Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
File: X06OdhPaoX6FqhB4yOwlXPGNQio.mft (raw, json)
Hash identifier: BdtjU1SzgDRCkdsDIFUL84cHrFPa8twkFotxdRkAsCE=
Subject key identifier: 70:D6:83:45:B6:E4:F8:4C:1B:C1:6E:C3:D3:9D:59:55:94:32:7B:26
Authority key identifier: 5F:4E:8E:76:13:DA:A1:7E:85:AA:10:78:C8:EC:25:5C:F1:8D:42:2A
Certificate issuer: /CN=5f4e8e7613daa17e85aa1078c8ec255cf18d422a
Certificate serial: 01965914DAEFA24B502B05D8C9AD69FE68F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
Manifest number: 0C2B
Signing time: Mon 21 Apr 2025 16:01:00 +0000
Manifest this update: Mon 21 Apr 2025 16:01:00 +0000
Manifest next update: Tue 22 Apr 2025 16:01:00 +0000
Files and hashes: 1: X06OdhPaoX6FqhB4yOwlXPGNQio.crl (hash: RM16Kz9JIffvm4etjfZE1mIvHe2925lNuv4Dh04ZvtI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 13:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:14:da:ef:a2:4b:50:2b:05:d8:c9:ad:69:fe:68:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f4e8e7613daa17e85aa1078c8ec255cf18d422a
Validity
Not Before: Apr 21 16:01:00 2025 GMT
Not After : Apr 22 16:01:00 2025 GMT
Subject: CN=70d68345b6e4f84c1bc16ec3d39d595594327b26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6a:97:37:43:e5:20:5d:44:25:85:48:4f:d8:
ea:b6:b0:44:32:79:77:43:cc:69:03:0e:32:d6:23:
eb:27:68:dc:39:83:66:6b:a3:27:34:1d:16:ad:f6:
4f:e3:26:ab:59:6c:58:78:a0:c2:77:a8:4f:10:fb:
42:6d:68:bb:8a:59:40:dc:dc:41:be:94:40:73:e5:
43:4a:b5:67:2a:fb:eb:d8:54:81:0b:e1:bb:b4:7a:
8d:21:c9:14:ea:f8:3c:04:f8:e4:2e:bc:b6:63:5e:
62:83:27:c0:b5:22:f2:9a:14:20:44:2e:79:8c:4e:
ec:f5:26:be:cd:28:e2:d3:2d:91:78:df:6f:f1:4c:
78:d3:4d:ba:8e:a8:65:ff:a3:62:9e:82:b6:35:14:
61:3a:5b:ac:33:b4:e6:97:36:fe:55:a1:65:19:44:
33:75:7e:70:a6:99:29:f7:73:dd:b0:2e:bd:67:dd:
bd:b7:f8:6f:b6:f0:fe:b0:5c:5d:1f:69:8d:74:1b:
b0:dc:4b:51:a5:93:14:1a:16:5e:af:bd:e7:f9:2b:
e3:24:51:2e:c1:9c:b7:d0:1a:6e:9d:96:5b:ff:fc:
07:0d:cb:22:83:7b:6e:d5:e1:b4:91:97:46:68:18:
ce:94:c7:53:71:74:ed:8a:cf:99:f3:da:80:3f:d1:
09:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:D6:83:45:B6:E4:F8:4C:1B:C1:6E:C3:D3:9D:59:55:94:32:7B:26
X509v3 Authority Key Identifier:
keyid:5F:4E:8E:76:13:DA:A1:7E:85:AA:10:78:C8:EC:25:5C:F1:8D:42:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:25:c1:1e:de:ce:6c:f1:85:01:72:19:85:9c:18:65:d3:77:
75:9e:a5:9d:6c:44:63:82:3c:dd:9c:dc:08:19:5a:7b:85:f3:
2d:6b:2a:79:01:66:70:9c:ea:64:8b:e1:31:e9:8c:5d:d4:3c:
ba:9a:02:4d:e2:60:6e:90:90:f2:2c:6e:6c:4d:c1:36:80:f4:
fc:bd:4f:39:47:0a:0b:4f:91:e0:f3:dc:46:a6:6d:2d:bb:ee:
3b:db:a0:6f:8c:74:f8:a7:e9:f6:f7:58:98:93:9e:55:06:11:
44:c0:ce:34:17:2a:96:51:36:9b:de:ae:78:f5:63:df:c2:b3:
71:3d:39:5d:a1:2b:9b:42:5a:b2:4e:50:bd:aa:83:96:ee:0b:
b2:2f:9e:00:67:62:c0:61:73:44:cf:59:dc:a2:33:6e:2d:2b:
7b:f4:d3:e1:22:7b:f1:21:d3:2e:c1:17:f2:97:33:04:e7:fa:
cf:f9:82:b1:11:9c:6a:a2:c4:32:e9:da:a3:d5:89:b4:7a:6a:
70:7a:ac:cf:40:35:d2:80:cf:22:fa:2d:f3:2d:a1:ab:60:5b:
c0:b6:ea:24:88:bf:31:6d:26:03:f0:07:2d:9a:67:93:d2:bb:
2a:7b:12:fa:46:8d:60:ec:38:31:0e:49:3c:68:16:ee:f8:43:
b0:86:4b:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 22:23:18 2025 by rpki-client