Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
File: 3W2WGgYrcca_r9m6jqaf3R-mOAI.mft (raw, json)
Hash identifier: 0HEzX8mXD/qJVp4hoi04bTyBgfrcMyvVlcUoSXBaYo4=
Subject key identifier: CC:57:6C:89:CE:D2:41:49:68:48:24:5A:73:63:47:C2:F3:8C:9A:9D
Authority key identifier: DD:6D:96:1A:06:2B:71:C6:BF:AF:D9:BA:8E:A6:9F:DD:1F:A6:38:02
Certificate issuer: /CN=dd6d961a062b71c6bfafd9ba8ea69fdd1fa63802
Certificate serial: 019654C99D2ACC720CD36C0187CF7E3A28AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
Manifest number: D7
Signing time: Sun 20 Apr 2025 20:00:21 +0000
Manifest this update: Sun 20 Apr 2025 20:00:21 +0000
Manifest next update: Mon 21 Apr 2025 20:00:21 +0000
Files and hashes: 1: 3W2WGgYrcca_r9m6jqaf3R-mOAI.crl (hash: PajZyNpT81bMXGTutpztFGJcDi8boBzSU+KwWrYpTqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 20:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:c9:9d:2a:cc:72:0c:d3:6c:01:87:cf:7e:3a:28:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd6d961a062b71c6bfafd9ba8ea69fdd1fa63802
Validity
Not Before: Apr 20 20:00:21 2025 GMT
Not After : Apr 21 20:00:21 2025 GMT
Subject: CN=cc576c89ced241496848245a736347c2f38c9a9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:55:0e:2a:d3:eb:2e:c0:71:51:69:70:a3:ad:
d4:b5:23:32:25:05:c8:a9:dd:13:5c:e1:4d:a1:a9:
12:80:3e:db:23:ca:5e:91:32:2e:14:1b:b9:d9:b6:
8c:50:7e:9f:b6:cf:43:cb:e8:3a:23:09:3b:03:36:
32:4a:93:b1:5b:9b:28:18:1a:db:e0:28:57:e8:f9:
14:1a:7b:5d:ac:99:3f:c8:95:9f:72:b0:42:c9:c8:
61:43:a5:e5:e9:30:bf:1d:d8:5d:25:b9:0d:15:e3:
fb:68:90:a5:c5:77:85:3f:17:57:04:fa:b3:79:f9:
dc:17:f9:87:30:d5:9e:c8:dd:95:36:2b:82:6b:06:
80:bc:49:ce:8e:36:5c:33:94:b0:36:c6:14:46:39:
08:07:39:b4:45:cf:c5:93:54:1f:62:0a:7e:74:df:
29:21:28:90:e4:f7:6d:82:47:98:64:0e:f3:78:e1:
ff:39:65:98:c1:e3:32:cb:4d:7d:20:e1:58:bc:bf:
a6:82:7e:7d:39:fb:3d:45:57:2a:75:f3:69:60:92:
85:2f:a4:c9:7c:d9:f5:90:d9:91:2b:36:62:21:32:
3f:64:e3:56:42:17:00:14:25:50:97:05:64:c8:c2:
7a:6b:84:6a:da:49:8f:62:61:2c:57:97:88:f1:68:
d4:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:57:6C:89:CE:D2:41:49:68:48:24:5A:73:63:47:C2:F3:8C:9A:9D
X509v3 Authority Key Identifier:
keyid:DD:6D:96:1A:06:2B:71:C6:BF:AF:D9:BA:8E:A6:9F:DD:1F:A6:38:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3W2WGgYrcca_r9m6jqaf3R-mOAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/5cc4d6-42fd-4406-84ae-480fd84a841f/1/3W2WGgYrcca_r9m6jqaf3R-mOAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:95:e9:b2:ff:3c:d2:bf:78:ce:ad:90:90:45:83:f5:e7:f7:
cb:2b:46:71:90:f7:11:c6:36:88:09:43:91:27:87:c4:e5:16:
ec:e2:40:00:f7:e9:c7:73:bb:ca:59:b6:01:8e:4d:54:98:21:
b0:ff:38:a1:b3:6c:ea:71:db:86:23:69:85:72:14:ec:47:7c:
46:8f:8a:01:07:11:c8:38:31:f7:b9:c2:0b:0d:cb:44:f7:85:
af:e5:a4:e3:9e:41:66:b4:a3:34:f3:08:e4:6a:69:59:2c:63:
ce:d7:70:17:d9:ba:d4:02:27:f4:b7:99:4c:29:be:29:ee:88:
ca:5e:c6:4b:be:dc:2f:33:b9:07:36:e8:43:d3:36:c3:5e:dc:
37:55:31:ba:6a:3b:a2:54:36:e2:4d:54:e6:13:fa:63:a0:c7:
58:a1:a4:cc:ec:47:f9:b9:22:f9:75:a8:44:5b:28:70:52:02:
01:a0:9d:a1:20:9f:2c:a0:71:5d:dc:35:b8:4b:93:88:99:2d:
9e:c2:f1:b9:f3:1a:23:ea:df:c5:65:45:fc:68:69:3c:e9:ad:
1f:77:d0:ba:90:7f:a4:3d:eb:dc:1c:04:f4:96:49:85:d3:a7:
13:c4:ee:ff:ce:ec:b6:10:a6:70:ab:9d:ac:27:5c:3f:c6:8a:
9a:b6:d8:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 03:02:45 2025 by rpki-client