Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.mft
File: Cl9hKRQr0Kncad_UAkif8l9bPvI.mft (raw, json)
Hash identifier: gZV9AdGv2SPP4KRYl3K/TH5BS1q8NES23dx7ztFNhOg=
Subject key identifier: E8:79:C5:8F:34:7E:F2:84:97:83:85:44:89:77:45:AB:19:01:B1:4E
Authority key identifier: 0A:5F:61:29:14:2B:D0:A9:DC:69:DF:D4:02:48:9F:F2:5F:5B:3E:F2
Certificate issuer: /CN=0a5f6129142bd0a9dc69dfd402489ff25f5b3ef2
Certificate serial: 01974855337A9A5FD8A98B71D88AD2F77A36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cl9hKRQr0Kncad_UAkif8l9bPvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.mft
Manifest number: 157B
Signing time: Sat 07 Jun 2025 03:00:32 +0000
Manifest this update: Sat 07 Jun 2025 03:00:32 +0000
Manifest next update: Sun 08 Jun 2025 03:00:32 +0000
Files and hashes: 1: Cl9hKRQr0Kncad_UAkif8l9bPvI.crl (hash: P903MLH2Vsx5cCsXRp+p64MQw8afL+vvDok9jMoHAa8=)
2: CuosGZsAQa_atOUfAfS4SUVwI3o.roa (hash: Ah8ug2ZnqIvKy7wR+jjWOatqPL6Ooi9wmYyJPajHlvk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cl9hKRQr0Kncad_UAkif8l9bPvI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 03:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:55:33:7a:9a:5f:d8:a9:8b:71:d8:8a:d2:f7:7a:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a5f6129142bd0a9dc69dfd402489ff25f5b3ef2
Validity
Not Before: Jun 7 03:00:32 2025 GMT
Not After : Jun 8 03:00:32 2025 GMT
Subject: CN=e879c58f347ef28497838544897745ab1901b14e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:61:a0:2d:a3:b8:64:8b:bd:11:fb:ad:62:4b:
7a:e7:95:75:61:b8:9e:dc:50:36:53:a2:05:ce:22:
da:36:a8:2c:50:2d:5b:1b:4b:53:b0:fd:50:f4:a3:
9b:14:f8:23:92:4e:c6:f1:7b:51:f2:8a:4d:58:68:
29:10:8c:ee:fc:c3:10:6f:95:cd:92:ed:46:10:d6:
62:9e:4e:1c:dc:b8:cf:34:ae:23:eb:9f:f8:8d:f7:
22:58:c7:db:f0:26:d5:6d:49:73:75:e3:98:32:3b:
56:32:a8:7d:7a:37:7e:cf:23:6e:89:bf:87:e4:16:
07:0e:34:43:34:ff:fd:4d:f0:3c:df:00:c6:b0:9c:
cc:f9:66:62:a7:45:7a:fd:46:ea:70:1f:72:d4:e3:
73:66:50:67:0f:d4:83:65:c3:ae:be:53:1a:ce:20:
dd:53:73:88:50:96:61:a9:93:41:47:18:79:98:a9:
54:08:be:7f:19:ad:72:a7:55:df:57:eb:3c:13:10:
9b:25:83:f4:a5:f9:70:8c:e9:cd:68:8d:ef:91:81:
37:8b:32:11:e3:66:a6:cb:07:46:d1:2d:0f:9f:eb:
e1:0e:33:c5:da:f7:20:be:7a:8b:6b:0e:ea:db:aa:
89:f6:25:10:e4:7e:b8:ce:8e:68:94:12:57:33:b9:
21:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:79:C5:8F:34:7E:F2:84:97:83:85:44:89:77:45:AB:19:01:B1:4E
X509v3 Authority Key Identifier:
keyid:0A:5F:61:29:14:2B:D0:A9:DC:69:DF:D4:02:48:9F:F2:5F:5B:3E:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cl9hKRQr0Kncad_UAkif8l9bPvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:14:6b:81:af:60:0a:18:da:29:5b:49:e9:57:26:8a:9d:e1:
58:97:27:4b:5e:34:51:e3:af:7a:ab:00:d6:14:e5:71:78:f1:
4d:56:6c:ba:07:fe:68:71:89:d1:a3:24:04:2d:0f:bb:0d:fb:
c6:54:9f:83:67:39:33:ed:87:7b:0a:86:b4:38:74:95:9b:ca:
e3:1e:39:3e:47:97:df:a3:6d:27:8c:72:6b:2c:cf:7b:95:69:
55:1a:7c:fc:d9:1f:ab:0f:bd:c4:09:d3:44:d6:aa:01:a3:1f:
fe:b7:36:27:ea:c5:0d:53:9a:8d:9f:ee:e1:86:4c:40:33:ea:
37:82:b4:f1:3b:85:2f:3d:47:59:61:fd:dc:ae:9f:41:da:c0:
18:be:6f:6b:e2:9f:99:15:c9:f2:41:a1:a4:3b:6f:1d:63:50:
e4:be:74:d7:bf:6c:5f:9a:98:21:00:82:2a:ee:ff:94:ac:15:
0f:d4:8a:15:47:e2:78:6e:f4:2d:0a:d5:25:6f:82:0e:1a:94:
88:c3:1c:59:e2:fe:29:e1:f9:de:2c:2d:33:40:60:47:3b:db:
33:f5:65:54:b5:d7:6e:2c:77:e9:48:26:78:a8:54:7c:c5:d9:
65:de:71:e2:82:be:a7:33:5c:1d:08:53:28:f2:a1:2a:b1:ec:
3b:29:f5:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 12:28:08 2025 by rpki-client