Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.mft
File: 9xPX34BXC8z7JzeT8ApdRshT5Jo.mft (raw, json)
Hash identifier: JDrIolX6xdq8qiTJKUzoRr6S1rxyByoRsJb79Uc5/ng=
Subject key identifier: 8C:4C:D6:D3:AA:7B:0B:95:9A:9A:58:8B:26:89:7C:BD:E8:D5:B5:96
Authority key identifier: F7:13:D7:DF:80:57:0B:CC:FB:27:37:93:F0:0A:5D:46:C8:53:E4:9A
Certificate issuer: /CN=f713d7df80570bccfb273793f00a5d46c853e49a
Certificate serial: 019658023A3150E0CD2381DA59C2F13A3D33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9xPX34BXC8z7JzeT8ApdRshT5Jo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.mft
Manifest number: 0422
Signing time: Mon 21 Apr 2025 11:01:03 +0000
Manifest this update: Mon 21 Apr 2025 11:01:03 +0000
Manifest next update: Tue 22 Apr 2025 11:01:03 +0000
Files and hashes: 1: 9xPX34BXC8z7JzeT8ApdRshT5Jo.crl (hash: Sz8fY84h/Glt7PbuS5YtgN4xjqlaBkdob/J2IN1Jv3M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.mft
rsync://rpki.ripe.net/repository/DEFAULT/9xPX34BXC8z7JzeT8ApdRshT5Jo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:02:3a:31:50:e0:cd:23:81:da:59:c2:f1:3a:3d:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f713d7df80570bccfb273793f00a5d46c853e49a
Validity
Not Before: Apr 21 11:01:03 2025 GMT
Not After : Apr 22 11:01:03 2025 GMT
Subject: CN=8c4cd6d3aa7b0b959a9a588b26897cbde8d5b596
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b8:73:a9:07:04:c5:1d:90:48:e2:7e:aa:b2:
02:24:b9:1b:55:24:b6:dc:96:ab:d9:89:b0:71:fc:
6c:4b:15:8c:6c:79:0a:b2:49:3d:31:2d:e4:bc:7f:
36:07:e9:e4:cb:06:e8:f9:d7:8d:13:0e:48:aa:0b:
d5:09:b4:a6:61:55:2f:bb:06:60:23:ed:fe:c3:79:
2c:89:68:e5:43:49:65:c2:55:28:d1:66:af:fc:a0:
f7:f0:b3:bc:85:28:3e:63:bd:1b:dd:a2:0b:fa:7f:
5c:c9:bd:32:22:c9:1c:0f:a8:3c:2b:9b:82:cd:62:
46:dd:6e:09:3d:00:55:1f:ed:a8:4d:5e:7e:02:25:
64:be:4c:4e:76:79:dc:e9:77:8e:7a:b7:f8:a1:ba:
18:39:a7:51:ac:0c:1b:cf:fd:bd:fe:5e:b2:2b:d7:
7c:fa:76:7c:7f:80:4f:da:0f:ff:4a:b8:47:ef:2a:
ee:75:32:04:de:c1:c5:2f:89:a4:ec:fd:19:58:2b:
32:ce:5e:b3:f5:92:ca:9f:3e:98:8a:d5:c9:14:0f:
87:0e:2c:b6:77:ed:bf:f8:a4:9e:94:aa:0f:ae:8e:
0c:59:a1:d0:7c:f8:a4:24:77:3c:f0:81:8a:55:b3:
f2:7d:6f:a1:e3:2f:75:88:f8:7a:c6:f7:2c:05:9a:
f4:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:4C:D6:D3:AA:7B:0B:95:9A:9A:58:8B:26:89:7C:BD:E8:D5:B5:96
X509v3 Authority Key Identifier:
keyid:F7:13:D7:DF:80:57:0B:CC:FB:27:37:93:F0:0A:5D:46:C8:53:E4:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9xPX34BXC8z7JzeT8ApdRshT5Jo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:b4:3b:3e:b7:45:29:04:4c:b6:b7:c6:e5:04:ad:7d:8f:e1:
ef:88:58:86:40:a3:ee:e6:b6:60:0a:0e:be:17:5a:a5:1a:00:
d3:7a:d8:a9:98:38:63:e2:a4:a7:f2:e4:d3:11:d7:37:0e:85:
c9:6e:6a:52:0e:7d:bb:8d:7a:d1:70:5f:91:3a:1b:3d:87:c4:
ba:f9:3e:f8:13:b4:6b:a0:8e:d0:4b:8a:c0:d9:4c:52:6e:a2:
45:b4:ab:17:2e:b1:92:58:b1:47:39:c2:6c:3a:14:fc:1d:f4:
c9:ec:17:1a:e4:24:c3:a0:75:c7:a3:fc:8e:3b:24:0d:4b:a0:
80:29:2e:aa:06:72:a7:c5:99:58:57:7a:2d:95:4c:0b:71:47:
66:01:09:03:52:76:62:90:88:8e:7d:a4:3c:7d:1d:06:fb:cc:
75:ba:73:ab:50:cd:63:36:e9:8b:8d:0e:fa:0f:38:ba:af:6a:
37:60:65:43:55:90:c2:1f:d0:49:3f:2e:d9:4b:b5:15:df:5b:
55:cd:1f:bf:89:a3:06:cc:92:38:22:a4:22:18:b0:32:36:fa:
e6:70:80:17:b5:53:cb:b1:cd:9c:c8:b0:36:86:21:4e:44:68:
df:af:23:0a:b0:f5:21:fa:a8:14:ea:2e:01:ea:c3:60:33:28:
4d:19:04:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:02:13 2025 by rpki-client