Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
File: 1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft (raw, json)
Hash identifier: +4WIITJtpR84wiKK/jf+D34U5rF/RefAmOBxG7fxASE=
Subject key identifier: A0:35:3E:0F:49:B7:56:27:7B:7B:55:D7:3D:C3:F4:21:F7:B1:20:FD
Authority key identifier: D4:25:90:03:12:FF:3B:DA:4D:2F:89:6F:64:DF:65:64:6F:D9:C2:51
Certificate issuer: /CN=d425900312ff3bda4d2f896f64df65646fd9c251
Certificate serial: 019652DB41D9F71EB4389D20C855488AA4A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
Manifest number: 14FC
Signing time: Sun 20 Apr 2025 11:00:22 +0000
Manifest this update: Sun 20 Apr 2025 11:00:22 +0000
Manifest next update: Mon 21 Apr 2025 11:00:22 +0000
Files and hashes: 1: 1CWQAxL_O9pNL4lvZN9lZG_ZwlE.crl (hash: Y8EnG/OaRjKw0gTlGJKig17a4ejHQWUI2zihccc3Frw=)
2: g_HTJXlqiVwcXNQwQ-5NsdWLDwY.roa (hash: T8aREzkEhzdTgcqG/dOQatsiFG6CYLxa2kl0FfKGWAQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:db:41:d9:f7:1e:b4:38:9d:20:c8:55:48:8a:a4:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d425900312ff3bda4d2f896f64df65646fd9c251
Validity
Not Before: Apr 20 11:00:22 2025 GMT
Not After : Apr 21 11:00:22 2025 GMT
Subject: CN=a0353e0f49b756277b7b55d73dc3f421f7b120fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:2b:b0:10:c4:1f:11:93:2b:d7:73:d2:6f:a5:
f8:8f:0b:70:96:99:4c:99:09:4c:92:c3:2f:83:13:
96:e6:45:dd:69:8f:b4:77:47:4e:88:d6:bf:83:b5:
1d:ca:2c:47:81:77:c7:21:42:0e:80:9d:8f:52:eb:
79:82:d9:46:2c:4d:63:0d:13:4c:82:e6:86:8a:9a:
5b:a3:d8:a0:c9:f7:36:f9:8d:f2:5d:b4:6c:f8:77:
5a:d7:9f:6f:f4:40:bc:0a:96:ce:60:ef:70:31:0e:
ca:de:40:85:6e:93:09:c6:9d:76:24:d1:f1:7a:88:
59:97:3b:38:7c:c3:d1:b9:81:98:9f:95:47:40:b6:
97:7a:6c:9e:a8:73:f4:50:b4:65:87:d9:31:f2:1f:
28:6c:80:2f:72:8d:d7:a8:ea:62:14:a0:17:cb:0b:
0b:5a:b3:a2:2d:ca:2d:d6:8b:fe:11:0d:f1:0d:26:
99:c2:70:65:6d:da:a8:82:59:ef:cf:c2:ec:74:fc:
12:39:eb:c5:8e:23:cb:5a:d0:ef:8b:b7:87:8b:65:
d4:83:4a:c7:71:30:8f:5f:ef:e5:f9:30:52:54:10:
e2:69:2c:f9:05:f6:98:44:d9:5b:9e:f4:bd:bf:ae:
e8:46:15:4f:60:12:d4:f6:ee:e3:2b:c0:a4:e5:73:
cf:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:35:3E:0F:49:B7:56:27:7B:7B:55:D7:3D:C3:F4:21:F7:B1:20:FD
X509v3 Authority Key Identifier:
keyid:D4:25:90:03:12:FF:3B:DA:4D:2F:89:6F:64:DF:65:64:6F:D9:C2:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5bf826-921e-44f5-af33-676b428925ab/1/1CWQAxL_O9pNL4lvZN9lZG_ZwlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:7e:e2:ca:0c:ee:5f:3a:5e:11:a0:9c:5c:a8:93:f0:54:98:
e5:4b:c7:db:74:a7:0e:33:47:8e:ca:30:38:8b:8f:f6:65:31:
db:83:85:24:dd:43:ce:67:85:b5:15:68:74:b4:1f:c0:5d:e7:
73:69:75:2b:c4:f8:85:d5:76:4b:9e:d0:38:4e:cc:99:67:41:
0b:82:16:e6:a7:13:67:eb:65:16:06:12:87:e4:b8:92:a6:f0:
62:8b:fc:4c:ea:21:0d:f3:33:61:6f:cb:b3:d5:21:32:6b:09:
17:8a:8b:9a:00:14:b5:79:74:fe:39:20:f9:e7:45:a3:b7:05:
b3:b5:4d:39:30:50:8f:96:be:4f:2b:28:09:24:35:41:df:f6:
80:9b:c3:44:f2:aa:a1:b5:e0:1b:7d:4a:0b:0e:f4:4f:67:da:
15:1a:ef:9f:48:6a:33:b3:4a:fa:bb:51:56:c9:91:04:3b:54:
2d:57:7b:95:87:2d:93:57:af:07:f8:ff:29:94:37:9f:3a:ce:
f0:83:a8:55:ec:7e:8a:f6:4b:25:a6:35:9d:ad:8d:97:97:2d:
a2:74:d9:43:22:a3:fc:07:0b:ba:76:c3:95:00:b2:cf:83:1e:
a4:3f:0d:bc:3d:9b:d3:28:67:9e:4f:c9:17:c2:13:32:d6:c9:
11:82:3a:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:21:35 2025 by rpki-client