Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
File: SU14c0FlEKL7I0bvNCKAFVUicTs.mft (raw, json)
Hash identifier: KeQ96hnvtwP2NdtcgUCT0Z4SR0ofWFfiHzo4JDdscDw=
Subject key identifier: 7A:B5:48:E2:48:D2:1C:6C:89:52:65:21:D1:E6:05:18:74:16:B0:1D
Authority key identifier: 49:4D:78:73:41:65:10:A2:FB:23:46:EF:34:22:80:15:55:22:71:3B
Certificate issuer: /CN=494d7873416510a2fb2346ef342280155522713b
Certificate serial: 0196181089ABCA70C59314995DC183CB48BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
Manifest number: 11EF
Signing time: Wed 09 Apr 2025 01:00:58 +0000
Manifest this update: Wed 09 Apr 2025 01:00:58 +0000
Manifest next update: Thu 10 Apr 2025 01:00:58 +0000
Files and hashes: 1: B8HrelUy9bYGyo-udBZpXQ76dPg.roa (hash: 1JcwupsyhEziaGEtjnyo+5LdSyy6jIrto6vLWzkI9l8=)
2: SU14c0FlEKL7I0bvNCKAFVUicTs.crl (hash: 3tRowZ8IvXkPQrtF4+fFncMuF9QnDAOjSLid+tKK2zU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 22:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:18:10:89:ab:ca:70:c5:93:14:99:5d:c1:83:cb:48:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=494d7873416510a2fb2346ef342280155522713b
Validity
Not Before: Apr 9 01:00:58 2025 GMT
Not After : Apr 10 01:00:58 2025 GMT
Subject: CN=7ab548e248d21c6c89526521d1e605187416b01d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b4:b9:f1:63:7b:bd:83:25:cc:b9:52:db:eb:
9f:ce:83:ef:f0:48:b9:22:ec:a4:d6:cd:e1:ce:ac:
4a:24:29:11:57:ab:41:19:75:03:3b:23:33:03:8b:
38:64:9d:4a:17:d2:79:75:5d:af:fa:83:24:3e:3c:
5f:b4:ef:ff:57:b5:16:25:b9:41:9b:3c:a2:55:c5:
aa:7e:0b:97:10:a8:83:bd:23:54:22:41:61:e9:d9:
71:cb:8d:59:08:a7:1b:31:00:c0:06:c8:dd:57:08:
8d:30:a3:bc:ae:ba:36:db:f8:8d:4c:4e:8d:cd:c0:
9d:15:85:e1:5f:9c:5f:68:23:00:de:b8:d0:5e:d9:
7c:a0:90:64:d1:89:0d:27:32:1e:8d:b5:2a:20:d4:
8f:5c:08:a8:d7:49:3c:5e:a6:51:c3:d9:31:0c:2a:
5d:3f:ae:60:f8:bc:37:f2:a9:28:90:6d:a1:b8:32:
1e:ba:55:d7:f8:bc:14:f9:e9:1a:ed:a4:33:d9:d3:
f2:bf:33:d0:9f:77:6f:36:30:02:a2:67:57:1c:bd:
39:d5:94:b8:a1:45:ac:4c:92:b2:3e:34:1f:ca:f7:
67:7e:80:1c:08:b9:f9:a5:72:95:95:74:0e:9c:80:
b5:51:29:34:a0:f3:88:69:ef:18:05:cf:c7:93:82:
f0:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:B5:48:E2:48:D2:1C:6C:89:52:65:21:D1:E6:05:18:74:16:B0:1D
X509v3 Authority Key Identifier:
keyid:49:4D:78:73:41:65:10:A2:FB:23:46:EF:34:22:80:15:55:22:71:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:63:29:d2:bf:7d:c0:39:6e:54:45:fc:0c:5f:a6:03:e5:7d:
9f:7c:31:7a:eb:89:41:cf:4d:4f:13:32:fe:e5:ae:67:d9:fc:
d5:a3:81:d7:ae:9d:1f:89:da:a4:fa:36:e8:f0:fc:e0:39:e2:
e5:4a:94:73:97:1c:82:a0:77:1d:d0:fb:7a:c3:58:2b:a4:e7:
dc:49:1f:1e:8e:d0:76:0a:94:b6:8d:be:3d:d3:a5:47:99:a7:
84:5f:9a:45:ad:6a:67:08:a1:99:e2:50:d1:1c:1b:82:54:a6:
d6:8b:df:ec:76:8c:8c:37:51:28:94:b4:71:68:a6:ba:4f:0d:
f5:06:1e:fa:e5:49:60:9d:a3:c6:7e:58:e0:e6:ac:e7:84:a4:
67:16:b6:e6:f3:6a:bf:87:fb:d3:72:85:c9:0e:11:49:e0:13:
43:3f:5d:a2:06:8a:09:60:47:7a:0a:21:6d:f9:ea:cd:fe:b8:
39:eb:83:c7:eb:35:87:4d:98:e5:c5:b4:be:95:cd:38:a3:42:
4b:24:d5:7b:d9:03:83:42:f8:96:83:fc:21:05:8b:de:2a:54:
c7:3d:ad:68:90:10:d2:5d:05:5a:68:50:56:11:11:46:57:95:
8d:a6:0a:b5:c2:a4:e6:56:c1:cb:af:42:f7:fe:3a:3f:56:97:
c6:8f:be:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 03:16:53 2025 by rpki-client