Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
File: 1-qWsXSKtkHinLhNplihyR-nx4TE.mft (raw, json)
Hash identifier: h1SdFgzum2Jk11Xtk6ifxqu/MdeM3mLnrhHJ9UC4RZU=
Subject key identifier: 44:97:54:26:17:70:E1:99:F9:96:E1:52:81:52:95:4A:6A:E6:44:E7
Authority key identifier: FA:A5:AC:5D:22:AD:90:78:A7:2E:13:69:96:28:72:47:E9:F1:E1:31
Certificate issuer: /CN=faa5ac5d22ad9078a72e136996287247e9f1e131
Certificate serial: 019654C99FD2637711D2E4A67FED78D28208
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
Manifest number: 102B
Signing time: Sun 20 Apr 2025 20:00:21 +0000
Manifest this update: Sun 20 Apr 2025 20:00:21 +0000
Manifest next update: Mon 21 Apr 2025 20:00:21 +0000
Files and hashes: 1: 1-qWsXSKtkHinLhNplihyR-nx4TE.crl (hash: Po2m+vbhTBMZ+lkM8B4qQfTilsuSz8tubqUdJ35P2LI=)
2: NhnMYjAslLVa-AUlcKz__rn95zo.roa (hash: tZEX0EAU3kMvQjAQCJnIAbh87GSUNy8524Ozv2q7nvE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:c9:9f:d2:63:77:11:d2:e4:a6:7f:ed:78:d2:82:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=faa5ac5d22ad9078a72e136996287247e9f1e131
Validity
Not Before: Apr 20 20:00:21 2025 GMT
Not After : Apr 21 20:00:21 2025 GMT
Subject: CN=449754261770e199f996e1528152954a6ae644e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5c:8d:f2:5b:37:d0:ea:43:79:69:bd:bc:50:
4e:73:89:b1:35:9b:63:26:8f:6a:35:fb:26:7a:3b:
da:8c:c9:37:d8:07:e8:35:bd:68:5d:1d:be:61:55:
99:a7:a1:f1:c2:80:9b:a9:59:cb:e4:5f:99:2c:ea:
91:2f:06:64:72:a1:ef:e2:73:ca:b0:bb:d8:f6:69:
54:be:a9:54:93:86:fc:9f:00:0b:37:d5:4c:e1:45:
bb:39:b8:7d:94:a7:7c:77:26:c5:e5:32:c5:1f:67:
28:89:e4:16:36:3f:85:79:80:50:d1:4a:d5:57:d9:
97:72:be:76:e1:1d:e8:dd:56:bf:50:a7:45:32:16:
3f:83:9e:5e:3c:2e:1e:74:5c:a4:93:bf:db:ee:e5:
bc:f2:7d:f1:4a:a1:e8:36:23:f3:b9:dc:d5:88:44:
74:00:0b:3b:48:40:58:a5:14:32:dd:3d:e8:09:69:
bb:a0:84:8b:37:f2:e6:ad:43:4a:ad:65:91:3c:41:
c2:da:f6:9d:69:92:e7:b7:8c:8c:e4:6e:85:e5:91:
89:a7:ff:53:f9:52:ad:01:ed:da:e8:3b:5e:31:37:
5c:b4:1c:bf:18:6c:3b:a4:fe:4b:4e:c6:2c:8b:6a:
2d:35:64:7d:9f:7e:3c:e3:13:90:4b:a5:ff:3c:a1:
2d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:97:54:26:17:70:E1:99:F9:96:E1:52:81:52:95:4A:6A:E6:44:E7
X509v3 Authority Key Identifier:
keyid:FA:A5:AC:5D:22:AD:90:78:A7:2E:13:69:96:28:72:47:E9:F1:E1:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:20:e5:8f:61:f8:fd:cd:79:bc:b3:ed:15:ef:6a:1c:52:f8:
41:76:4d:b9:f5:4f:9d:f5:b9:4f:40:88:6a:ff:7f:19:b0:ae:
5f:12:93:bb:c2:63:2c:60:f3:a8:4e:e9:1b:83:03:08:b8:28:
98:b7:a5:b0:ef:2f:f5:56:e1:5e:2d:a0:69:12:13:2a:6a:71:
1c:9d:78:dc:a0:22:0e:f4:5f:66:f1:77:bf:2f:48:af:95:b5:
6e:a6:48:22:e7:55:a0:83:f0:c1:9b:ae:fd:b1:53:47:c4:f8:
e0:7f:41:bc:13:59:fa:a4:96:7b:12:4d:46:d2:08:e0:f3:23:
86:82:9c:a8:0f:95:ab:7c:96:8a:a4:ed:c1:e6:f8:8e:ad:0f:
35:93:df:5c:80:7a:50:c9:99:a3:01:10:e8:4f:48:bf:00:9a:
e9:45:f1:f6:e7:37:53:fe:d1:f2:70:5c:e8:98:ef:d6:7c:91:
9d:67:02:26:3a:78:2a:31:e7:20:15:e4:cc:66:30:97:f9:d5:
bd:4c:86:ad:1d:2c:72:02:cf:29:ca:04:b0:ff:8d:f9:4b:e7:
1a:fe:f6:24:77:78:8b:b0:df:69:0c:9d:23:9d:80:fd:95:43:
7e:53:8d:d2:86:36:94:6e:94:19:bc:cf:10:c9:09:c5:ce:83:
c2:be:c6:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:20:57 2025 by rpki-client