Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
File: SujQiQnRha9B0KDDvl6ijDUvAiY.mft (raw, json)
Hash identifier: jgHnk2V3R9qcs3AiOwKj00oFcx1KQQYKOnlHL2kVjt4=
Subject key identifier: 8F:89:45:DD:3B:D3:83:3C:BB:9A:B7:03:54:71:9F:BB:8F:D3:2A:53
Authority key identifier: 4A:E8:D0:89:09:D1:85:AF:41:D0:A0:C3:BE:5E:A2:8C:35:2F:02:26
Certificate issuer: /CN=4ae8d08909d185af41d0a0c3be5ea28c352f0226
Certificate serial: 019688498709D83E1383727EC74BC61D6826
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SujQiQnRha9B0KDDvl6ijDUvAiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
Manifest number: 1397
Signing time: Wed 30 Apr 2025 20:00:42 +0000
Manifest this update: Wed 30 Apr 2025 20:00:42 +0000
Manifest next update: Thu 01 May 2025 20:00:42 +0000
Files and hashes: 1: SujQiQnRha9B0KDDvl6ijDUvAiY.crl (hash: dBLYSeQvwzU3k3QmH7KE3jyZBFYAwW3X153CNEYVklc=)
2: nP21AC5prEFloL4b-rvpds4zVIk.roa (hash: uwmza4+iHSYo9L5fLNkaMpr9S0IJA2DNF48xVtFHmFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/SujQiQnRha9B0KDDvl6ijDUvAiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 20:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:88:49:87:09:d8:3e:13:83:72:7e:c7:4b:c6:1d:68:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ae8d08909d185af41d0a0c3be5ea28c352f0226
Validity
Not Before: Apr 30 20:00:42 2025 GMT
Not After : May 1 20:00:42 2025 GMT
Subject: CN=8f8945dd3bd3833cbb9ab70354719fbb8fd32a53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b2:73:92:30:ce:80:ab:9d:9c:2e:5a:92:47:
d4:3e:50:61:15:95:be:0c:e5:41:44:a3:4f:ce:7f:
35:df:c4:05:88:10:41:f3:a8:6c:eb:29:0f:b2:25:
ca:a5:7e:fe:41:a9:93:33:e0:bc:92:6b:d9:da:57:
b7:ce:32:e2:3c:76:20:df:93:47:ad:98:64:e4:d1:
58:22:31:1f:db:5a:ef:28:f5:d4:fe:e4:e8:83:a7:
62:ce:a0:d9:1d:51:cd:87:cc:08:91:21:50:85:d3:
c9:b0:85:6d:73:de:75:ed:05:c8:03:3e:00:88:d5:
1b:b8:e7:04:ba:28:28:7c:7f:3e:0a:4e:ea:d4:03:
6e:a2:de:e9:bc:f7:b4:c5:9d:66:46:74:bf:eb:a1:
1f:8e:17:5c:7a:f0:8f:4d:87:f3:76:29:cf:36:31:
cc:cd:96:1b:12:20:91:1c:00:7d:48:d6:8c:1f:9b:
7b:c9:7f:55:cb:72:6b:17:b9:5a:3e:1e:c1:6b:e6:
a5:ba:49:fb:11:bb:5d:10:31:05:b4:90:c4:51:03:
2c:0e:06:4f:f5:37:c5:b1:ee:d3:d6:40:c7:6a:07:
6a:26:63:92:07:7f:b5:b4:9c:88:47:6a:0a:9e:96:
51:c0:ec:2a:c2:ac:3a:6a:e8:5d:8d:5b:69:5a:4d:
99:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:89:45:DD:3B:D3:83:3C:BB:9A:B7:03:54:71:9F:BB:8F:D3:2A:53
X509v3 Authority Key Identifier:
keyid:4A:E8:D0:89:09:D1:85:AF:41:D0:A0:C3:BE:5E:A2:8C:35:2F:02:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SujQiQnRha9B0KDDvl6ijDUvAiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/41446b-e49a-4ae7-81e5-9425856ec542/1/SujQiQnRha9B0KDDvl6ijDUvAiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:c5:0d:b5:93:1b:7f:84:f1:b9:4d:fe:13:e0:da:4b:9b:e2:
c7:95:95:39:f9:39:f2:1d:0b:94:8a:25:94:84:b2:3b:56:a7:
3d:07:76:50:b7:33:21:a0:70:51:15:c6:b9:e5:05:0b:8e:8e:
4e:14:81:53:b6:4c:36:9b:11:f9:cf:fe:34:fe:8a:c0:83:d2:
10:09:39:93:9b:13:69:cf:ec:96:b1:5d:d8:83:3d:a6:db:9f:
12:e3:9b:c5:99:48:d5:fa:15:11:fa:24:36:75:a7:eb:9f:8a:
fc:48:ae:fa:f3:c0:6f:9d:85:4c:40:bf:cd:66:d5:da:ce:10:
2f:e4:41:ed:ae:bd:04:2f:64:d3:ce:a9:7f:0b:07:c4:b8:65:
61:32:be:7b:50:46:cc:fb:40:f5:eb:60:b4:9e:70:7a:98:da:
ae:eb:80:fc:67:c5:c8:ae:ce:74:d5:e7:87:a7:27:34:5a:15:
87:00:8a:b6:8d:96:b1:ea:71:0a:2f:b4:12:ea:e4:e9:db:97:
ad:27:db:c3:c6:1b:37:a2:11:23:91:b3:a3:00:15:62:4a:1d:
65:dd:b5:f5:c6:67:c8:15:ee:ff:40:55:34:53:76:40:8f:bb:
dd:a3:74:64:d7:09:73:36:d6:2a:1d:37:9c:fd:6f:ca:bb:2a:
29:37:d2:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 23:46:56 2025 by rpki-client