Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
File: 0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft (raw, json)
Hash identifier: hbTKAxgTwfhsAlFnTBaIBqDbYaPCEP9ENuAoxl/Djec=
Subject key identifier: B6:65:CD:6C:50:0E:8D:64:0C:FB:1D:14:E0:AF:F7:1E:B4:B2:BD:BB
Authority key identifier: D1:B0:E8:68:6F:7D:AB:1F:64:C8:0D:43:82:C3:C5:94:9F:F1:1D:BF
Certificate issuer: /CN=d1b0e8686f7dab1f64c80d4382c3c5949ff11dbf
Certificate serial: 01958CCDF3D06BFB4DE8976AC7B2E3E6495E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
Manifest number: 02EC
Signing time: Thu 13 Mar 2025 00:01:02 +0000
Manifest this update: Thu 13 Mar 2025 00:01:02 +0000
Manifest next update: Fri 14 Mar 2025 00:01:02 +0000
Files and hashes: 1: 0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl (hash: PyY74SR5bDyoLc6H7nj9alPAJMIsD1OWV6zag1Stq0A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:cd:f3:d0:6b:fb:4d:e8:97:6a:c7:b2:e3:e6:49:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1b0e8686f7dab1f64c80d4382c3c5949ff11dbf
Validity
Not Before: Mar 13 00:01:02 2025 GMT
Not After : Mar 14 00:01:02 2025 GMT
Subject: CN=b665cd6c500e8d640cfb1d14e0aff71eb4b2bdbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:9b:5e:89:6b:d6:fc:79:c3:18:ce:db:d4:b2:
7d:9c:ac:90:b4:50:70:13:36:84:15:b6:98:15:16:
bf:7f:61:8e:50:3c:de:d2:dd:9c:5d:16:bb:e5:fd:
1f:d7:db:40:27:e0:1f:92:f8:38:90:5c:05:49:c1:
c1:cf:68:d4:52:33:6c:15:92:26:3f:d2:cd:44:49:
17:73:b5:d5:23:61:05:3d:d4:4e:70:84:34:9e:d2:
17:0e:a8:33:5d:c8:16:65:95:9b:54:0c:32:68:40:
29:d1:4c:77:64:aa:ce:79:de:e8:89:c5:56:88:05:
7d:27:d9:8e:46:d8:21:a8:84:f3:09:2f:48:4d:f0:
95:8b:42:bd:4f:f5:02:bf:3a:e3:e3:08:47:c7:c1:
5e:d8:23:78:78:1a:a9:ac:f6:7c:ec:d2:20:18:73:
09:6c:6c:3a:dd:09:88:7c:8e:9c:1d:5e:17:37:ca:
77:ec:60:ea:3d:29:df:a6:44:37:00:b6:11:2a:f1:
89:b6:a7:46:69:2b:78:d0:5f:65:4c:ea:60:db:b0:
0d:fd:bd:f0:47:0a:af:a8:a8:6a:d1:cf:11:86:8b:
ab:8c:f2:33:ce:8c:ee:83:35:91:2a:d4:27:bb:dc:
ff:ca:89:65:a0:38:d1:c7:fa:9f:4b:21:2a:20:ef:
30:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:65:CD:6C:50:0E:8D:64:0C:FB:1D:14:E0:AF:F7:1E:B4:B2:BD:BB
X509v3 Authority Key Identifier:
keyid:D1:B0:E8:68:6F:7D:AB:1F:64:C8:0D:43:82:C3:C5:94:9F:F1:1D:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:a0:f2:ce:1f:76:73:e9:08:48:7a:a9:c5:eb:e1:45:1a:2c:
24:d0:5c:7a:96:33:71:02:06:d8:33:02:4f:b6:cb:50:eb:41:
ac:37:5e:bb:2f:60:f2:ad:b1:d2:3f:c7:24:66:ea:db:0c:9f:
8f:b5:93:50:9f:00:98:1e:dd:ac:74:fa:00:c8:1e:85:8e:eb:
6f:21:3e:f6:ea:52:7b:a1:21:de:7e:e9:cb:62:8c:62:da:75:
50:84:7f:32:9f:50:5f:9e:3c:eb:6b:ee:82:a6:7a:95:3b:8a:
20:99:29:d7:a0:0d:b3:9f:08:e6:41:c4:0d:3a:98:db:a9:d2:
93:42:eb:6e:94:66:83:c6:77:3e:96:64:21:1d:01:cc:78:67:
32:09:22:31:4b:1e:ad:76:11:74:67:21:e0:9a:bc:51:a5:12:
f7:0a:30:e9:46:74:b2:43:82:25:46:ba:0b:be:3a:7e:ad:1e:
e1:20:82:53:3c:d6:77:2a:5f:b4:ab:ae:b9:68:39:e5:5a:a9:
e0:c1:5e:90:cc:34:b3:70:1e:84:0c:81:6a:c3:b5:8c:98:b9:
44:a5:89:64:50:9a:c7:53:67:f0:8f:cd:c6:c6:e4:f3:70:31:
13:e1:a2:b2:8a:f7:12:dc:13:38:8a:86:b2:99:b3:d5:5e:ac:
9f:99:7a:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:41:48 2025 by rpki-client