Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd07-837b-404a-8374-baaa9df517e7/1/Dwtr5Xhb-hruttYyBayhdrcqIxI.mft
File: Dwtr5Xhb-hruttYyBayhdrcqIxI.mft (raw, json)
Hash identifier: 33SsKDSryZY8JTIrLWxRsgGod6KiiWeZWuM743rH0zk=
Subject key identifier: 38:9D:4F:F5:36:23:AA:5A:7D:B8:E3:4D:53:76:8A:42:D1:62:72:6D
Authority key identifier: 0F:0B:6B:E5:78:5B:FA:1A:EE:B6:D6:32:05:AC:A1:76:B7:2A:23:12
Certificate issuer: /CN=0f0b6be5785bfa1aeeb6d63205aca176b72a2312
Certificate serial: 01962CAA12661EECCE5168559E06F049C23C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dwtr5Xhb-hruttYyBayhdrcqIxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd07-837b-404a-8374-baaa9df517e7/1/Dwtr5Xhb-hruttYyBayhdrcqIxI.mft
Manifest number: 09C5
Signing time: Sun 13 Apr 2025 01:01:05 +0000
Manifest this update: Sun 13 Apr 2025 01:01:05 +0000
Manifest next update: Mon 14 Apr 2025 01:01:05 +0000
Files and hashes: 1: Dwtr5Xhb-hruttYyBayhdrcqIxI.crl (hash: PoEk4GYZ1V+PY7eG3POlPi6nPW9+qNDadFb17QlMLrk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd07-837b-404a-8374-baaa9df517e7/1/Dwtr5Xhb-hruttYyBayhdrcqIxI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd07-837b-404a-8374-baaa9df517e7/1/Dwtr5Xhb-hruttYyBayhdrcqIxI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dwtr5Xhb-hruttYyBayhdrcqIxI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 23:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2c:aa:12:66:1e:ec:ce:51:68:55:9e:06:f0:49:c2:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f0b6be5785bfa1aeeb6d63205aca176b72a2312
Validity
Not Before: Apr 13 01:01:05 2025 GMT
Not After : Apr 14 01:01:05 2025 GMT
Subject: CN=389d4ff53623aa5a7db8e34d53768a42d162726d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:0d:e3:7c:18:81:69:e0:a8:5b:fb:24:32:3a:
1e:9b:49:fd:84:d5:f9:44:5f:71:f3:d3:53:ce:f0:
bc:80:44:49:61:50:6a:bc:78:2a:45:96:9b:38:df:
6b:4e:90:1a:b5:08:57:b9:9f:66:e9:27:62:7c:e3:
e5:07:66:32:0b:e7:ad:fd:46:10:70:92:b8:f6:ad:
df:4f:56:34:49:7a:86:3f:18:4a:1c:3b:46:a8:d4:
fc:e7:95:45:84:6c:2a:40:8e:1d:ab:51:91:e7:9b:
80:18:ca:b3:b7:ed:c3:bc:9a:fe:d8:d9:65:5c:9a:
e3:8d:cb:8f:f3:f1:83:87:81:e5:4e:87:e2:de:ff:
13:a4:8a:3a:02:0b:db:8e:53:8e:24:ae:18:a0:7f:
ed:b1:16:ad:17:71:c4:57:c2:1b:df:49:d2:f6:c7:
b1:12:ba:13:e4:e3:04:d2:c5:d3:3d:0c:cb:00:66:
6c:52:1e:98:36:81:4d:c8:d5:3c:5e:80:dd:ae:f3:
7d:e6:80:18:c3:db:cb:1e:30:b3:d7:48:1d:22:bb:
c6:87:88:26:73:41:75:7c:0d:4f:ca:90:b7:e6:fb:
c9:28:87:2b:6c:a8:59:b7:95:52:00:40:25:df:b2:
e7:be:e2:4f:ac:28:9a:6b:97:53:e5:9e:5d:c0:0d:
1e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:9D:4F:F5:36:23:AA:5A:7D:B8:E3:4D:53:76:8A:42:D1:62:72:6D
X509v3 Authority Key Identifier:
keyid:0F:0B:6B:E5:78:5B:FA:1A:EE:B6:D6:32:05:AC:A1:76:B7:2A:23:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dwtr5Xhb-hruttYyBayhdrcqIxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd07-837b-404a-8374-baaa9df517e7/1/Dwtr5Xhb-hruttYyBayhdrcqIxI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd07-837b-404a-8374-baaa9df517e7/1/Dwtr5Xhb-hruttYyBayhdrcqIxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:48:94:42:1b:65:50:85:2e:ac:e1:ca:87:32:ca:d5:0a:5b:
ac:7e:60:81:98:27:17:bc:3c:1e:78:7d:de:0f:47:a1:44:0c:
54:d8:fa:38:fd:2d:bc:ff:6b:d2:27:3c:e7:af:66:52:21:09:
b3:15:62:f8:7e:7c:c3:c5:b2:63:db:20:7e:88:2b:b3:de:45:
27:34:09:85:13:8b:8a:71:da:83:4a:d3:ae:87:fb:05:36:60:
9b:0c:1e:0f:96:f7:d7:0d:35:79:17:30:e7:02:5d:f4:02:51:
82:9b:f9:11:97:14:13:48:ab:7c:f3:16:6a:b1:d4:cf:ae:a3:
8c:5e:0a:73:39:ba:42:96:aa:23:da:6a:d8:ab:9f:10:f5:d4:
0e:ba:67:3b:88:e1:13:c4:f8:84:d6:d7:e0:7e:27:65:fd:82:
f1:5a:90:a5:15:26:a6:a7:f3:01:af:44:27:45:7b:46:34:ff:
38:c2:54:ff:40:42:d4:43:2a:c9:35:83:90:ef:79:54:b5:03:
5b:94:cf:f8:9b:a0:1c:9e:65:f3:17:4d:88:85:c7:fe:67:e6:
39:73:39:00:2f:28:d2:07:fc:d5:a9:69:bf:59:96:5c:fd:29:
c4:74:c1:f5:16:b4:f6:9e:59:ab:85:93:2e:8a:2c:8d:1a:2e:
f7:d9:ab:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 05:15:49 2025 by rpki-client