Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft
File: 4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft (raw, json)
Hash identifier: j/Rjn1kS5KJnjwPc20/7UqXTWt+SqoBJYlTi7gH+6HA=
Subject key identifier: 5E:A5:90:7F:C2:F5:F2:58:92:A2:7D:6E:A0:24:47:B8:C0:81:F8:59
Authority key identifier: E1:20:2E:2E:4B:65:DB:3B:1F:E5:81:CD:B1:99:01:0B:2E:90:CF:78
Certificate issuer: /CN=e1202e2e4b65db3b1fe581cdb199010b2e90cf78
Certificate serial: 019653B7437B65DE786F04F16254F04AAD01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4SAuLktl2zsf5YHNsZkBCy6Qz3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft
Manifest number: 0C7E
Signing time: Sun 20 Apr 2025 15:00:41 +0000
Manifest this update: Sun 20 Apr 2025 15:00:41 +0000
Manifest next update: Mon 21 Apr 2025 15:00:41 +0000
Files and hashes: 1: 4SAuLktl2zsf5YHNsZkBCy6Qz3g.crl (hash: StCLlXLRWFFUtER8RYpLMZ9gxmwvIT0jx0Dl5ZD8NOs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft
rsync://rpki.ripe.net/repository/DEFAULT/4SAuLktl2zsf5YHNsZkBCy6Qz3g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 15:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:b7:43:7b:65:de:78:6f:04:f1:62:54:f0:4a:ad:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1202e2e4b65db3b1fe581cdb199010b2e90cf78
Validity
Not Before: Apr 20 15:00:41 2025 GMT
Not After : Apr 21 15:00:41 2025 GMT
Subject: CN=5ea5907fc2f5f25892a27d6ea02447b8c081f859
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c1:ec:a7:2e:d8:8b:ae:01:73:76:46:0f:fa:
69:c1:50:a4:04:18:8f:50:bc:96:3d:76:ad:f0:e6:
ea:70:46:57:88:46:b8:e0:7b:d5:15:47:33:11:d1:
c9:a8:45:d8:4d:56:cd:01:1e:8c:e1:a8:ac:0b:c5:
35:45:9c:25:ca:d6:7d:f1:39:19:08:e5:be:65:6e:
47:f7:a5:55:0e:95:39:3b:33:b8:16:48:51:31:60:
f7:9c:57:02:f1:10:3d:c8:90:1b:25:d2:6a:aa:8d:
07:c4:86:b5:ca:fd:66:bc:86:f2:85:2c:31:dd:9c:
3b:bd:a6:f5:66:01:cb:f0:2e:8d:18:7d:4b:ac:b4:
49:1e:c2:ac:93:9a:ba:f3:c9:46:3c:8d:54:ac:20:
ee:ea:96:47:6b:2e:d7:55:1d:5c:b8:48:c4:ad:d8:
9e:99:8c:e1:95:91:82:1c:54:3f:ae:f5:e5:f3:0c:
60:17:81:2d:db:44:bd:3f:62:ba:8c:a9:a5:27:9e:
de:50:45:a8:5f:36:2d:a6:7b:8b:9d:98:4c:a5:40:
1f:9d:cf:18:95:72:a8:88:04:50:4a:fc:57:68:d7:
da:28:77:a5:8a:49:53:63:0d:60:b3:bd:ae:3a:00:
ef:f7:03:67:68:5f:06:25:55:99:a1:57:6e:fd:9b:
79:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:A5:90:7F:C2:F5:F2:58:92:A2:7D:6E:A0:24:47:B8:C0:81:F8:59
X509v3 Authority Key Identifier:
keyid:E1:20:2E:2E:4B:65:DB:3B:1F:E5:81:CD:B1:99:01:0B:2E:90:CF:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4SAuLktl2zsf5YHNsZkBCy6Qz3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:4e:22:dc:8c:df:c0:a4:a9:38:be:3e:75:43:6c:87:8c:9b:
79:e6:be:76:31:89:4b:86:94:a7:93:36:7f:c8:cb:55:a6:2f:
2c:0d:bd:b3:86:6f:cc:ce:ea:06:d9:80:67:2b:65:da:9a:7b:
61:c4:d7:38:d7:99:3b:6d:7a:96:3f:2c:48:19:94:f1:1f:d1:
3d:02:95:d8:1a:86:4e:c4:37:f4:2e:8c:37:e4:73:f2:9d:0e:
e5:23:42:d3:e8:f4:9b:60:15:34:9f:87:72:83:8c:c4:60:d5:
a6:b2:a7:ae:01:69:ed:10:fe:32:b1:1e:48:33:ac:0f:fd:41:
c8:dd:f7:3f:91:6a:a6:b8:27:a1:20:1f:be:0a:ac:82:f1:cf:
45:7f:e2:6c:99:60:62:be:12:e7:5f:ed:9b:1f:47:a3:d8:c6:
e6:54:d7:06:6c:41:b1:c3:3c:71:9b:ff:f3:d1:55:93:6f:6f:
fe:47:34:95:33:a9:a5:bf:39:63:4c:f4:91:91:37:04:7e:ae:
11:44:b2:59:47:c2:3d:f6:22:1c:c0:38:d4:56:09:a5:22:32:
0a:6b:a8:f1:5b:3c:1b:43:81:6d:5d:da:fd:89:25:71:c1:77:
80:55:ac:a8:19:e0:6f:23:ee:8e:a0:f2:4f:90:f9:6c:25:58:
70:a2:39:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:23:03 2025 by rpki-client