Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
File: curcen7OR31fTXdyQ7YPK7u3VgM.mft (raw, json)
Hash identifier: 7cc5vU/qRoM+YZeYDFIqYA2mJusLmp8+XCueEYBTc9A=
Subject key identifier: C2:5A:8B:3E:A9:7A:5C:BD:EF:3F:51:D0:87:92:BD:58:F5:B5:3A:BA
Authority key identifier: 72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
Certificate issuer: /CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Certificate serial: 0196767A39C408F9D367AE3B75D852E395FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
Manifest number: 0779
Signing time: Sun 27 Apr 2025 09:00:43 +0000
Manifest this update: Sun 27 Apr 2025 09:00:43 +0000
Manifest next update: Mon 28 Apr 2025 09:00:43 +0000
Files and hashes: 1: curcen7OR31fTXdyQ7YPK7u3VgM.crl (hash: /bIn/ftsKKCKGmxwYLYVg2MgPDTKpWBENRfM+8qkzTM=)
2: mFFNgz0LoOIjeTT2_r0-wBPyYQM.roa (hash: 8oKdatfS4ydJsathXE08ETrnAsR4fEoI1qYHumOim1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:7a:39:c4:08:f9:d3:67:ae:3b:75:d8:52:e3:95:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603
Validity
Not Before: Apr 27 09:00:43 2025 GMT
Not After : Apr 28 09:00:43 2025 GMT
Subject: CN=c25a8b3ea97a5cbdef3f51d08792bd58f5b53aba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:9f:a3:1e:15:9b:02:ec:41:58:1a:64:9b:c0:
92:bd:fc:1a:e6:30:66:66:41:87:48:63:e8:04:d6:
14:6c:55:45:79:07:99:b1:f8:d0:05:5a:d5:94:92:
a3:52:46:c7:78:af:73:97:2a:5e:b7:3d:04:00:6f:
88:4e:af:53:bd:d5:b3:e1:92:b7:b7:92:05:19:66:
69:24:6d:0c:67:15:dd:0f:47:d6:e7:ef:e8:9f:11:
7c:93:a8:88:9c:6f:96:71:cb:f9:14:90:31:30:9d:
a4:6c:91:2d:46:16:fc:57:fb:15:23:e3:89:d4:84:
38:2f:af:19:99:f8:a6:35:a1:35:ca:62:9a:4e:8c:
bf:65:95:4a:a9:20:55:a5:fd:9e:02:bc:53:0a:00:
a5:89:77:b2:c2:c2:09:1f:ca:fe:72:fa:db:d5:13:
d7:eb:23:15:e9:85:8d:1b:b1:47:d7:52:f1:8f:2a:
a1:72:e8:51:8b:55:2b:08:8e:1c:2e:ce:15:b2:50:
00:65:a4:6b:12:88:d5:ba:1d:8d:f1:6d:8a:c1:bc:
56:ed:5f:69:9a:32:eb:42:82:60:8b:36:3e:d1:b7:
76:1e:f0:1f:a5:d9:40:be:1b:98:8b:94:0f:c2:3b:
fa:56:e9:d9:11:bf:32:31:62:9a:fc:dd:51:15:dd:
5f:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:5A:8B:3E:A9:7A:5C:BD:EF:3F:51:D0:87:92:BD:58:F5:B5:3A:BA
X509v3 Authority Key Identifier:
keyid:72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:c5:95:d0:b3:7c:1c:10:e7:25:73:b8:75:0d:01:52:09:8f:
38:8a:36:40:ea:ee:7f:9d:09:8a:48:d3:d1:4a:cb:1d:b7:74:
ad:a8:f5:2f:d0:36:ba:25:9d:cf:46:0b:36:fd:51:48:ac:57:
03:29:46:f0:b5:33:32:fe:d4:72:45:73:a9:19:36:9b:8b:26:
7a:a8:08:52:2c:da:83:57:b4:71:f6:28:36:b5:0c:a1:e7:d0:
c2:be:57:69:2a:b9:4e:47:09:71:61:45:84:9f:19:88:cf:c9:
72:8b:10:aa:d8:ca:0b:9e:92:ab:4f:1e:d6:43:8e:d3:23:31:
85:d4:6e:46:e0:88:45:61:f7:f8:88:80:9f:6a:94:64:7a:cc:
99:5c:3a:ec:69:4f:0f:fd:0d:89:20:75:99:56:6c:c1:bb:fc:
53:6f:09:01:35:78:f3:ad:b9:ea:e8:7c:80:34:6b:3d:a3:33:
32:3a:f1:63:a3:3d:b1:72:f6:a0:54:2e:50:71:16:38:be:47:
a6:cf:9a:dd:9a:1b:ec:ff:62:85:b9:02:48:1a:e1:8c:b5:3a:
09:36:35:c2:d7:86:59:98:64:da:57:78:f2:30:18:f7:38:e7:
b1:fd:e7:93:31:76:f2:0b:03:70:22:f0:cc:b5:ba:1c:85:f4:
be:31:f7:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 17:40:45 2025 by rpki-client