Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.mft
File: xmCFijitXhG3sYk5KIO8g-trNh0.mft (raw, json)
Hash identifier: +pjZP1lmwwtXPXNe2JASZJs9Y4YeRnpPeNMXL7Bfywg=
Subject key identifier: AE:55:DA:4A:2B:21:CD:FA:50:4A:74:07:EF:B4:57:3F:89:2A:7A:BD
Authority key identifier: C6:60:85:8A:38:AD:5E:11:B7:B1:89:39:28:83:BC:83:EB:6B:36:1D
Certificate issuer: /CN=c660858a38ad5e11b7b189392883bc83eb6b361d
Certificate serial: 019643D751699171DA6CA9913D9763920FF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmCFijitXhG3sYk5KIO8g-trNh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.mft
Manifest number: 14F3
Signing time: Thu 17 Apr 2025 13:01:46 +0000
Manifest this update: Thu 17 Apr 2025 13:01:46 +0000
Manifest next update: Fri 18 Apr 2025 13:01:46 +0000
Files and hashes: 1: xmCFijitXhG3sYk5KIO8g-trNh0.crl (hash: pcFuPTksVV0j5UYc81xUYIM1Fk9HrlRHoYSORHp7uqw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.mft
rsync://rpki.ripe.net/repository/DEFAULT/xmCFijitXhG3sYk5KIO8g-trNh0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 13:01:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:d7:51:69:91:71:da:6c:a9:91:3d:97:63:92:0f:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c660858a38ad5e11b7b189392883bc83eb6b361d
Validity
Not Before: Apr 17 13:01:46 2025 GMT
Not After : Apr 18 13:01:46 2025 GMT
Subject: CN=ae55da4a2b21cdfa504a7407efb4573f892a7abd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:07:ff:d4:3a:29:49:32:76:db:65:3f:c2:e7:
3e:fa:8f:5c:49:bd:af:e8:e9:fd:4e:0a:ce:b1:53:
e9:e4:c8:27:34:40:c7:d2:82:8d:2d:71:da:ea:8a:
3a:c6:9d:84:3f:a4:19:d1:e0:c5:a6:ff:cc:84:38:
33:46:5e:f9:6d:72:37:07:e5:14:91:ba:c3:af:e0:
55:0d:ac:ee:a4:f5:43:a9:8b:c0:5b:bf:58:50:05:
9d:04:4b:d1:53:c1:37:ce:ac:9f:80:58:c0:dd:47:
b2:bd:19:a0:0c:87:42:5e:15:86:67:f4:64:3b:ad:
7e:2d:ed:32:1d:24:cc:42:d0:a9:ad:7b:7c:e0:ad:
e6:85:c8:dc:96:c4:2a:27:b4:33:bd:42:04:63:64:
2b:48:e7:4a:f7:fc:60:d3:cb:e9:7f:a4:59:3d:26:
a3:19:d1:fc:ca:ee:b1:19:a2:7b:51:fc:6b:25:33:
c4:68:27:8f:e7:ad:2e:8c:80:f5:81:8a:35:54:48:
fb:96:df:03:ec:9d:f7:d2:01:da:31:c7:4e:8e:54:
6e:42:65:c0:56:a8:b9:e4:19:7b:db:0b:ec:99:93:
1a:71:ba:6e:a8:33:15:d6:dc:30:5f:84:3e:05:00:
1c:22:cd:fb:9f:73:76:31:55:00:bf:5a:60:04:1a:
fd:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:55:DA:4A:2B:21:CD:FA:50:4A:74:07:EF:B4:57:3F:89:2A:7A:BD
X509v3 Authority Key Identifier:
keyid:C6:60:85:8A:38:AD:5E:11:B7:B1:89:39:28:83:BC:83:EB:6B:36:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmCFijitXhG3sYk5KIO8g-trNh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/dbb5e4-c558-4efe-9c9a-fa5d7b48aae9/1/xmCFijitXhG3sYk5KIO8g-trNh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:a2:88:d5:a6:44:5a:fd:4a:c2:ba:7d:76:23:ca:79:78:67:
7c:97:cb:78:64:4d:34:52:43:23:a4:81:56:2a:87:72:cd:36:
71:51:bb:58:77:9f:41:e5:f3:13:8e:be:cb:0e:3e:ce:94:15:
b6:1c:af:2c:6a:4b:8f:0d:bb:16:63:cc:7e:38:5e:24:a2:d9:
c8:62:8b:b2:c7:85:c1:70:9b:e9:59:ff:f9:66:cb:c8:a2:80:
ee:44:ee:7f:d9:21:29:1c:d2:6f:fc:03:a7:d8:fe:04:aa:08:
ed:f3:33:df:60:2c:8c:6b:9e:fc:c1:33:4e:6e:1a:7c:22:e8:
52:49:7a:77:d7:d7:8f:d6:9a:1a:6b:9a:a5:cf:92:09:83:c1:
d5:77:22:71:0f:b3:6f:72:ac:37:4e:f4:f8:b5:7a:bb:08:96:
2c:d9:dc:4a:50:fd:68:4e:e4:a4:fc:95:8c:90:db:8b:2b:03:
10:11:eb:c0:fc:51:c1:a7:42:a8:c2:56:f6:ae:76:1b:b6:02:
ee:6a:16:d6:96:86:dc:7b:31:39:ae:bf:0b:f7:cc:30:62:76:
08:67:25:12:f9:a0:be:2f:82:fc:65:44:d5:e0:b2:13:87:40:
db:19:1f:2e:68:b9:ee:39:c9:8d:4e:92:1f:31:dc:a9:88:92:
bf:07:c2:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:20:41 2025 by rpki-client