45:03:e5:b9:57:c6:4d:
fe:46:8d:ef:ac:18:e5:ae:46:57:e4:59:02:80:f0:
04:35:24:e0:6d:53:ba:48:e1:19:8a:82:4d:ea:ec:
6e:18:67:0d:1d:c1:ef:17:df:fc:dd:ee:66:81:da:
4e:b0:e0:ba:13:fa:d5:65:b1:61:98:13:53:cd:65:
bc:da:14:cb:9a:a9:49:09:df:25:a2:b6:3e:6b:a2:
9d:be:cb:38:1b:d8:31:e4:e5:29:ff:19:2a:4c:1c:
f0:d2:63:e9:37:36:0f:80:e3:93:48:60:4a:64:49:
57:61:04:7c:bd:b7:ee:7c:21:d8:f0:47:f4:80:0c:
d4:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:85:1A:7C:51:44:1A:C5:AF:14:1C:37:43:6A:2E:45:F5:2F:2C:D8
X509v3 Authority Key Identifier:
keyid:4A:E8:D0:89:09:D1:85:AF:41:D0:A0:C3:BE:5E:A2:8C:35:2F:02:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SujQiQnRha9B0KDDvl6ijDUvAiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:99:ce:40:87:95:95:9b:63:4b:97:4d:72:b5:15:61:92:db:
9b:d6:54:24:ee:d4:0a:02:a8:d1:5e:a0:ee:5c:56:a4:c1:42:
88:04:a1:6f:62:f1:37:46:d6:7d:e9:94:91:18:d6:29:29:d0:
92:8a:44:03:9b:93:44:e1:3e:46:63:67:02:0a:ce:ac:a4:d0:
48:da:43:f6:23:9a:80:05:3a:aa:a1:f1:d2:6a:0f:c8:8c:bc:
67:58:c1:a8:88:25:94:b1:9e:0d:72:a1:c9:8d:28:60:7a:bb:
a3:f3:a1:97:0a:31:e3:13:64:2e:b7:83:33:85:87:0f:66:71:
82:e4:e9:b1:f1:a5:e4:e1:95:3c:a0:74:40:a7:f4:06:ec:b8:
77:82:c9:2f:af:04:d4:24:03:98:ee:f0:8c:02:e4:4b:52:5f:
11:c7:e3:b7:0f:ba:be:e1:0b:8d:b4:f6:9f:1b:13:42:2c:d7:
85:34:9a:c9:0b:b7:03:2f:62:ce:09:bc:7a:88:0a:e6:17:34:
3b:f8:a9:4c:12:4f:3b:33:3d:fe:1e:6d:3f:ef:c5:3f:96:39:
50:f3:f5:05:18:21:86:49:c0:24:5e:6b:e2:e6:9b:0d:09:ac:
7f:13:9c:29:1c:fb:1b:a4:01:83:2a:0e:fd:b8:df:32:fb:1b:
09:da:56:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 20 07:13:39 2025 by rpki-client