Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.mft
File: MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.mft (raw, json)
Hash identifier: WyM9h7ho6H6lbsGwcAcMzFhTkX+IXud1pVanYhLwSzg=
Subject key identifier: 0D:C0:BB:30:74:99:5C:13:67:09:FB:59:45:6F:88:07:06:7E:B9:65
Authority key identifier: 31:B1:62:1C:E2:8C:BB:FE:F0:38:AB:D7:54:9F:C6:CB:50:E7:11:6B
Certificate issuer: /CN=31b1621ce28cbbfef038abd7549fc6cb50e7116b
Certificate serial: 019655A5EAB18FA8CDA3999826999A565FE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.mft
Manifest number: 07EF
Signing time: Mon 21 Apr 2025 00:00:58 +0000
Manifest this update: Mon 21 Apr 2025 00:00:58 +0000
Manifest next update: Tue 22 Apr 2025 00:00:58 +0000
Files and hashes: 1: MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.crl (hash: YfKaU0kuUs22glFRU/daGC5FYSIxKPFX5Plhf1evM8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.mft
rsync://rpki.ripe.net/repository/DEFAULT/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:a5:ea:b1:8f:a8:cd:a3:99:98:26:99:9a:56:5f:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31b1621ce28cbbfef038abd7549fc6cb50e7116b
Validity
Not Before: Apr 21 00:00:58 2025 GMT
Not After : Apr 22 00:00:58 2025 GMT
Subject: CN=0dc0bb3074995c136709fb59456f8807067eb965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d9:39:1e:63:a1:ad:3c:88:0a:df:b3:04:de:
d3:47:56:28:30:89:87:b1:93:71:32:ab:1a:15:a5:
3b:ac:41:57:26:62:90:3c:2d:a1:84:dd:6f:5a:fd:
09:d7:b7:f6:eb:8f:a5:ac:6d:eb:43:c8:a4:22:2e:
6a:d2:31:18:a1:0d:28:d4:06:3e:8a:80:fd:45:28:
7e:f4:bc:db:7e:35:27:40:17:81:68:d6:a4:d6:45:
f8:6d:51:cf:1d:54:32:e5:68:c8:8e:be:5c:77:d3:
b2:7b:70:c3:ea:b6:db:9f:93:d7:28:ce:1a:0a:85:
45:bc:f6:d8:1f:7c:7b:25:49:cd:20:e5:64:7e:f0:
78:f7:56:da:b9:b7:e6:25:af:8a:e7:10:70:ca:bf:
66:c4:0f:32:df:80:b4:7b:6e:19:39:1f:b8:99:1f:
57:53:61:b4:8b:9f:09:cf:0c:94:6c:2e:65:5c:47:
62:fe:20:62:a4:1f:bc:01:c3:4f:03:43:d4:08:5b:
1d:a9:59:2f:27:4d:3a:e5:80:0b:14:60:ea:3f:91:
61:b1:9d:42:5d:54:1b:00:32:b7:30:75:c9:3d:86:
33:28:ee:f2:fe:29:8c:ae:84:7e:aa:77:e8:e2:42:
79:fb:79:47:94:54:9c:34:3d:53:d8:10:34:85:2b:
7c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:C0:BB:30:74:99:5C:13:67:09:FB:59:45:6F:88:07:06:7E:B9:65
X509v3 Authority Key Identifier:
keyid:31:B1:62:1C:E2:8C:BB:FE:F0:38:AB:D7:54:9F:C6:CB:50:E7:11:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:a2:16:d1:76:3f:1f:9a:71:fc:a6:72:f1:b3:e8:c7:9f:dc:
c0:13:da:62:41:f6:bb:91:3f:38:ea:86:99:e1:33:0a:ab:26:
de:22:a3:95:6f:4c:8c:a9:7e:3e:0e:d2:87:30:bc:9d:f9:3c:
05:72:f3:3f:94:5d:82:17:44:a1:bd:42:1e:20:4e:77:24:96:
e1:41:68:cb:52:de:d7:68:dc:2c:ab:eb:0c:33:6c:b2:80:68:
6b:74:f6:76:7d:9c:ff:b4:8a:a7:21:1f:a6:1d:5e:ff:e4:4a:
58:cf:f6:c8:04:5f:0a:e3:6e:ce:59:12:9e:43:e1:55:63:37:
81:86:28:11:49:e0:ab:ab:53:ce:cf:2d:fc:b3:e2:e7:3d:39:
7b:02:d0:eb:25:8e:9d:c2:19:e2:2d:ff:d0:a4:0d:ac:81:68:
9b:ed:50:4b:14:8d:54:94:1f:26:6a:63:b2:9e:3f:4d:fe:14:
05:ed:8e:80:4d:61:84:ca:31:02:4d:40:46:a4:3e:71:fa:69:
19:41:bf:64:83:fe:1c:52:ce:1f:3a:94:07:fa:a4:02:59:33:
8a:9e:f0:f7:f2:33:53:6b:18:c7:ae:45:de:bb:bc:9e:51:68:
5a:be:40:a5:f7:23:bd:b3:45:e7:45:4d:b4:af:1a:1e:4d:c8:
bd:71:23:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:53:37 2025 by rpki-client