Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft
File: AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft (raw, json)
Hash identifier: TVEDL4T4soN/cNfdLCs+d14cADcjFH1HpiHTlXPicLc=
Subject key identifier: AC:4F:A9:32:85:3B:D4:2A:B7:83:D6:D0:1C:89:5C:77:FF:9E:48:8B
Authority key identifier: 01:1D:88:24:6A:B5:7E:20:4D:EA:51:E9:24:3C:67:25:2D:CB:A5:85
Certificate issuer: /CN=011d88246ab57e204dea51e9243c67252dcba585
Certificate serial: 0196515B19ACCDEA50900ACF177801556719
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AR2IJGq1fiBN6lHpJDxnJS3LpYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft
Manifest number: 0943
Signing time: Sun 20 Apr 2025 04:00:46 +0000
Manifest this update: Sun 20 Apr 2025 04:00:46 +0000
Manifest next update: Mon 21 Apr 2025 04:00:46 +0000
Files and hashes: 1: AR2IJGq1fiBN6lHpJDxnJS3LpYU.crl (hash: xHYasUHWEStCtfxkJqKGGDUQZb4M+BLXuVN4bLC4WbQ=)
2: HO4rdY3E48qrjdqnzlEZca_Yebs.roa (hash: kWWt5WfRThziurqE+e5TqB208tDWvrvzVmVg4ZHkDjI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AR2IJGq1fiBN6lHpJDxnJS3LpYU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 04:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:5b:19:ac:cd:ea:50:90:0a:cf:17:78:01:55:67:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=011d88246ab57e204dea51e9243c67252dcba585
Validity
Not Before: Apr 20 04:00:46 2025 GMT
Not After : Apr 21 04:00:46 2025 GMT
Subject: CN=ac4fa932853bd42ab783d6d01c895c77ff9e488b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:78:6a:42:3a:d8:21:94:e6:bc:1c:2d:14:97:
24:66:d8:a7:fe:06:18:1d:81:eb:a5:d8:ff:40:fb:
bb:55:2c:c6:19:54:eb:93:e9:47:3c:31:79:c9:ff:
4f:a1:27:48:d6:dc:9b:d5:55:da:75:1b:5e:d2:10:
59:98:56:35:e9:73:1a:74:bb:d5:94:8c:da:11:14:
bf:6f:b3:a6:62:82:15:96:24:44:04:64:cf:4a:76:
57:4f:f3:ed:c0:aa:c7:a6:07:bb:87:89:20:96:f1:
0e:84:1f:19:4b:08:c4:c0:7a:a1:4b:6a:7b:d5:91:
93:fa:05:36:0f:cb:09:db:cd:e3:55:4f:fe:92:17:
02:e4:53:45:5a:79:c6:06:f1:49:ae:ba:3c:58:cb:
92:cf:d0:91:15:e4:66:d2:09:48:2c:aa:5c:17:15:
a1:d0:25:f8:ed:7d:6c:05:53:d9:bc:04:73:09:47:
fc:54:d9:0c:c4:b3:a1:a1:11:d5:a3:df:ad:ae:72:
ba:80:78:99:68:f1:ea:13:78:05:11:fc:75:82:6e:
77:d1:bd:df:cf:c2:27:a6:fe:09:12:c1:28:95:23:
4d:17:d8:b8:46:fe:30:d7:fe:ab:fa:5f:cb:ec:75:
97:62:88:b5:78:a8:c0:ec:e6:d4:4c:a1:d0:c3:59:
db:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:4F:A9:32:85:3B:D4:2A:B7:83:D6:D0:1C:89:5C:77:FF:9E:48:8B
X509v3 Authority Key Identifier:
keyid:01:1D:88:24:6A:B5:7E:20:4D:EA:51:E9:24:3C:67:25:2D:CB:A5:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AR2IJGq1fiBN6lHpJDxnJS3LpYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:f9:f4:90:57:38:df:3f:c1:e4:5f:ad:52:39:e5:d9:bf:7b:
de:05:d5:d9:e0:56:69:2f:d7:0e:f2:98:7f:1f:63:7c:f8:70:
6c:53:3f:f0:ac:7a:83:f9:ea:4f:98:1c:15:ca:bd:f5:bd:aa:
bf:7f:5a:33:37:5a:b8:bc:ff:a0:02:23:c9:df:4a:d4:5c:ab:
e6:87:e1:4c:93:13:9c:38:5f:3a:35:64:bd:a4:6b:6f:0c:e5:
0e:8b:6e:20:30:e0:69:0b:69:1e:c2:fc:20:9d:10:3d:12:f8:
1f:94:cf:f6:7b:4b:59:27:ff:01:22:34:a7:f0:a0:ff:12:ba:
b1:e3:9e:19:f4:67:f8:19:4a:54:6f:3a:d1:74:b3:81:dd:65:
be:c7:a2:3b:35:54:6d:7f:e6:5f:ac:b4:7e:7d:ad:a9:c8:51:
8f:82:68:80:d3:98:e8:d9:a2:10:3b:f1:cc:63:fe:f2:e0:bb:
32:68:ad:a0:c8:e5:32:d2:03:4c:98:9a:8b:fe:0f:30:90:3f:
37:85:7f:25:2d:fd:28:73:b0:9f:33:7c:34:46:76:f3:20:6f:
55:8f:cd:5e:c9:c7:16:da:da:c4:34:c2:5d:13:4a:46:f1:dc:
05:29:f1:fa:17:31:32:c0:e6:5c:2d:fd:f5:58:e7:ca:17:bb:
73:52:6a:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:12:09 2025 by rpki-client