Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/dee8b9-c300-45eb-89e1-80699529cceb/1/cRcdWnbTurk3KszJJz66ffHFnPI.mft
File: cRcdWnbTurk3KszJJz66ffHFnPI.mft (raw, json)
Hash identifier: di62XChnowiDIZX2yB2sjn08Ey0ymJn4NCAtA5K1H1w=
Subject key identifier: C7:6D:B2:88:0B:BC:43:FE:AB:53:19:3B:4A:26:E0:AE:43:8E:00:33
Authority key identifier: 71:17:1D:5A:76:D3:BA:B9:37:2A:CC:C9:27:3E:BA:7D:F1:C5:9C:F2
Certificate issuer: /CN=71171d5a76d3bab9372accc9273eba7df1c59cf2
Certificate serial: 0194C388026CE40E63F2BC4592389DAEBECE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cRcdWnbTurk3KszJJz66ffHFnPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/dee8b9-c300-45eb-89e1-80699529cceb/1/cRcdWnbTurk3KszJJz66ffHFnPI.mft
Manifest number: 142B
Signing time: Sat 01 Feb 2025 22:00:58 +0000
Manifest this update: Sat 01 Feb 2025 22:00:58 +0000
Manifest next update: Sun 02 Feb 2025 22:00:58 +0000
Files and hashes: 1: cRcdWnbTurk3KszJJz66ffHFnPI.crl (hash: Uj/YsOj+y2ttY2q7vr2NXWVMcjbUhLHpV7lsnkXDurM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/dee8b9-c300-45eb-89e1-80699529cceb/1/cRcdWnbTurk3KszJJz66ffHFnPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/dee8b9-c300-45eb-89e1-80699529cceb/1/cRcdWnbTurk3KszJJz66ffHFnPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/cRcdWnbTurk3KszJJz66ffHFnPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:88:02:6c:e4:0e:63:f2:bc:45:92:38:9d:ae:be:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71171d5a76d3bab9372accc9273eba7df1c59cf2
Validity
Not Before: Feb 1 22:00:58 2025 GMT
Not After : Feb 2 22:00:58 2025 GMT
Subject: CN=c76db2880bbc43feab53193b4a26e0ae438e0033
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:fd:aa:b8:c7:f4:3b:66:d0:94:13:cb:e8:f3:
d9:69:10:3d:2f:e0:da:7c:84:a9:94:33:99:cc:36:
5e:88:40:01:c6:a6:ad:40:db:bd:13:33:8a:b9:92:
8e:5f:e3:fc:5b:2d:9e:2e:33:2f:7a:7d:22:9e:09:
d4:20:b3:61:e0:eb:14:fc:50:60:91:68:e5:aa:87:
86:e1:0c:62:1e:b3:1d:eb:d5:7f:1b:95:37:e8:73:
b1:bf:53:76:d9:8a:ca:a5:9e:e1:91:2b:3e:e2:7a:
9e:1b:19:78:0b:35:80:5f:d1:26:2a:59:6f:59:ae:
8f:b3:b5:99:ff:70:e2:ab:51:a3:94:06:30:2a:6e:
c4:69:c9:50:f4:de:6f:4b:f7:e5:aa:11:94:fe:90:
4b:c3:56:3d:93:2b:0c:7b:f8:36:5d:1c:4c:87:00:
13:cb:6e:76:b7:7d:1c:d5:26:6f:a3:4d:25:b1:3c:
c7:fd:50:52:72:30:5f:3f:6a:ed:90:0f:e1:cf:78:
8d:c0:69:f0:19:53:fd:ca:29:d9:94:46:de:74:20:
f6:a5:79:83:7f:98:3d:58:48:f2:a0:26:2d:93:4c:
a5:5c:ae:73:41:97:63:46:bd:d3:ba:33:87:0a:1d:
99:89:29:61:83:53:f2:e7:59:ee:7d:4d:ec:6c:e6:
4e:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:6D:B2:88:0B:BC:43:FE:AB:53:19:3B:4A:26:E0:AE:43:8E:00:33
X509v3 Authority Key Identifier:
keyid:71:17:1D:5A:76:D3:BA:B9:37:2A:CC:C9:27:3E:BA:7D:F1:C5:9C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cRcdWnbTurk3KszJJz66ffHFnPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/dee8b9-c300-45eb-89e1-80699529cceb/1/cRcdWnbTurk3KszJJz66ffHFnPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/dee8b9-c300-45eb-89e1-80699529cceb/1/cRcdWnbTurk3KszJJz66ffHFnPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:1d:dc:f1:6d:7d:85:6b:0c:e3:3a:0d:92:2f:c1:6e:9d:dd:
a8:69:0e:96:13:65:ba:8e:6a:72:61:37:3c:62:85:f0:da:2f:
4a:f4:30:50:af:73:17:34:fb:cb:0b:b5:fb:cd:94:9e:f0:f3:
b6:42:84:97:be:a4:96:ac:3a:73:50:e2:f6:95:20:5c:da:16:
e2:d6:da:d6:27:10:33:83:f0:32:b6:2f:06:2c:ea:f1:96:67:
21:5b:21:59:37:ef:1e:f1:a0:cf:1c:a1:80:1d:9e:1a:99:5a:
e4:aa:15:d4:22:eb:72:97:b4:e0:9d:b8:39:fa:fc:0a:79:c3:
c1:0b:af:75:26:ec:18:dc:1f:06:16:e7:21:07:4e:d2:43:a1:
2b:40:e4:c8:c7:9c:72:04:b3:66:15:c3:0a:f8:47:92:6b:42:
43:d1:c1:6c:c3:1f:98:05:90:20:4d:20:85:fb:7a:2e:c0:82:
09:85:8e:b9:72:99:5b:c5:9e:b7:97:0d:9e:4b:79:19:8f:57:
6c:7e:07:22:a8:79:b3:6e:ff:9d:1b:ea:c0:1f:91:96:6f:15:
46:98:c8:f6:07:4b:19:cf:93:cb:f4:f6:ee:77:56:8c:a1:a3:
40:4a:e7:ca:fc:ab:8f:1c:ae:87:b1:f5:8c:06:a3:d6:bd:0a:
b4:0b:59:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:49:32 2025 by rpki-client