Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
File: DKtCI5upRIWzELVRXczH_u2SIFw.mft (raw, json)
Hash identifier: NLp4BiOZXJeRAOkmMPtoTv2HEgi8zkXkqczuF6k90dU=
Subject key identifier: 68:23:A2:3D:A0:1E:33:91:5A:6E:73:0E:66:52:C7:1F:C7:E4:7C:EE
Authority key identifier: 0C:AB:42:23:9B:A9:44:85:B3:10:B5:51:5D:CC:C7:FE:ED:92:20:5C
Certificate issuer: /CN=0cab42239ba94485b310b5515dccc7feed92205c
Certificate serial: 01965538574A1E42E0505CE51399A2540653
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
Manifest number: 143D
Signing time: Sun 20 Apr 2025 22:01:17 +0000
Manifest this update: Sun 20 Apr 2025 22:01:17 +0000
Manifest next update: Mon 21 Apr 2025 22:01:17 +0000
Files and hashes: 1: DKtCI5upRIWzELVRXczH_u2SIFw.crl (hash: QebB7WoeKKhi646GzRxFloDkE4dxm/fy1QnOO3qErSM=)
2: U2UqHVAbFqT-DpJ2VeePtrrb8ik.roa (hash: pXyykD/gM3hsVstV7hOq0+tHLwMN2H8uNSnz2A5Kgw4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:38:57:4a:1e:42:e0:50:5c:e5:13:99:a2:54:06:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cab42239ba94485b310b5515dccc7feed92205c
Validity
Not Before: Apr 20 22:01:17 2025 GMT
Not After : Apr 21 22:01:17 2025 GMT
Subject: CN=6823a23da01e33915a6e730e6652c71fc7e47cee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:bf:4e:a4:18:0c:c7:b6:cd:54:83:a0:3d:31:
12:a4:fb:09:d0:9a:b2:b4:ca:b0:49:d3:0c:7d:88:
0d:7f:ba:0b:ce:0d:2a:32:0e:bf:06:c9:a6:58:14:
0f:85:41:9e:f2:95:02:99:fe:19:cb:6c:85:75:24:
ec:30:fe:80:25:bc:07:44:36:95:41:03:b5:d5:93:
28:30:01:2f:53:3c:d6:ee:3f:f7:19:7c:e5:f9:23:
fa:dd:2f:27:d4:00:e7:26:ff:3c:13:b9:70:49:4d:
a6:0b:31:b7:7b:3a:5e:04:97:3b:a3:3b:c9:09:9d:
b9:79:7c:e6:80:c9:e5:c7:a4:d8:1b:bb:b6:f9:3b:
e5:d8:40:9c:65:1d:ed:2e:9e:89:fa:ae:d2:b4:8f:
32:6a:23:6f:e4:bf:59:5a:c0:f6:cb:3f:60:67:f4:
ae:2c:7a:07:26:d8:83:5e:36:16:45:b0:7c:dc:56:
f4:d5:83:c4:57:72:d8:82:82:69:a7:3b:8d:08:60:
1e:25:29:a2:c6:d3:41:62:f0:1b:f0:75:6b:dd:2f:
89:47:cd:86:7d:2b:b6:d3:d5:c4:f9:ca:0b:6e:e8:
24:ec:86:9b:57:b6:03:69:05:f4:68:89:d9:f3:13:
90:40:a4:c1:5d:ca:28:f7:fb:b9:e0:b4:a0:47:c7:
92:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:23:A2:3D:A0:1E:33:91:5A:6E:73:0E:66:52:C7:1F:C7:E4:7C:EE
X509v3 Authority Key Identifier:
keyid:0C:AB:42:23:9B:A9:44:85:B3:10:B5:51:5D:CC:C7:FE:ED:92:20:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DKtCI5upRIWzELVRXczH_u2SIFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/aab62e-408c-483d-95fa-cc119d277148/1/DKtCI5upRIWzELVRXczH_u2SIFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:d3:55:a4:9d:81:f0:73:d2:f5:d2:d8:f8:db:9f:36:20:d5:
aa:23:11:d8:54:f2:04:c3:e6:b9:49:98:21:b2:94:b6:01:1b:
f1:5d:e8:07:06:ba:c1:08:ac:89:33:84:3c:6e:de:1d:1a:57:
42:b3:b8:b7:83:9c:af:60:a2:f1:ef:7e:88:28:c1:83:69:e7:
5d:11:17:28:d8:9c:ea:0e:5a:2f:80:d8:90:76:df:04:9a:d8:
92:1a:e3:b8:a0:f1:f9:30:a9:56:37:74:09:ff:15:52:55:6e:
87:d6:fa:a7:98:65:5c:6c:22:09:3b:8a:22:34:82:a7:98:53:
47:d5:17:e0:6c:51:2d:3b:60:45:29:12:52:5f:f2:c8:b4:23:
8d:b8:69:13:99:e6:42:75:00:dc:78:12:21:a6:a4:52:28:41:
a9:1c:8d:60:dc:d0:8e:18:9d:34:99:c7:49:68:c0:e5:3d:b4:
7c:96:91:30:d6:7f:21:f2:85:6b:46:78:5e:76:b6:86:91:1f:
94:13:18:91:0c:63:14:20:6f:e7:69:75:fd:38:06:8c:a4:d6:
c9:49:21:4e:1f:bb:af:2d:68:2e:fa:97:39:9b:78:f4:4b:d9:
89:2d:4e:75:a0:07:17:e3:f8:77:ab:bb:12:b2:a5:62:5c:33:
6d:fc:1d:52
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZVOFdKHkLgUFzlE5miVAZTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjYWI0MjIzOWJhOTQ0ODViMzEwYjU1MTVkY2NjN2ZlZWQ5
MjIwNWMwHhcNMjUwNDIwMjIwMTE3WhcNMjUwNDIxMjIwMTE3WjAzMTEwLwYDVQQD
Eyg2ODIzYTIzZGEwMWUzMzkxNWE2ZTczMGU2NjUyYzcxZmM3ZTQ3Y2VlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl79OpBgMx7bNVIOgPTESpPsJ0Jqy
tMqwSdMMfYgNf7oLzg0qMg6/BsmmWBQPhUGe8pUCmf4Zy2yFdSTsMP6AJbwHRDaV
QQO11ZMoMAEvUzzW7j/3GXzl+SP63S8n1ADnJv88E7lwSU2mCzG3ezpeBJc7ozvJ
CZ25eXzmgMnlx6TYG7u2+Tvl2ECcZR3tLp6J+q7StI8yaiNv5L9ZWsD2yz9gZ/Su
LHoHJtiDXjYWRbB83Fb01YPEV3LYgoJppzuNCGAeJSmixtNBYvAb8HVr3S+JR82G
fSu209XE+coLbugk7IabV7YDaQX0aInZ8xOQQKTBXcoo9/u54LSgR8eSNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGgjoj2gHjORWm5zDmZSxx/H5HzuMB8GA1UdIwQY
MBaAFAyrQiObqUSFsxC1UV3Mx/7tkiBcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvREt0Q0k1dXBSSVd6RUxWUlhjekhfdTJTSUZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9hYWI2MmUtNDA4Yy00ODNkLTk1ZmEt
Y2MxMTlkMjc3MTQ4LzEvREt0Q0k1dXBSSVd6RUxWUlhjekhfdTJTSUZ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi9hYWI2MmUtNDA4Yy00ODNkLTk1ZmEtY2MxMTlkMjc3MTQ4
LzEvREt0Q0k1dXBSSVd6RUxWUlhjekhfdTJTSUZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGNNVpJ2B
8HPS9dLY+NufNiDVqiMR2FTyBMPmuUmYIbKUtgEb8V3oBwa6wQisiTOEPG7eHRpX
QrO4t4Ocr2Ci8e9+iCjBg2nnXREXKNic6g5aL4DYkHbfBJrYkhrjuKDx+TCpVjd0
Cf8VUlVuh9b6p5hlXGwiCTuKIjSCp5hTR9UX4GxRLTtgRSkSUl/yyLQjjbhpE5nm
QnUA3HgSIaakUihBqRyNYNzQjhidNJnHSWjA5T20fJaRMNZ/IfKFa0Z4Xna2hpEf
lBMYkQxjFCBv52l1/TgGjKTWyUkhTh+7ry1oLvqXOZt49EvZiS1OdaAHF+P4d6u7
ErKlYlwzbfwdUg==
-----END CERTIFICATE-----
Generated at Mon Apr 21 01:21:20 2025 by rpki-client