Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.mft
File: JVcuj5OxikAc_s32JYZ4OFjMXxQ.mft (raw, json)
Hash identifier: Qz+/owPGv66wYY8H+v3m3s4HVoJev6hNeJJRlma89Cc=
Subject key identifier: D5:CB:BB:11:F6:DE:9C:BB:92:CA:C2:21:29:C2:C7:57:8D:B5:AD:E3
Authority key identifier: 25:57:2E:8F:93:B1:8A:40:1C:FE:CD:F6:25:86:78:38:58:CC:5F:14
Certificate issuer: /CN=25572e8f93b18a401cfecdf62586783858cc5f14
Certificate serial: 0196545C2679CF777199BAF72C42E13276BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JVcuj5OxikAc_s32JYZ4OFjMXxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.mft
Manifest number: 14FE
Signing time: Sun 20 Apr 2025 18:00:47 +0000
Manifest this update: Sun 20 Apr 2025 18:00:47 +0000
Manifest next update: Mon 21 Apr 2025 18:00:47 +0000
Files and hashes: 1: DTLOnLZIHhlPP7pvWpWEUTLWHQg.roa (hash: QLz4ZYz1buP6/UJvo5YrZ+4VolEyE3vVmr+8wwogqDA=)
2: JVcuj5OxikAc_s32JYZ4OFjMXxQ.crl (hash: YMWK8vZwJFU4Or9cuLtQSKDdgeEGUDAjsJ8OiXIrFVo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/JVcuj5OxikAc_s32JYZ4OFjMXxQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 18:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:5c:26:79:cf:77:71:99:ba:f7:2c:42:e1:32:76:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25572e8f93b18a401cfecdf62586783858cc5f14
Validity
Not Before: Apr 20 18:00:47 2025 GMT
Not After : Apr 21 18:00:47 2025 GMT
Subject: CN=d5cbbb11f6de9cbb92cac22129c2c7578db5ade3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f0:ba:25:8a:0b:b1:6b:29:dd:5b:9f:f8:a1:
8b:12:7f:16:e0:5e:3f:25:40:a5:19:24:b5:88:ca:
8f:60:d4:3c:4e:cc:cf:c1:a2:af:cf:bd:90:cc:33:
5a:60:78:92:ea:64:fa:f0:24:26:95:4e:18:e4:ee:
00:1e:4b:2d:20:bd:1a:77:3c:be:ea:67:99:9a:61:
96:fd:b3:de:38:54:10:95:c5:f1:d1:8d:b7:45:70:
aa:af:d2:d8:ef:78:60:d6:74:df:63:e3:39:c5:0b:
1f:d4:5e:76:63:ee:f0:98:8f:2a:18:f8:4d:d6:70:
47:d8:17:09:ea:5d:73:3d:bc:c4:18:77:ee:74:19:
2d:3c:9b:64:a9:31:dc:ca:9f:81:c9:d9:05:06:ff:
97:cd:85:11:b9:af:23:70:09:5d:96:a9:0f:2a:6a:
1f:3a:02:a5:1f:f2:9c:71:7e:2d:4e:54:a0:ff:aa:
db:a5:f9:0f:46:9a:fa:f2:5c:37:69:a2:ae:65:22:
81:a2:51:a0:ec:24:3f:21:38:24:5f:3b:06:31:bc:
99:e7:bc:70:d8:ff:da:37:85:db:bb:04:5d:83:40:
83:87:97:d3:5e:98:2a:d2:56:ee:46:5a:bd:f6:2b:
d4:a8:e0:f7:5c:a8:b4:4f:d6:a6:ab:f4:cb:ab:d9:
2d:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:CB:BB:11:F6:DE:9C:BB:92:CA:C2:21:29:C2:C7:57:8D:B5:AD:E3
X509v3 Authority Key Identifier:
keyid:25:57:2E:8F:93:B1:8A:40:1C:FE:CD:F6:25:86:78:38:58:CC:5F:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JVcuj5OxikAc_s32JYZ4OFjMXxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/4b1a35-4a84-414b-b073-66d35e525039/1/JVcuj5OxikAc_s32JYZ4OFjMXxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:00:d7:b6:01:00:1d:bc:fe:2a:dd:eb:f9:3a:8d:b9:a9:05:
d6:90:21:d6:6c:36:da:81:59:ac:1a:48:cc:49:96:8b:95:da:
ce:35:a0:81:a1:c5:7b:77:4f:a3:e4:27:ea:82:8f:6a:f7:91:
66:70:e9:65:8a:7c:18:af:68:ae:ba:15:d9:2e:58:b9:a6:70:
35:1f:ab:29:ad:80:21:70:f2:05:c1:fb:6c:4f:b2:5f:7c:2d:
61:2a:d7:94:7b:c6:30:58:e8:41:6b:16:6f:76:1a:b2:4f:c5:
d3:28:41:56:bf:43:f8:3c:ea:3b:bd:63:a4:9c:2f:17:e1:12:
67:6b:2e:bc:6f:8d:e9:75:2f:84:50:9e:6d:a2:e8:09:3d:b7:
d2:54:95:d9:27:35:66:4d:66:48:e8:43:56:08:ac:1b:06:21:
24:e9:d2:16:fd:5d:e5:fb:84:70:94:6e:02:bd:47:36:23:31:
93:b3:a8:3c:3a:37:5a:9f:aa:87:89:c6:41:b3:1c:4c:15:4e:
67:e9:37:fe:ec:fa:7c:89:9e:40:91:ad:aa:fa:ba:f5:7f:7c:
2a:79:0a:49:1c:51:f9:c8:22:34:a7:97:da:47:c4:13:cd:08:
62:01:37:2a:6f:99:0e:b2:72:cb:5f:e5:4c:04:39:a0:2d:9b:
02:6a:73:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:06:14 2025 by rpki-client