Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
File: Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft (raw, json)
Hash identifier: mad6CtuMXP5t9R9ZR/ac7h7jdAVrMO7e0UidZUDtgEw=
Subject key identifier: CA:66:B5:E9:BE:DA:42:58:B4:ED:FB:BA:F9:58:4A:E4:CB:F1:6B:E1
Authority key identifier: 0A:CF:3D:CC:EA:31:7E:35:E7:05:41:A4:8B:25:86:A4:D3:2B:D9:4C
Certificate issuer: /CN=0acf3dccea317e35e70541a48b2586a4d32bd94c
Certificate serial: 01965123D6EAC12C2DF883BC228484B9CD6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
Manifest number: 0572
Signing time: Sun 20 Apr 2025 03:00:25 +0000
Manifest this update: Sun 20 Apr 2025 03:00:25 +0000
Manifest next update: Mon 21 Apr 2025 03:00:25 +0000
Files and hashes: 1: Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl (hash: sLDB1ncr3cPksoZ8Vp/hnLLpSDDkLacrBKm9n3dp3ps=)
2: PveX9WXxCJj9e18L9V5LXcSlf4I.roa (hash: Gc7ehRUF/Atprjxx4oQFsUeoQdkyLlSY7XL+/gL4J0s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:23:d6:ea:c1:2c:2d:f8:83:bc:22:84:84:b9:cd:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0acf3dccea317e35e70541a48b2586a4d32bd94c
Validity
Not Before: Apr 20 03:00:25 2025 GMT
Not After : Apr 21 03:00:25 2025 GMT
Subject: CN=ca66b5e9beda4258b4edfbbaf9584ae4cbf16be1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2e:52:2c:f2:21:5e:d7:5b:4b:a7:5e:99:16:
c4:83:d8:3f:6e:b9:66:ab:2e:05:64:7a:2d:43:75:
a0:c7:c4:f8:54:72:5f:45:4e:23:ec:e6:bb:79:73:
57:5a:b7:23:5d:ab:f8:d2:1c:75:05:51:35:03:c0:
15:69:99:e9:92:76:e1:ed:ab:e1:dc:6d:a1:c5:e0:
42:8e:de:be:04:a6:64:89:a4:7e:13:f2:78:23:1a:
48:dd:47:89:71:1c:a5:39:66:d9:1d:05:b4:f6:24:
fa:00:dc:d3:7a:bc:b8:fe:72:95:1c:70:16:bf:55:
88:25:28:ee:28:fd:97:8c:c1:e3:47:8d:a2:33:85:
65:ce:ab:23:26:95:a5:4a:09:6c:b1:89:f8:20:58:
4a:78:05:fc:58:85:5e:36:25:53:e9:6e:1b:0a:27:
52:42:ab:28:90:5b:52:a6:d0:33:59:a9:a1:bf:89:
e8:80:a1:b4:59:d0:c7:09:38:c8:a1:f9:3f:12:3f:
87:05:fe:03:fb:e0:b6:c9:df:30:c8:c8:18:ef:28:
88:c4:ce:42:90:ea:8c:d0:44:d5:44:ba:dd:b9:f6:
34:56:ed:82:c6:5d:bc:97:31:dc:37:b1:2c:48:60:
47:06:b9:09:e0:e0:3f:96:bd:b3:b3:d7:ee:bb:dc:
75:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:66:B5:E9:BE:DA:42:58:B4:ED:FB:BA:F9:58:4A:E4:CB:F1:6B:E1
X509v3 Authority Key Identifier:
keyid:0A:CF:3D:CC:EA:31:7E:35:E7:05:41:A4:8B:25:86:A4:D3:2B:D9:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/21bbf7-cbf2-4198-afcc-4be4dd6cd2ec/1/Cs89zOoxfjXnBUGkiyWGpNMr2Uw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:b4:52:c4:4f:e2:7d:e5:5b:2f:7d:c1:9d:b6:ec:d0:8f:ec:
47:1e:db:ef:19:3a:37:73:87:91:01:c3:e9:62:41:c3:37:bb:
49:b4:03:9d:2b:87:74:23:78:20:06:b2:f7:b6:11:40:48:82:
20:46:4f:eb:8c:2c:e9:a1:9d:75:87:e3:f8:15:a6:b5:ce:b4:
f4:32:34:08:a7:82:a1:72:76:30:67:18:10:9c:92:34:eb:b9:
82:57:22:95:73:e4:ca:d4:52:be:0f:4b:35:be:c4:51:0b:cb:
a0:0b:fc:5a:33:d6:e1:a7:d6:31:eb:15:b9:c8:b0:97:c0:82:
0a:ea:f9:e7:ae:c2:53:c0:2b:b9:89:d4:73:0e:08:d5:7a:ca:
a3:c8:3d:cd:82:be:4c:47:85:c3:dc:12:08:ce:51:87:bc:a0:
ab:93:87:68:67:b6:dd:e2:7a:f2:76:5d:3c:e6:0b:1a:1e:8e:
b4:34:b1:7c:02:42:a6:61:0c:59:68:4f:e0:e5:ac:dd:c5:6d:
d9:45:df:36:ee:86:60:ed:85:d0:c4:13:9a:ff:8c:c4:63:d5:
09:42:3e:08:14:d3:48:09:c4:58:ef:0e:1e:1f:a6:e5:7f:dc:
2e:9a:cf:a9:97:f1:6b:ce:0f:10:55:2f:6a:bf:a1:34:ce:ee:
cf:35:2a:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 05:00:56 2025 by rpki-client