Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/ab8137-3753-4eca-a94e-8c2130a35016/1/JK_wO1q_sXhyXKbpD149mMumjr8.mft
File: JK_wO1q_sXhyXKbpD149mMumjr8.mft (raw, json)
Hash identifier: KLoWOQiukaqEcPC4zF2E/7ScwDCwFrLfDNsjCESThVU=
Subject key identifier: DE:C7:E8:95:0C:6E:C5:95:FA:C1:8A:CD:A9:56:05:B8:A5:12:B6:84
Authority key identifier: 24:AF:F0:3B:5A:BF:B1:78:72:5C:A6:E9:0F:5E:3D:98:CB:A6:8E:BF
Certificate issuer: /CN=24aff03b5abfb178725ca6e90f5e3d98cba68ebf
Certificate serial: 01974D7C079428ECDE872247A2FD6D853F26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JK_wO1q_sXhyXKbpD149mMumjr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/ab8137-3753-4eca-a94e-8c2130a35016/1/JK_wO1q_sXhyXKbpD149mMumjr8.mft
Manifest number: 0681
Signing time: Sun 08 Jun 2025 03:01:03 +0000
Manifest this update: Sun 08 Jun 2025 03:01:03 +0000
Manifest next update: Mon 09 Jun 2025 03:01:03 +0000
Files and hashes: 1: JK_wO1q_sXhyXKbpD149mMumjr8.crl (hash: 7mH1ADj5rf9S/cU6W2t0BWZi/4xWlf0yU3k47h8cBbM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/ab8137-3753-4eca-a94e-8c2130a35016/1/JK_wO1q_sXhyXKbpD149mMumjr8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/ab8137-3753-4eca-a94e-8c2130a35016/1/JK_wO1q_sXhyXKbpD149mMumjr8.mft
rsync://rpki.ripe.net/repository/DEFAULT/JK_wO1q_sXhyXKbpD149mMumjr8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:7c:07:94:28:ec:de:87:22:47:a2:fd:6d:85:3f:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24aff03b5abfb178725ca6e90f5e3d98cba68ebf
Validity
Not Before: Jun 8 03:01:03 2025 GMT
Not After : Jun 9 03:01:03 2025 GMT
Subject: CN=dec7e8950c6ec595fac18acda95605b8a512b684
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e2:41:9c:8a:98:59:47:73:1f:c1:6e:9a:11:
03:a0:42:9a:b7:0e:03:cd:71:8d:7b:65:1e:a3:93:
c2:f9:da:5f:77:b3:3d:cd:4d:90:e0:04:5b:dd:5e:
1c:8a:16:67:d8:76:35:45:79:ed:9f:1b:c2:88:6e:
8b:0d:8f:ca:8b:4d:02:da:c2:4f:66:65:05:57:bf:
6e:81:77:e9:e5:ce:3d:a5:7f:3f:83:47:ed:0e:cc:
b8:47:5f:9b:99:10:80:6e:67:6d:88:93:52:c0:f4:
6a:e4:fa:9d:0e:9d:a5:61:72:e7:53:d4:89:60:62:
9f:d9:2e:ae:a2:87:ec:78:e2:b1:6c:b5:74:a6:70:
e4:80:ce:e3:c2:a4:95:9d:ba:c0:f7:6b:3f:c9:bc:
b4:0b:95:cf:33:e0:51:91:a1:0e:7c:60:d3:cf:02:
16:36:11:52:c5:12:2d:70:98:06:a2:68:bb:f8:34:
2e:77:fd:a0:43:16:87:3b:d8:88:c0:9b:80:1f:8a:
1a:c6:4b:d6:89:b8:45:60:40:99:c8:48:d5:ea:dd:
63:81:e6:2e:ab:32:5e:80:bc:c1:a7:46:27:7a:3a:
2b:7a:fc:f9:f8:71:89:4f:1b:10:54:f8:3d:d5:84:
a0:7c:20:ac:3e:4f:cd:bd:2e:6a:a8:38:1d:9d:20:
2f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:C7:E8:95:0C:6E:C5:95:FA:C1:8A:CD:A9:56:05:B8:A5:12:B6:84
X509v3 Authority Key Identifier:
keyid:24:AF:F0:3B:5A:BF:B1:78:72:5C:A6:E9:0F:5E:3D:98:CB:A6:8E:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JK_wO1q_sXhyXKbpD149mMumjr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ab8137-3753-4eca-a94e-8c2130a35016/1/JK_wO1q_sXhyXKbpD149mMumjr8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ab8137-3753-4eca-a94e-8c2130a35016/1/JK_wO1q_sXhyXKbpD149mMumjr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:9c:51:2e:48:20:4a:30:33:34:9e:ee:35:55:b1:85:13:ee:
43:5f:d6:c6:2e:af:76:07:95:f5:1c:08:7d:c3:e3:51:6d:12:
e7:78:64:9f:13:71:f7:41:c2:26:0b:ea:89:f2:fa:ed:23:8d:
71:ae:2a:87:77:05:ca:a9:22:33:9b:92:ec:65:ae:e7:b0:e9:
c5:fc:01:a4:ed:29:fd:55:51:5c:5a:d3:b3:36:26:ed:0f:ac:
59:7f:e0:88:f0:4c:98:4a:95:0e:5d:ae:e9:41:b5:bf:0a:e7:
1b:82:05:eb:76:02:e4:56:bf:0c:4d:3e:3f:70:0e:08:50:3f:
ea:c0:e7:5f:84:a2:f6:03:be:61:c3:3d:55:24:18:4b:9c:1b:
57:71:fd:11:47:d6:74:77:ba:6e:75:94:6c:66:e8:71:9f:78:
d5:15:5a:c6:ff:06:a1:07:13:e7:35:2e:c5:fa:60:1a:30:ee:
fc:1f:8d:c3:06:00:25:a4:75:ea:4b:e6:db:91:6d:78:1a:24:
db:9c:24:e4:80:ae:07:4d:a2:d3:82:8c:9a:b4:ba:6c:1e:1b:
72:04:65:7c:b5:44:04:03:c6:30:23:cf:1f:f7:55:75:23:1b:
71:df:e2:c9:98:21:d3:fa:b2:ff:74:8f:ec:3c:e1:81:bd:92:
b9:ad:ff:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:15:04 2025 by rpki-client