Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
File: PEHqRBeKcCxQcAACPRSp-cRyYOY.mft (raw, json)
Hash identifier: LB8EcyxaQ/iLQkhfZr42fIPkWNBMoH9sz3RO4XvWPB4=
Subject key identifier: 15:16:FD:BD:B3:AD:CE:B4:BF:4F:1D:EF:91:02:9A:B3:71:6D:E7:DE
Authority key identifier: 3C:41:EA:44:17:8A:70:2C:50:70:00:02:3D:14:A9:F9:C4:72:60:E6
Certificate issuer: /CN=3c41ea44178a702c507000023d14a9f9c47260e6
Certificate serial: 0194C387627C5E38BC1FA8D4E34AB8603EC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
Manifest number: 0E32
Signing time: Sat 01 Feb 2025 22:00:17 +0000
Manifest this update: Sat 01 Feb 2025 22:00:17 +0000
Manifest next update: Sun 02 Feb 2025 22:00:17 +0000
Files and hashes: 1: PEHqRBeKcCxQcAACPRSp-cRyYOY.crl (hash: UNimkxDV7wTwGyJMQeANEBY7Mcmr35CkVdI/piNJOjg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:62:7c:5e:38:bc:1f:a8:d4:e3:4a:b8:60:3e:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c41ea44178a702c507000023d14a9f9c47260e6
Validity
Not Before: Feb 1 22:00:17 2025 GMT
Not After : Feb 2 22:00:17 2025 GMT
Subject: CN=1516fdbdb3adceb4bf4f1def91029ab3716de7de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:16:bd:02:8e:18:b5:ba:9c:31:f6:d8:e2:57:
1d:9f:5f:41:64:cc:78:d9:b2:20:18:34:cb:d5:74:
50:1f:7b:f4:d1:3c:ff:8c:4e:7e:f1:0b:fa:35:97:
80:1b:6d:78:99:a5:67:aa:22:71:07:d4:a7:ae:31:
ca:0a:ef:1a:2c:04:ac:f3:8b:99:3f:a5:cc:f1:6b:
7c:91:08:57:33:3b:89:69:e3:0e:67:a3:2f:c6:ef:
06:c9:92:d9:0f:95:3f:cf:53:fd:9a:f1:e0:27:88:
32:de:b3:5f:1d:5f:9f:6e:76:28:ce:9f:b1:22:a8:
ba:4c:71:1e:c2:1a:d3:4c:fb:2e:2e:26:53:f6:72:
34:56:38:4a:1f:01:25:23:51:2d:08:bf:6c:22:6a:
26:79:81:da:79:d1:a5:34:2f:32:6a:6e:7d:f7:a5:
48:71:fe:ef:6c:04:b0:ce:a5:27:3f:e6:c5:88:4c:
ba:c4:58:14:54:c1:7f:f8:56:7c:5f:28:fe:c3:8c:
3e:8c:b7:60:c1:7b:5d:22:4a:ea:60:e2:1c:eb:cb:
aa:91:bd:b1:c8:72:0f:0f:9a:83:df:32:45:73:05:
0d:c8:66:5f:6c:60:51:04:5f:bf:98:9e:54:2c:61:
cb:85:e5:cb:03:f5:49:fe:62:dc:cc:1a:d0:b1:e0:
cc:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:16:FD:BD:B3:AD:CE:B4:BF:4F:1D:EF:91:02:9A:B3:71:6D:E7:DE
X509v3 Authority Key Identifier:
keyid:3C:41:EA:44:17:8A:70:2C:50:70:00:02:3D:14:A9:F9:C4:72:60:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PEHqRBeKcCxQcAACPRSp-cRyYOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/144941-1354-4869-aac2-747251e49242/1/PEHqRBeKcCxQcAACPRSp-cRyYOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:52:67:f4:bf:b9:d0:e6:02:9a:fd:c1:31:60:45:7a:5b:09:
b9:95:96:9f:c5:cc:eb:e3:f2:5f:a0:c1:5d:57:d8:a1:7f:0f:
08:53:a0:94:da:60:a3:ad:bd:7c:6c:71:17:91:2a:72:61:c0:
48:c5:d9:20:15:f3:5c:88:32:fb:54:69:d2:35:cc:63:74:aa:
60:81:ac:3b:f0:6b:fe:bf:47:9f:40:d6:29:16:43:ac:15:53:
a7:3b:6d:3e:0e:61:87:6f:87:cc:85:5a:fa:44:d4:0a:84:8d:
51:99:c4:05:bf:6d:ce:be:6b:3b:e7:19:39:98:d2:89:18:4f:
51:02:d8:fa:af:6a:d4:f0:f2:62:c9:dd:7e:87:d5:8e:91:b1:
ad:ff:78:b9:00:54:9a:c6:65:e0:f9:c3:14:34:72:d0:0b:ff:
2f:d7:4d:51:0b:c8:6e:81:89:21:2c:47:f9:0a:51:7e:7c:8a:
b6:48:8e:c5:79:39:e3:4b:e4:12:d5:40:37:14:88:bd:30:b6:
9e:27:30:7f:d8:58:ae:24:34:3a:2d:ed:5b:39:e3:06:84:49:
80:49:59:59:e2:4d:37:20:f4:33:51:e0:80:81:2b:21:77:79:
aa:c8:83:5d:d7:1f:c3:0c:4d:81:f8:2a:fb:51:0a:35:2e:17:
db:71:67:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 07:02:02 2025 by rpki-client