Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft
File: CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft (raw, json)
Hash identifier: 0+fHF7XXDMsRDnmpB0BKpY8HZsw2QfjdTanhnGDRj9E=
Subject key identifier: 1D:1E:DB:0D:DD:D2:AD:13:D4:A4:32:AE:DA:55:ED:3B:34:D5:20:EB
Authority key identifier: 08:A5:C3:AB:A4:21:B7:8A:7D:5D:09:B7:5B:4C:E3:BE:52:73:CA:AC
Certificate issuer: /CN=08a5c3aba421b78a7d5d09b75b4ce3be5273caac
Certificate serial: 019652A492F3185DB607663AA52623BF949E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft
Manifest number: 1501
Signing time: Sun 20 Apr 2025 10:00:39 +0000
Manifest this update: Sun 20 Apr 2025 10:00:39 +0000
Manifest next update: Mon 21 Apr 2025 10:00:39 +0000
Files and hashes: 1: CKXDq6Qht4p9XQm3W0zjvlJzyqw.crl (hash: +pyt4++EX5AuC4lJLhXV4Ui/5CCNBoH/e9QvF9y/q50=)
2: yW1cS9Mx29vTOamtTRsFT6bLIXw.roa (hash: PZBuxnii3Pq+stD6k3qQUstIcPbrvHDexZJKpw32ONQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:a4:92:f3:18:5d:b6:07:66:3a:a5:26:23:bf:94:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a5c3aba421b78a7d5d09b75b4ce3be5273caac
Validity
Not Before: Apr 20 10:00:39 2025 GMT
Not After : Apr 21 10:00:39 2025 GMT
Subject: CN=1d1edb0dddd2ad13d4a432aeda55ed3b34d520eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e6:e7:b8:ca:08:c2:28:96:7a:ac:c5:5c:8d:
f4:fb:b2:91:97:50:43:ae:50:6a:40:bf:60:80:1c:
21:72:ee:36:0b:34:9c:30:cf:3c:09:ab:1e:22:01:
a8:19:5d:c5:74:30:a8:8a:b7:43:92:b1:a2:16:2a:
3c:c9:17:84:81:f8:e9:03:ff:fd:38:b6:3e:d6:13:
e0:99:d9:95:f5:63:b5:9d:61:45:cc:4a:dc:f8:00:
eb:af:57:70:0a:50:c3:e4:1b:50:55:d4:f9:83:c3:
d2:20:78:be:43:60:01:cc:52:c4:e0:5f:ab:6b:1d:
dd:cd:b7:2f:e7:5d:92:1a:64:b8:a0:f5:3a:0a:d5:
92:27:3b:87:89:b8:77:82:fb:97:d1:e7:8d:83:2e:
05:94:de:4e:91:a1:db:8b:ce:f8:d5:b3:2a:69:a3:
3f:e1:3d:ab:a3:8d:de:c0:bb:5d:3b:a4:9d:3a:4b:
a7:23:96:3e:43:a3:ba:b3:ba:e3:4f:01:86:54:f7:
ef:b5:09:30:3a:42:bb:fe:53:1b:9f:e2:71:38:13:
eb:17:4f:df:e7:f9:98:6a:4c:e0:f6:5a:40:e4:99:
ac:00:38:42:40:bb:b6:e2:16:72:32:27:8e:08:41:
43:18:f1:1f:75:3e:f1:97:c2:e0:60:07:3f:d1:2d:
62:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:1E:DB:0D:DD:D2:AD:13:D4:A4:32:AE:DA:55:ED:3B:34:D5:20:EB
X509v3 Authority Key Identifier:
keyid:08:A5:C3:AB:A4:21:B7:8A:7D:5D:09:B7:5B:4C:E3:BE:52:73:CA:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:be:8b:09:42:ae:41:b7:ed:45:cd:fa:fc:17:8d:cd:11:4e:
81:79:35:21:12:09:2c:18:29:ec:3b:9d:9e:00:44:3e:f2:8b:
b0:ca:12:69:f9:a5:7e:27:cb:5d:f0:c3:87:ec:06:ca:8c:78:
0e:b0:96:36:cb:20:cf:84:25:c7:e5:72:81:59:82:ab:7b:f8:
61:f9:68:5d:a2:03:a9:e7:46:a2:66:dc:b5:aa:34:36:ed:f8:
99:ed:7e:25:13:88:fa:59:ac:37:c7:87:19:8a:67:23:24:20:
71:c3:99:cd:99:a7:3f:cf:4b:65:8f:20:ca:07:82:27:45:3f:
b8:aa:d3:68:8c:1b:86:bd:3b:82:fd:2d:60:0c:f5:4e:6d:39:
b2:c6:28:28:9a:59:25:ac:94:80:6d:dd:80:27:88:b9:56:56:
c1:49:d7:dc:d0:bb:d6:52:b6:f5:c9:49:96:28:81:88:99:33:
48:e5:39:61:58:c4:fe:2f:0a:ba:bc:da:47:cb:d0:c6:a0:a5:
da:62:16:34:b1:de:ae:63:d6:42:01:09:a6:91:65:ff:50:02:
bb:43:18:e1:2c:a7:4c:9b:60:0f:f3:c4:b0:1a:52:45:35:bd:
60:39:fc:be:3e:b5:14:9c:b8:8a:a6:5c:72:21:04:6e:60:d0:
b9:fe:1a:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:21:28 2025 by rpki-client