Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
File: U4Vcjs6b1vjjlAICISzgmwX1-KA.mft (raw, json)
Hash identifier: VLUkhRdLnmGjsJMwd3/Z2mHSGdRNYjhSxjeMXZY0D78=
Subject key identifier: 5B:8C:9A:1B:C0:CF:20:ED:40:CF:8D:FC:57:A6:6C:D6:56:FE:F7:9E
Authority key identifier: 53:85:5C:8E:CE:9B:D6:F8:E3:94:02:02:21:2C:E0:9B:05:F5:F8:A0
Certificate issuer: /CN=53855c8ece9bd6f8e3940202212ce09b05f5f8a0
Certificate serial: 019650115B8F88903EDE08925EF0CBBEE628
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
Manifest number: 118E
Signing time: Sat 19 Apr 2025 22:00:36 +0000
Manifest this update: Sat 19 Apr 2025 22:00:36 +0000
Manifest next update: Sun 20 Apr 2025 22:00:36 +0000
Files and hashes: 1: F1LbGv2MkXWWefxkT_CtpriNBr4.roa (hash: RRHmy9X/CGJW+TnFMQF3NirLVJyyI3P64OOzvqQr238=)
2: U4Vcjs6b1vjjlAICISzgmwX1-KA.crl (hash: YQkbM9QzfQ86sUaIlExajNTHPtypWCI2DsqgaTfLRjw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:11:5b:8f:88:90:3e:de:08:92:5e:f0:cb:be:e6:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53855c8ece9bd6f8e3940202212ce09b05f5f8a0
Validity
Not Before: Apr 19 22:00:36 2025 GMT
Not After : Apr 20 22:00:36 2025 GMT
Subject: CN=5b8c9a1bc0cf20ed40cf8dfc57a66cd656fef79e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f1:5e:8e:1b:17:7d:c1:58:c3:87:85:2e:ee:
10:66:13:aa:60:7d:ba:1b:d7:11:5d:89:e1:46:58:
d7:68:b1:fb:6e:4b:77:20:fa:a2:51:46:fa:b8:d8:
c2:a3:21:b2:f9:3e:c5:15:34:38:63:5d:b9:11:e2:
98:6c:08:81:59:b7:83:a0:c9:c2:72:b8:bc:b3:86:
1d:fd:46:05:a6:42:32:ae:d5:b7:b2:10:f1:73:32:
67:b5:b7:dc:ab:58:1d:0f:a2:ea:3c:86:8c:df:83:
23:f6:36:0f:69:c8:78:ff:5e:20:0c:11:39:e6:67:
89:9d:46:3b:ef:25:df:c0:03:bb:d8:2f:e0:ee:4a:
f9:bf:31:d0:73:90:f0:dc:c5:7e:5d:fb:30:a9:8b:
d6:92:42:24:17:86:54:71:df:f6:12:a1:84:26:8f:
67:ef:fe:62:a9:51:5d:d5:1d:6b:de:ea:4c:0a:73:
be:91:8b:e7:96:9e:3c:9c:cb:d7:e3:f9:c6:e6:07:
35:59:db:52:87:7d:e3:cf:4d:35:df:aa:bf:8b:f4:
56:09:d6:ca:dd:49:31:8b:f9:ac:d4:34:bc:6c:7f:
91:fc:fa:58:16:5f:2b:50:0c:7c:99:6c:2e:33:6c:
38:65:eb:47:21:16:7f:92:83:ed:de:5a:41:bc:15:
80:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:8C:9A:1B:C0:CF:20:ED:40:CF:8D:FC:57:A6:6C:D6:56:FE:F7:9E
X509v3 Authority Key Identifier:
keyid:53:85:5C:8E:CE:9B:D6:F8:E3:94:02:02:21:2C:E0:9B:05:F5:F8:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U4Vcjs6b1vjjlAICISzgmwX1-KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/8336b0-cbe4-4da2-841b-1cefd1fa10a6/1/U4Vcjs6b1vjjlAICISzgmwX1-KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:6c:b4:41:26:1c:a8:2e:88:e9:78:74:4a:e6:2a:0f:80:f4:
a7:21:1b:ca:81:3b:c9:7c:50:1c:28:3f:6e:76:bd:de:78:08:
9d:b0:f0:74:f8:00:aa:60:dc:ab:a3:d6:50:ec:18:59:d5:7e:
05:4f:79:6d:7c:6f:54:24:84:66:4a:8f:96:c6:95:46:1b:e8:
ba:7e:86:2f:e7:ef:03:47:2e:0b:3e:99:77:fe:08:ed:9d:82:
6a:7f:d2:7d:ac:f2:f2:a1:b2:0e:d7:75:61:e0:ee:3a:70:32:
6f:32:2b:64:ed:82:92:29:5e:69:ab:ff:a6:b1:0e:c9:1b:54:
7c:67:56:dd:e6:8d:3b:cd:dc:06:33:58:6c:72:4f:f4:10:47:
42:9b:7e:6c:d5:f8:53:84:de:a4:be:6e:29:c1:96:0d:5d:d6:
45:af:4a:09:14:84:59:58:68:07:72:9e:47:12:91:28:91:04:
03:2c:e9:86:5a:44:0e:d2:0d:ab:fd:7b:59:b7:54:fe:1a:4d:
31:fa:27:c5:4f:f1:7a:05:87:b2:20:d8:8e:73:a0:af:45:16:
32:e2:ad:34:d4:89:03:66:cc:8b:37:6b:63:ca:03:81:d4:68:
9a:52:83:29:8d:db:7f:90:a5:a8:21:81:05:92:30:1e:fa:c0:
7b:b2:59:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:03:15 2025 by rpki-client