Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
File: JcUDXdNt8HSfTWKZyPy-1hVcARc.mft (raw, json)
Hash identifier: aN8hmQ+S6tP26JEohKXbLfrs6EEhN53OF8nVNhshsjs=
Subject key identifier: 68:B1:61:B9:50:62:74:11:6C:13:0F:44:51:1E:6E:72:62:8B:A9:A0
Authority key identifier: 25:C5:03:5D:D3:6D:F0:74:9F:4D:62:99:C8:FC:BE:D6:15:5C:01:17
Certificate issuer: /CN=25c5035dd36df0749f4d6299c8fcbed6155c0117
Certificate serial: 019657266FA98FCE9E82D7BE8B664D50DC4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JcUDXdNt8HSfTWKZyPy-1hVcARc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
Manifest number: 14FB
Signing time: Mon 21 Apr 2025 07:00:58 +0000
Manifest this update: Mon 21 Apr 2025 07:00:58 +0000
Manifest next update: Tue 22 Apr 2025 07:00:58 +0000
Files and hashes: 1: JcUDXdNt8HSfTWKZyPy-1hVcARc.crl (hash: BgCir9IzNs7EFclEQPk9HofLVzZSyobkE8PeTecvyfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
rsync://rpki.ripe.net/repository/DEFAULT/JcUDXdNt8HSfTWKZyPy-1hVcARc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:26:6f:a9:8f:ce:9e:82:d7:be:8b:66:4d:50:dc:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25c5035dd36df0749f4d6299c8fcbed6155c0117
Validity
Not Before: Apr 21 07:00:58 2025 GMT
Not After : Apr 22 07:00:58 2025 GMT
Subject: CN=68b161b9506274116c130f44511e6e72628ba9a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:01:c8:e8:54:fd:2b:00:60:56:a7:4f:93:2b:
37:50:9c:6e:ad:92:b7:71:d0:3d:a2:72:0e:1c:99:
7e:c2:7e:fe:7c:99:76:ca:01:87:3f:20:43:97:25:
ba:24:9a:4f:ea:b4:b1:3e:da:22:f7:da:7f:f6:c5:
c0:cf:45:5d:b0:b8:37:4b:c2:e4:44:a8:47:42:5d:
b0:63:e7:d7:a3:c4:e3:91:e5:1f:f9:5d:2f:95:9f:
4f:e7:64:b9:28:0a:9b:b8:58:c5:59:fb:9c:55:df:
1e:b3:ae:e8:18:01:3f:ad:ed:62:4e:bf:9b:c7:2d:
5d:3b:d7:a5:f7:07:d8:70:2a:4a:8a:8a:48:f4:aa:
a8:43:a3:a7:b1:93:f8:30:74:95:43:b1:6a:58:51:
0d:9a:74:0c:bd:6d:3a:87:5f:2c:b6:a4:70:01:5e:
a3:c9:f5:65:7f:8c:c4:77:02:33:04:98:ff:3b:81:
7a:9d:b8:4d:2a:83:1e:7e:ff:fe:c1:10:99:17:76:
30:b9:e7:10:73:05:b8:34:5a:05:51:95:0a:0d:6b:
c2:ca:28:ef:0f:dc:43:ba:0b:88:d9:ec:e6:28:77:
35:1a:0c:de:e2:06:1b:42:92:95:ce:be:ea:d6:6e:
58:99:06:00:a5:3f:84:cd:ac:e8:36:bc:53:13:11:
af:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:B1:61:B9:50:62:74:11:6C:13:0F:44:51:1E:6E:72:62:8B:A9:A0
X509v3 Authority Key Identifier:
keyid:25:C5:03:5D:D3:6D:F0:74:9F:4D:62:99:C8:FC:BE:D6:15:5C:01:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JcUDXdNt8HSfTWKZyPy-1hVcARc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:0c:e7:25:4c:1f:c8:a3:9d:35:f5:e0:a5:1f:28:a5:26:13:
eb:5e:91:ed:c4:32:c9:6f:82:db:c6:09:2f:0a:b0:cd:c7:03:
08:78:c3:79:5a:de:3e:4c:e3:20:18:a8:dd:f8:d8:22:47:10:
c6:07:d7:e3:91:07:9c:ad:1b:1c:e7:76:51:af:50:73:8f:f7:
e9:26:09:cf:bf:df:8f:c5:43:a9:af:e9:1e:5a:91:47:c3:d6:
8a:3a:e7:88:78:9e:16:02:fe:63:f9:01:2c:5b:33:fc:bf:b1:
ec:68:7c:95:4f:57:e0:e1:95:1c:de:5d:14:7d:e0:20:13:da:
67:4a:4e:c5:c6:f4:1d:8a:11:13:0c:56:75:bc:26:75:72:2f:
43:d8:b7:0e:91:47:ce:9a:c5:5c:e2:78:27:59:57:b1:07:b1:
93:69:9a:79:88:4b:3e:7e:74:4c:23:3a:d5:12:71:fa:b1:e2:
fb:b5:0e:4f:d4:86:55:23:09:b2:b8:68:e6:a7:5a:8e:6a:d8:
15:c6:86:18:83:d3:a1:b1:4e:ea:2a:41:7e:22:ff:63:b2:0b:
bd:83:d6:fc:8b:0b:53:ee:cb:c9:88:f9:dd:2c:a6:b3:70:2e:
30:9f:10:89:6e:71:3b:ba:90:a7:10:7f:1c:1f:c7:0f:39:c8:
bd:72:b6:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:38:11 2025 by rpki-client