Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/71f422-e092-4189-8d3c-8e258efedffa/1/ckWEKSHz0CDU2AReUrsQ_PV-r28.mft
File: ckWEKSHz0CDU2AReUrsQ_PV-r28.mft (raw, json)
Hash identifier: 920PtUlT278Qjr9hZrZLT16Udd6a5PnYDryoH2J4Uno=
Subject key identifier: 4A:04:89:AC:97:61:4E:C1:E3:51:57:C8:52:32:D1:0A:4B:B0:EE:99
Authority key identifier: 72:45:84:29:21:F3:D0:20:D4:D8:04:5E:52:BB:10:FC:F5:7E:AF:6F
Certificate issuer: /CN=7245842921f3d020d4d8045e52bb10fcf57eaf6f
Certificate serial: 01958CCE890F627ACFC6CD38E51071842E0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckWEKSHz0CDU2AReUrsQ_PV-r28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/71f422-e092-4189-8d3c-8e258efedffa/1/ckWEKSHz0CDU2AReUrsQ_PV-r28.mft
Manifest number: 0E12
Signing time: Thu 13 Mar 2025 00:01:40 +0000
Manifest this update: Thu 13 Mar 2025 00:01:40 +0000
Manifest next update: Fri 14 Mar 2025 00:01:40 +0000
Files and hashes: 1: ckWEKSHz0CDU2AReUrsQ_PV-r28.crl (hash: GouVdtZ8Y3Gnxlzi0CZok+JCUGg1dIxALMsnTWaE4z4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/71f422-e092-4189-8d3c-8e258efedffa/1/ckWEKSHz0CDU2AReUrsQ_PV-r28.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/71f422-e092-4189-8d3c-8e258efedffa/1/ckWEKSHz0CDU2AReUrsQ_PV-r28.mft
rsync://rpki.ripe.net/repository/DEFAULT/ckWEKSHz0CDU2AReUrsQ_PV-r28.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:ce:89:0f:62:7a:cf:c6:cd:38:e5:10:71:84:2e:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7245842921f3d020d4d8045e52bb10fcf57eaf6f
Validity
Not Before: Mar 13 00:01:40 2025 GMT
Not After : Mar 14 00:01:40 2025 GMT
Subject: CN=4a0489ac97614ec1e35157c85232d10a4bb0ee99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:63:66:06:37:4a:f5:37:d2:c4:5c:17:69:3e:
5d:39:a5:8b:b5:4f:00:f3:48:02:0a:ac:8a:c6:61:
a0:dc:f0:7d:34:6a:1b:34:2a:00:c3:02:2a:bf:b1:
18:f0:c5:cc:31:0f:40:3d:b9:82:ec:6c:81:7e:72:
81:45:1b:90:7c:79:9b:21:b6:61:af:69:6b:4b:32:
da:74:62:34:67:4e:34:c2:9f:70:d2:df:c4:dc:18:
59:21:73:b7:1f:31:15:9b:1d:59:89:c9:9f:15:44:
85:25:ba:8f:a6:c2:c3:59:ef:07:bc:26:8b:a3:62:
ee:82:7f:34:28:0a:80:3a:63:3c:86:a7:4b:03:ed:
5a:28:45:32:05:0e:7a:d2:5b:d9:6a:ad:57:89:4a:
17:ed:62:f7:f0:25:c1:4a:bf:05:9a:3f:54:02:d0:
7a:f8:e2:19:58:f6:88:be:76:e3:0b:07:db:97:aa:
de:11:b0:5a:11:1a:c3:ba:96:4d:72:f1:94:d2:6a:
71:34:0a:92:25:be:4e:50:36:a1:c1:1b:4e:92:54:
03:69:dc:1a:de:64:40:27:ee:c7:b9:77:cf:be:59:
c5:ed:4d:62:0e:c5:75:40:ee:39:b6:2d:8e:e3:13:
2e:77:33:39:12:f1:d6:63:1b:8b:75:e2:77:1f:7f:
12:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:04:89:AC:97:61:4E:C1:E3:51:57:C8:52:32:D1:0A:4B:B0:EE:99
X509v3 Authority Key Identifier:
keyid:72:45:84:29:21:F3:D0:20:D4:D8:04:5E:52:BB:10:FC:F5:7E:AF:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckWEKSHz0CDU2AReUrsQ_PV-r28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/71f422-e092-4189-8d3c-8e258efedffa/1/ckWEKSHz0CDU2AReUrsQ_PV-r28.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/71f422-e092-4189-8d3c-8e258efedffa/1/ckWEKSHz0CDU2AReUrsQ_PV-r28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:dc:29:82:19:e5:db:f9:92:06:c7:61:8f:1a:f7:f4:fd:14:
a0:e1:4b:b4:4b:27:aa:55:a0:cf:54:2d:27:d7:4a:57:e4:7b:
7f:ce:82:42:8e:a7:bc:e8:83:31:bb:2f:dd:ff:73:88:e0:fe:
65:fa:78:56:4a:02:6f:a8:ae:4f:bb:bc:c8:cd:a6:1b:79:21:
7b:9e:02:01:fa:6d:23:06:90:4e:97:2a:8b:76:77:f0:92:75:
fa:3e:fd:15:a7:90:54:c9:d6:09:ba:34:da:1a:cd:ab:b4:5c:
c7:a2:c5:e0:9e:86:8b:1e:92:77:d9:70:d6:68:67:39:7b:5c:
cf:96:84:4c:f7:92:33:af:86:a3:aa:9e:6e:5b:64:07:6a:6b:
04:ba:c6:9e:ea:9b:72:ca:73:e9:2d:04:1f:85:63:c6:f5:eb:
35:55:79:12:55:6d:76:e4:7a:27:3e:cc:44:51:14:2e:7c:24:
98:3d:7c:4d:c3:9e:38:c1:56:c5:83:db:78:e0:40:dc:6d:c6:
9d:54:60:42:40:96:e7:b2:a6:26:80:60:0a:5e:b9:ac:d4:1e:
5a:6c:62:48:97:ab:e2:3a:2f:b2:a7:af:8e:6c:a0:43:4c:50:
39:37:5f:88:43:b0:a1:f9:a1:c7:7a:9c:18:68:29:cb:1a:d8:
b5:34:21:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:00 2025 by rpki-client