Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
File: 1AjPCbarAFupM7KnpKbSfqa7cso.mft (raw, json)
Hash identifier: tL+DZopmI84cq6G49m+UYbzsINq/rrlrc/jDx9lXnkU=
Subject key identifier: DC:F5:C8:60:F5:24:B7:F0:72:03:25:23:9D:8F:0B:C5:61:86:AD:89
Authority key identifier: D4:08:CF:09:B6:AB:00:5B:A9:33:B2:A7:A4:A6:D2:7E:A6:BB:72:CA
Certificate issuer: /CN=d408cf09b6ab005ba933b2a7a4a6d27ea6bb72ca
Certificate serial: 01964FDB0986D8F25FF8A5C973B9C117D684
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1AjPCbarAFupM7KnpKbSfqa7cso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
Manifest number: 0214
Signing time: Sat 19 Apr 2025 21:01:16 +0000
Manifest this update: Sat 19 Apr 2025 21:01:16 +0000
Manifest next update: Sun 20 Apr 2025 21:01:16 +0000
Files and hashes: 1: 1AjPCbarAFupM7KnpKbSfqa7cso.crl (hash: iTA/P/VzOfbiJYJQ1TWkJEaNWsgFG7L2SuS7Xw01Ins=)
2: mjk_9mBIX2K41ASneFahi5WxQms.roa (hash: qL7nGWS3Awht9PmP0vDzSTXhKhc/jIpjX536PZtB9fQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
rsync://rpki.ripe.net/repository/DEFAULT/1AjPCbarAFupM7KnpKbSfqa7cso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 21:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:db:09:86:d8:f2:5f:f8:a5:c9:73:b9:c1:17:d6:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d408cf09b6ab005ba933b2a7a4a6d27ea6bb72ca
Validity
Not Before: Apr 19 21:01:16 2025 GMT
Not After : Apr 20 21:01:16 2025 GMT
Subject: CN=dcf5c860f524b7f0720325239d8f0bc56186ad89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:5e:fb:d3:fe:51:b8:82:3c:35:11:99:5a:26:
3b:bb:8b:9f:b5:e1:a9:ea:78:b1:d0:40:33:76:5f:
35:81:1f:25:6f:70:fc:cc:a7:85:f7:52:a8:10:7b:
43:5a:64:78:85:38:2f:dc:9c:80:3b:0a:fa:ef:65:
35:44:a4:e0:98:46:a2:ed:6d:ab:fb:2e:f2:af:d2:
3f:b5:2c:44:c3:31:73:c6:2a:3a:b4:fe:43:96:3a:
bd:7d:a0:77:51:c3:e4:34:d1:f4:ac:4a:ff:3b:b1:
a5:c6:cd:cd:50:67:10:79:02:b1:ff:a7:04:fc:f6:
f5:e7:f1:2c:48:d5:72:03:5d:cc:01:45:4a:0e:b4:
50:85:27:01:75:c1:c6:75:c8:0d:f5:10:06:1c:b6:
e7:d5:9d:79:e0:f2:01:64:b6:11:29:bd:2b:f6:c6:
6b:00:7e:af:13:26:d8:c6:79:97:c9:7d:54:34:d6:
43:28:7e:bf:86:c1:1f:95:6b:d4:b1:e4:bc:da:4a:
65:cf:af:09:00:d9:32:83:0c:ee:5c:30:4a:b8:81:
b4:f9:9c:94:21:ac:71:e5:2b:bc:02:66:76:d8:ca:
6e:8e:1e:de:45:62:26:5b:52:df:57:10:4c:72:92:
4e:49:e0:e5:e8:79:9a:9a:24:4c:b5:1c:f3:1f:90:
ed:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:F5:C8:60:F5:24:B7:F0:72:03:25:23:9D:8F:0B:C5:61:86:AD:89
X509v3 Authority Key Identifier:
keyid:D4:08:CF:09:B6:AB:00:5B:A9:33:B2:A7:A4:A6:D2:7E:A6:BB:72:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1AjPCbarAFupM7KnpKbSfqa7cso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/a6d124-04e6-4def-a16b-d652368299d5/1/1AjPCbarAFupM7KnpKbSfqa7cso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:9d:ae:1e:c7:cf:47:67:f7:5c:6a:65:34:f8:be:f5:74:4f:
6f:4d:f2:0d:e1:4c:0b:c9:bb:36:5c:ac:93:ba:55:4a:ec:7f:
7e:54:9e:05:ee:39:86:67:5d:60:0a:2f:9d:01:d3:05:ff:eb:
a5:2f:5a:a5:50:81:0a:46:c7:0d:92:d8:ea:90:d2:17:16:bc:
39:e8:78:38:3c:4c:be:98:78:00:da:2e:0a:80:61:82:c9:44:
2e:68:72:76:cf:52:2c:a2:d0:69:f5:75:17:92:6e:7e:50:c1:
a5:e2:d6:0b:17:57:ff:86:74:fc:48:06:de:63:d8:c7:d2:8f:
4c:94:25:82:49:f5:6a:be:a8:c9:59:90:8d:53:ce:04:77:7d:
c6:13:0a:8f:b6:d5:c3:f4:73:fd:c6:52:11:b9:27:7a:45:5b:
ee:79:4b:42:8b:0f:4d:6c:fd:d0:c1:c1:84:d9:4c:90:85:2e:
70:a7:a1:17:c8:25:5c:c4:eb:13:0b:84:51:00:84:f8:6c:c8:
ab:96:20:39:17:dc:dd:75:ea:0f:71:82:0f:2f:46:e1:d3:de:
86:48:a6:6e:40:29:29:c5:70:a3:a7:78:27:07:c9:cb:e6:62:
4c:a1:c9:aa:c7:26:79:2f:55:9e:a3:3f:5e:fb:fc:43:22:f0:
a4:4c:77:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:14:50 2025 by rpki-client