Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/2f715b-cdaf-402c-9209-1ff915bfed99/1/0N8zCbPxj7vsmZxBL97x3EQg5Cw.mft
File: 0N8zCbPxj7vsmZxBL97x3EQg5Cw.mft (raw, json)
Hash identifier: d/m5jbl8QMVqfisCexxSBMKanaq2y/2NZ9CiJGJD6i4=
Subject key identifier: DC:E7:3D:84:B0:32:16:F9:0D:4B:67:AB:AA:92:63:9A:C2:9C:66:B8
Authority key identifier: D0:DF:33:09:B3:F1:8F:BB:EC:99:9C:41:2F:DE:F1:DC:44:20:E4:2C
Certificate issuer: /CN=d0df3309b3f18fbbec999c412fdef1dc4420e42c
Certificate serial: 01965D27C96F79FD1F7E6E73BE02F84176C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0N8zCbPxj7vsmZxBL97x3EQg5Cw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/2f715b-cdaf-402c-9209-1ff915bfed99/1/0N8zCbPxj7vsmZxBL97x3EQg5Cw.mft
Manifest number: 04CE
Signing time: Tue 22 Apr 2025 11:00:10 +0000
Manifest this update: Tue 22 Apr 2025 11:00:10 +0000
Manifest next update: Wed 23 Apr 2025 11:00:10 +0000
Files and hashes: 1: 0N8zCbPxj7vsmZxBL97x3EQg5Cw.crl (hash: dSbVUGHulZa66wGOyWSsQPCAs+Pd/Sxvt7uAF6fpPlI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/2f715b-cdaf-402c-9209-1ff915bfed99/1/0N8zCbPxj7vsmZxBL97x3EQg5Cw.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/2f715b-cdaf-402c-9209-1ff915bfed99/1/0N8zCbPxj7vsmZxBL97x3EQg5Cw.mft
rsync://rpki.ripe.net/repository/DEFAULT/0N8zCbPxj7vsmZxBL97x3EQg5Cw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 11:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5d:27:c9:6f:79:fd:1f:7e:6e:73:be:02:f8:41:76:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0df3309b3f18fbbec999c412fdef1dc4420e42c
Validity
Not Before: Apr 22 11:00:10 2025 GMT
Not After : Apr 23 11:00:10 2025 GMT
Subject: CN=dce73d84b03216f90d4b67abaa92639ac29c66b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:58:23:28:ce:ae:3f:e3:52:17:12:0c:53:4a:
de:ee:09:0c:4a:0e:b4:3f:ce:db:98:ef:bf:a9:fc:
d8:bf:cc:a7:1e:0d:88:45:5e:5a:29:20:25:3b:76:
93:44:d9:bb:fb:06:77:e2:29:2a:2c:c0:13:c7:63:
59:6c:b0:b6:d2:cd:cd:95:43:cc:cd:2c:c6:93:8b:
f6:81:3c:d3:c8:4d:af:33:66:7f:6d:27:1e:c3:9f:
76:34:04:2e:31:8d:d1:d6:73:cf:ee:a3:08:e1:2f:
9b:1c:fc:21:e1:4d:4b:5e:23:99:0a:50:1b:fd:9e:
b1:da:aa:fe:19:58:7a:51:e7:77:17:73:89:c5:fa:
63:01:2e:77:d9:44:83:21:ca:eb:1f:4e:65:9a:86:
e9:ac:ea:6f:c9:4f:1f:91:27:ae:c4:55:eb:6e:a3:
b2:af:0f:2d:7e:d8:1e:e7:02:35:bd:a9:86:e4:ee:
61:d0:08:12:3a:ce:fb:dc:78:94:fa:a3:6e:48:f3:
97:f2:55:68:f4:2c:4e:3a:0e:20:50:34:2a:0d:9b:
4c:b1:bc:44:9b:bb:20:e2:59:0d:8c:4d:f9:cf:3b:
d8:4d:f5:e4:d1:4a:78:02:31:7b:93:79:ca:be:a0:
ec:2e:6f:eb:31:e2:de:d3:af:88:7f:01:49:8c:40:
9f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:E7:3D:84:B0:32:16:F9:0D:4B:67:AB:AA:92:63:9A:C2:9C:66:B8
X509v3 Authority Key Identifier:
keyid:D0:DF:33:09:B3:F1:8F:BB:EC:99:9C:41:2F:DE:F1:DC:44:20:E4:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0N8zCbPxj7vsmZxBL97x3EQg5Cw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2f715b-cdaf-402c-9209-1ff915bfed99/1/0N8zCbPxj7vsmZxBL97x3EQg5Cw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/2f715b-cdaf-402c-9209-1ff915bfed99/1/0N8zCbPxj7vsmZxBL97x3EQg5Cw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:a0:30:44:de:94:b4:f4:bc:32:86:eb:d0:a7:f5:0f:0c:79:
15:15:c6:9e:2f:3d:a1:38:1d:da:87:4c:a8:39:5e:fc:f2:7f:
5e:14:16:d0:66:da:f5:4d:de:09:cb:5d:ee:39:a7:20:b1:82:
15:3d:a9:6a:d1:db:a2:44:1b:a6:66:13:d0:80:ff:aa:3b:9c:
ea:9f:88:6c:47:e6:67:a3:16:93:e4:1a:e3:61:2e:a5:d9:59:
ca:03:37:21:34:fe:b0:d9:78:60:db:95:57:cc:94:e8:1f:a1:
42:b8:46:38:48:dd:c0:ef:b1:7c:1d:50:6b:5e:56:0e:4c:9a:
7a:07:ae:f7:36:91:4b:a0:20:e4:bd:60:3c:3f:61:c2:b2:bd:
00:f5:01:e5:72:1b:39:87:df:19:fa:f6:eb:53:58:52:e8:4a:
2b:c7:48:42:df:55:a9:0b:f2:3a:ba:93:67:7a:3b:da:a5:93:
bb:91:83:15:07:e6:f1:19:91:fa:04:a6:9b:0e:e6:9b:44:a4:
13:b6:e4:8b:2a:3e:8e:ac:79:06:4f:df:74:1f:f2:3c:dc:79:
59:98:ca:a3:42:ab:88:96:da:43:2d:d4:ed:4b:fe:47:39:a1:
4f:3c:a8:7a:a9:30:44:19:2e:b5:64:2a:bf:68:38:4b:75:ce:
81:93:97:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 18:27:23 2025 by rpki-client