Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
File: 0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft (raw, json)
Hash identifier: JIIC/dyPC0uq2iPkVmOTx/m8GEY3a3YNv7Q/GEewU9g=
Subject key identifier: 0B:A0:63:77:7C:C5:37:51:C1:16:B7:E1:DE:2D:0E:AF:DC:E8:7F:A8
Authority key identifier: D1:B0:E8:68:6F:7D:AB:1F:64:C8:0D:43:82:C3:C5:94:9F:F1:1D:BF
Certificate issuer: /CN=d1b0e8686f7dab1f64c80d4382c3c5949ff11dbf
Certificate serial: 01964DEC422F3FA999812603C135A7DD9979
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
Manifest number: 0350
Signing time: Sat 19 Apr 2025 12:00:50 +0000
Manifest this update: Sat 19 Apr 2025 12:00:50 +0000
Manifest next update: Sun 20 Apr 2025 12:00:50 +0000
Files and hashes: 1: 0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl (hash: b6txeo6TruQfX9d+MIgHUMsEF7k0Dpdkr2WAJNHr+ic=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 12:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:ec:42:2f:3f:a9:99:81:26:03:c1:35:a7:dd:99:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1b0e8686f7dab1f64c80d4382c3c5949ff11dbf
Validity
Not Before: Apr 19 12:00:50 2025 GMT
Not After : Apr 20 12:00:50 2025 GMT
Subject: CN=0ba063777cc53751c116b7e1de2d0eafdce87fa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:79:91:6a:54:2a:34:09:68:6e:ae:65:1f:b7:
4d:5c:fc:24:78:73:2e:aa:20:50:6c:dd:d5:56:8c:
18:c7:38:6c:0f:c4:1d:b9:9b:37:7c:1f:93:f9:86:
85:22:e7:7d:46:71:db:91:39:10:12:f8:b0:48:4f:
36:1a:c1:63:30:41:35:e0:2c:52:e1:a4:da:ca:be:
08:2a:ed:fc:39:d9:a8:af:33:6c:a1:82:a8:2b:e3:
35:25:ca:90:98:10:1b:ec:fc:3e:c5:77:14:06:29:
7a:d6:b5:bf:67:59:20:51:37:20:b7:aa:2c:8c:24:
99:46:cc:9a:eb:40:04:25:db:5f:72:25:6c:9e:88:
cb:94:79:c2:03:79:f7:c8:03:7b:aa:68:8f:dd:59:
8f:f1:b5:32:b2:03:a2:23:8c:eb:89:76:7e:e1:06:
b9:e8:cf:cc:47:8f:28:1b:74:c5:6b:c3:74:e9:e8:
1b:0d:cf:86:f2:48:ef:ee:14:aa:18:87:16:18:77:
7c:3b:be:8d:3d:17:01:03:6d:9a:dd:ac:53:2a:64:
35:a9:f1:34:22:79:3d:1d:66:87:4f:83:c0:cf:d8:
d0:f5:92:bd:af:1d:f2:cc:3e:c7:63:20:12:6e:3a:
a4:7f:5e:9e:c1:93:c6:cf:70:1e:5a:ce:d6:a3:dc:
e0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:A0:63:77:7C:C5:37:51:C1:16:B7:E1:DE:2D:0E:AF:DC:E8:7F:A8
X509v3 Authority Key Identifier:
keyid:D1:B0:E8:68:6F:7D:AB:1F:64:C8:0D:43:82:C3:C5:94:9F:F1:1D:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:93:1c:4c:f9:25:d1:04:b5:7d:f7:25:a9:90:8d:3b:a0:82:
e6:91:90:a4:10:41:60:7c:47:28:55:e8:bf:f1:6f:59:e7:f9:
6a:d1:f6:34:ef:cd:f2:58:75:49:54:46:b2:38:b8:6e:13:49:
a4:3f:32:27:d6:c4:9b:99:80:8d:d9:5e:d1:c8:0c:c5:62:42:
3e:35:c4:96:0f:25:50:41:6d:71:66:fb:f5:11:92:12:28:77:
3a:ff:84:2c:75:36:bc:84:d8:23:85:d3:c1:3c:2d:4a:88:b6:
e2:b6:79:d2:bf:c6:9c:17:60:19:34:d7:54:73:60:4f:27:9d:
47:ba:d2:4f:44:e9:d4:59:35:64:3d:a7:2f:c7:7e:74:83:9b:
a3:e8:fd:ea:07:44:70:f6:4d:6a:a4:d7:1b:4a:d0:98:67:ce:
00:91:a1:29:f6:0f:25:a5:91:de:e7:c9:1e:01:0b:a3:64:cc:
e7:2f:0f:cc:01:64:6a:9a:a7:48:d9:61:58:4d:c8:8a:ab:ac:
a3:74:a6:bb:a7:dd:67:c2:ad:43:aa:28:57:f9:88:af:42:66:
ee:26:47:3f:01:20:87:df:8f:b1:01:1a:23:fd:e4:99:0a:f5:
a1:d0:c6:d1:8f:30:e9:b5:47:9f:a7:34:d7:5a:e5:9f:d4:3b:
0f:9c:9f:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:04:15 2025 by rpki-client