Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft
File: CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft (raw, json)
Hash identifier: +cv76iYmXnO+RxnJEYKeXw07k8ITLEpnvi2YjShczAY=
Subject key identifier: 19:4D:9B:FB:F1:60:33:E1:17:2E:DF:16:49:18:D4:3F:33:8C:11:F1
Authority key identifier: 09:35:09:E7:EC:68:FE:2D:94:34:07:D5:DD:12:6A:0F:59:6F:2A:B5
Certificate issuer: /CN=093509e7ec68fe2d943407d5dd126a0f596f2ab5
Certificate serial: 019646324DE9CAD69BB4D50C5482A4B058E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft
Manifest number: 1027
Signing time: Fri 18 Apr 2025 00:00:23 +0000
Manifest this update: Fri 18 Apr 2025 00:00:23 +0000
Manifest next update: Sat 19 Apr 2025 00:00:23 +0000
Files and hashes: 1: CTUJ5-xo_i2UNAfV3RJqD1lvKrU.crl (hash: Iu6y+6UCVmcqFGtAVM+h6NX76pKqS56JEagxodviYgI=)
2: x-sFc0XuZWyC8mb5YkUAH-GfdII.roa (hash: SLT0QNLc8vBCO5UeVhbutYzbWFamBQrhqoa9wxuI2Us=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 18:56:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:46:32:4d:e9:ca:d6:9b:b4:d5:0c:54:82:a4:b0:58:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093509e7ec68fe2d943407d5dd126a0f596f2ab5
Validity
Not Before: Apr 18 00:00:23 2025 GMT
Not After : Apr 19 00:00:23 2025 GMT
Subject: CN=194d9bfbf16033e1172edf164918d43f338c11f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:25:21:84:c3:da:16:32:36:2b:26:39:08:12:
40:03:91:1e:ab:ae:2f:19:33:1c:1b:f3:73:a5:3b:
cb:26:ad:fa:6f:f4:01:89:d3:77:7a:40:97:ec:29:
88:fa:3f:08:eb:27:2b:7e:05:86:c8:29:b7:ce:72:
cf:5e:8e:26:8b:95:48:72:6c:0c:30:b0:06:c8:d6:
c0:52:8b:e7:7b:f5:ba:57:e1:d9:17:e8:03:d6:70:
6a:41:c8:e6:ca:e5:30:a0:8d:28:22:c5:85:ba:34:
e4:18:6f:40:c7:2d:38:55:6d:95:bb:03:e1:03:50:
37:2c:f5:4e:c0:a9:22:b6:e4:6c:b5:63:84:56:0f:
33:c1:7a:23:9f:35:2f:fd:a1:c2:57:48:f0:d1:9a:
5a:c2:78:60:9b:bb:fd:e6:3d:bd:1b:9e:aa:ca:2e:
7b:42:57:81:fc:f6:ab:78:ed:e8:39:c0:15:d9:5c:
9f:c9:15:a5:87:5e:c7:2c:85:b6:f5:f2:4d:19:17:
e4:0a:90:10:05:34:9f:75:ec:2f:e1:1b:5c:94:53:
e1:74:09:4b:7d:4a:50:47:7a:b2:c2:dc:2c:e2:27:
40:5b:ad:0c:d5:dd:33:10:d8:dd:4e:2e:c0:21:90:
4e:0e:ea:e2:c6:b6:88:be:da:26:3b:2e:53:b2:a3:
69:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:4D:9B:FB:F1:60:33:E1:17:2E:DF:16:49:18:D4:3F:33:8C:11:F1
X509v3 Authority Key Identifier:
keyid:09:35:09:E7:EC:68:FE:2D:94:34:07:D5:DD:12:6A:0F:59:6F:2A:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:a4:05:7d:70:19:71:5c:3b:3f:71:47:ae:9c:fc:d2:ce:d4:
d1:04:8b:97:0a:f0:58:7a:94:e0:f1:90:a4:fa:8b:8f:b5:a5:
d0:f5:a7:43:8a:80:fc:74:44:e4:75:18:57:25:fc:68:f2:34:
7f:f3:d3:c5:d9:62:da:e6:7e:20:21:af:15:d1:fd:53:41:83:
34:5b:3c:80:33:cf:c4:ef:13:69:d8:d8:59:37:fb:15:c4:8c:
8b:c7:c5:69:99:cd:0d:92:fb:1d:bd:66:2f:d5:79:61:5d:fe:
41:7a:c2:3d:5d:2e:ba:79:00:d2:d6:33:45:9d:bf:1c:15:6b:
a0:ab:aa:5d:ab:bd:5f:15:5a:0f:23:0b:12:60:f2:97:b9:d8:
5f:6e:ec:11:62:30:ed:eb:23:86:70:c6:a9:f8:c4:bd:fc:8f:
97:90:d5:fc:36:17:44:22:ab:5a:2a:e9:23:01:f1:06:e1:40:
09:07:4b:c2:43:ff:6f:df:5a:7a:5b:4e:5e:40:c7:2e:b2:60:
73:11:7f:88:fd:70:d9:01:c7:36:0c:ad:b8:1f:c0:74:0e:a3:
fa:a2:de:27:bd:4e:61:92:56:51:7b:e1:1d:61:c0:65:85:c7:
05:71:f1:7f:88:0d:e4:3c:bc:c5:64:bd:5c:78:46:94:5f:67:
04:9b:8a:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 04:11:17 2025 by rpki-client