Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
File: brmgpz47pWk4Hd2m1kcNx8hzyVk.mft (raw, json)
Hash identifier: Ma4Dca+o/c+hY8m+DtBR+80DFWt4Ol2uQt1xUvDzuJU=
Subject key identifier: 2B:68:44:53:25:DA:F7:F1:5D:41:BC:A2:B9:40:6F:DD:68:D4:BB:87
Authority key identifier: 6E:B9:A0:A7:3E:3B:A5:69:38:1D:DD:A6:D6:47:0D:C7:C8:73:C9:59
Certificate issuer: /CN=6eb9a0a73e3ba569381ddda6d6470dc7c873c959
Certificate serial: 019654254D1FFD6A8DBBAE7318AAD8F4CF2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
Manifest number: 14FB
Signing time: Sun 20 Apr 2025 17:00:52 +0000
Manifest this update: Sun 20 Apr 2025 17:00:52 +0000
Manifest next update: Mon 21 Apr 2025 17:00:52 +0000
Files and hashes: 1: brmgpz47pWk4Hd2m1kcNx8hzyVk.crl (hash: e/+b4Wpf4tkE8VymYXtrdyrQEVTsFTcyOMb+hyO6gLM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:25:4d:1f:fd:6a:8d:bb:ae:73:18:aa:d8:f4:cf:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eb9a0a73e3ba569381ddda6d6470dc7c873c959
Validity
Not Before: Apr 20 17:00:52 2025 GMT
Not After : Apr 21 17:00:52 2025 GMT
Subject: CN=2b68445325daf7f15d41bca2b9406fdd68d4bb87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:91:2c:5b:96:6b:95:4f:f9:35:ca:9d:89:46:
d0:a2:b7:8b:de:ab:93:e4:0f:8e:a3:00:52:eb:61:
db:66:1b:6d:2b:09:5a:ea:90:2d:5e:28:68:83:f6:
28:4e:65:67:f9:ec:97:53:cf:41:9e:9f:b6:19:7f:
27:d1:9e:50:33:a0:b5:38:60:70:84:2d:12:9e:a9:
37:fa:02:15:f5:bd:cf:c3:4c:41:24:13:07:92:51:
21:b0:90:43:b8:2f:d1:96:46:01:8c:37:25:d5:1b:
a9:39:6c:3a:87:38:20:64:56:bc:4e:bc:82:b7:f3:
2d:b2:f7:a3:55:0b:80:0b:d5:00:35:80:9b:5e:9c:
b1:35:f4:3c:6c:cd:37:53:45:07:bf:dd:08:98:3f:
a5:fe:3a:84:ed:1c:87:67:f8:e9:2d:b3:1f:8c:b5:
1f:43:c3:c7:27:b2:12:bd:7f:9d:8f:41:86:ce:aa:
bb:ee:dd:5b:d8:2c:03:0e:04:b4:70:e1:62:5a:7b:
43:49:02:f5:60:42:04:ec:17:df:10:e8:99:0b:7f:
59:23:8f:a6:d0:20:cc:e6:cc:d5:7f:7b:8d:01:af:
53:31:79:e5:a2:ac:38:3f:43:52:0f:5f:27:a2:31:
4f:86:e3:30:0e:19:35:81:d7:eb:8a:8a:c0:06:24:
9d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:68:44:53:25:DA:F7:F1:5D:41:BC:A2:B9:40:6F:DD:68:D4:BB:87
X509v3 Authority Key Identifier:
keyid:6E:B9:A0:A7:3E:3B:A5:69:38:1D:DD:A6:D6:47:0D:C7:C8:73:C9:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/brmgpz47pWk4Hd2m1kcNx8hzyVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/caa68e-7a9e-4cae-8d2a-e90219bc8ff1/1/brmgpz47pWk4Hd2m1kcNx8hzyVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:1a:49:49:56:f0:e3:1b:98:b6:ce:bf:8f:00:b4:ff:5a:35:
be:d0:a1:b6:99:7a:9c:d7:3c:ea:22:d0:44:c8:96:e0:b0:f7:
4f:e1:94:06:a8:1f:17:60:bf:d5:6e:38:c4:cf:ad:1b:30:68:
e1:88:fe:fc:c5:5f:8e:e3:0a:b2:54:66:6d:18:0e:ed:79:eb:
ed:c4:44:a3:69:cd:77:a0:db:b7:6c:36:b4:d8:d5:a5:f2:3f:
f2:36:29:de:e8:13:59:eb:a5:15:75:f3:20:23:fb:f7:85:d5:
be:28:2c:26:8a:58:60:1f:24:0b:09:0c:97:c0:18:70:c9:38:
f9:9c:29:a6:55:68:09:ab:9f:1b:00:dd:4f:bf:d8:99:55:3c:
e1:91:d1:18:86:b3:7a:da:1b:23:07:98:2a:e0:c3:49:c9:c3:
41:0a:0d:af:05:9e:44:75:98:6d:c6:1d:24:0b:5c:92:8e:38:
96:0c:fe:59:bf:f7:3e:27:77:25:3a:9f:b2:3d:f0:8b:09:14:
04:5f:b4:8b:0e:8d:36:79:e0:ef:dd:b2:e5:85:3a:55:f3:d8:
1f:86:75:aa:71:36:bd:88:75:81:0e:89:69:97:2b:67:2d:a0:
3a:d4:c0:0b:df:bc:6b:1b:db:4b:22:f5:cc:d1:27:1e:44:06:
46:d2:d0:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:18:57 2025 by rpki-client