Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft
File: CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft (raw, json)
Hash identifier: Ms+d9mF+qgL9ah7W+eaP9qjnqYyJT1qh9TDRDsxiJ+4=
Subject key identifier: 0A:B1:8C:01:A2:3E:FC:09:DD:DF:17:54:F5:BF:BD:E8:88:D2:A7:A5
Authority key identifier: 09:35:09:E7:EC:68:FE:2D:94:34:07:D5:DD:12:6A:0F:59:6F:2A:B5
Certificate issuer: /CN=093509e7ec68fe2d943407d5dd126a0f596f2ab5
Certificate serial: 0197470B7048C96BCD4403B2BAC553D12842
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft
Manifest number: 10AC
Signing time: Fri 06 Jun 2025 21:00:21 +0000
Manifest this update: Fri 06 Jun 2025 21:00:21 +0000
Manifest next update: Sat 07 Jun 2025 21:00:21 +0000
Files and hashes: 1: CTUJ5-xo_i2UNAfV3RJqD1lvKrU.crl (hash: o3Md0f/Dfx+6zDhYSYCHCyhIWd5fPXG04GCgcidAJQI=)
2: x-sFc0XuZWyC8mb5YkUAH-GfdII.roa (hash: SLT0QNLc8vBCO5UeVhbutYzbWFamBQrhqoa9wxuI2Us=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft
rsync://rpki.ripe.net/repository/DEFAULT/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:47:0b:70:48:c9:6b:cd:44:03:b2:ba:c5:53:d1:28:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093509e7ec68fe2d943407d5dd126a0f596f2ab5
Validity
Not Before: Jun 6 21:00:21 2025 GMT
Not After : Jun 7 21:00:21 2025 GMT
Subject: CN=0ab18c01a23efc09dddf1754f5bfbde888d2a7a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:b0:74:ac:cf:f8:72:a7:5c:40:42:66:c2:48:
1a:dd:86:45:b0:29:65:02:8f:5e:22:f5:37:51:a2:
18:2f:83:39:bb:77:90:bd:65:fb:69:b5:89:c1:e3:
02:53:31:9a:67:bf:ee:67:23:aa:e7:69:13:63:2a:
85:01:25:0e:d5:5e:85:16:67:11:e0:b5:36:5b:62:
c7:2a:1c:52:02:a1:3d:02:21:85:da:00:bc:01:98:
09:b0:a7:1f:d3:18:3a:27:31:63:36:95:df:6a:f3:
b4:46:0f:1f:1b:be:ec:23:e9:90:47:1c:ba:38:74:
2f:84:ee:d8:a7:db:58:fb:11:ee:6f:64:23:6b:d4:
47:07:be:dd:9d:77:33:e4:68:af:62:fb:1d:83:8e:
96:aa:35:11:de:1f:23:78:01:69:e1:36:8f:ef:8f:
c9:7f:a7:a8:9c:08:8b:b7:83:e0:40:a0:f0:0d:95:
6e:01:79:de:e5:56:d6:37:c5:59:91:7e:1d:47:73:
2b:96:71:6c:33:94:9a:5a:73:41:c0:4d:da:c2:7e:
ca:df:2b:6e:99:46:70:cd:9e:02:6e:6b:eb:0b:0a:
d9:51:f0:22:c8:8b:4a:fa:06:ea:9b:0c:81:51:80:
70:9b:bd:3b:79:b9:df:be:b4:4b:31:6a:67:24:5e:
35:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:B1:8C:01:A2:3E:FC:09:DD:DF:17:54:F5:BF:BD:E8:88:D2:A7:A5
X509v3 Authority Key Identifier:
keyid:09:35:09:E7:EC:68:FE:2D:94:34:07:D5:DD:12:6A:0F:59:6F:2A:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/dfb94c-fdf4-4972-9ad8-7d697337137b/1/CTUJ5-xo_i2UNAfV3RJqD1lvKrU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:ff:a8:b0:17:b8:79:07:61:a2:d5:4f:f5:4f:d4:b3:bb:14:
8b:d3:a3:e7:b7:f6:da:e9:f3:2e:33:31:74:db:f2:1b:49:0d:
c2:d6:1b:58:1c:2a:a8:95:80:89:a8:dc:3e:ca:e4:06:40:59:
02:f8:f2:cf:b0:5c:6a:a4:76:26:53:5c:91:8b:23:62:e7:ec:
b5:42:47:26:ff:ec:8b:f7:23:04:34:00:64:5d:89:7c:75:fe:
c2:00:2f:fa:f4:d8:09:1d:3a:cc:64:9f:38:a6:af:21:47:e5:
e9:17:5b:84:4b:c7:80:16:83:1d:5d:35:6d:04:8f:d9:79:22:
9e:28:24:76:79:59:4a:67:f5:6a:9c:79:14:ec:d3:06:76:54:
7f:c3:9d:08:54:ed:cd:48:c7:87:22:78:84:71:19:78:04:af:
fd:5e:9d:98:86:22:a8:91:53:e2:08:ea:18:ae:15:6f:80:96:
ce:da:82:95:dc:99:a7:ea:d0:96:53:76:1f:bd:9b:26:40:f0:
ca:60:8b:a1:c1:08:14:78:b7:d3:30:08:fb:97:b1:da:45:e2:
85:46:41:ec:f9:5b:8e:f1:f1:61:87:8d:17:98:2c:05:69:79:
7a:00:fb:05:f7:99:6d:f7:f1:a3:7f:fc:37:6d:eb:4c:a2:19:
eb:20:0c:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:17:46 2025 by rpki-client