Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/7ed662-25f2-4a04-a7b6-777a4f800245/1/H38fQMjrspNo9ug7-d3QZ14H1O0.mft
File: H38fQMjrspNo9ug7-d3QZ14H1O0.mft (raw, json)
Hash identifier: QaOFdoAzwhowZiwd0XzGz9NzXlfgfQOZ4G6cSZ1tC94=
Subject key identifier: EF:56:F1:61:CC:EF:8D:F1:74:AD:EF:59:24:24:B9:C5:00:32:29:4B
Authority key identifier: 1F:7F:1F:40:C8:EB:B2:93:68:F6:E8:3B:F9:DD:D0:67:5E:07:D4:ED
Certificate issuer: /CN=1f7f1f40c8ebb29368f6e83bf9ddd0675e07d4ed
Certificate serial: 0196515B1D93D359DAE9C4D92C4637F1BC99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H38fQMjrspNo9ug7-d3QZ14H1O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/7ed662-25f2-4a04-a7b6-777a4f800245/1/H38fQMjrspNo9ug7-d3QZ14H1O0.mft
Manifest number: 0DBC
Signing time: Sun 20 Apr 2025 04:00:47 +0000
Manifest this update: Sun 20 Apr 2025 04:00:47 +0000
Manifest next update: Mon 21 Apr 2025 04:00:47 +0000
Files and hashes: 1: H38fQMjrspNo9ug7-d3QZ14H1O0.crl (hash: PXKqBGvrlw8pWNq+SrrWsdFm+8qesTCuvfZvrHYi59o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/7ed662-25f2-4a04-a7b6-777a4f800245/1/H38fQMjrspNo9ug7-d3QZ14H1O0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/7ed662-25f2-4a04-a7b6-777a4f800245/1/H38fQMjrspNo9ug7-d3QZ14H1O0.mft
rsync://rpki.ripe.net/repository/DEFAULT/H38fQMjrspNo9ug7-d3QZ14H1O0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 04:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:5b:1d:93:d3:59:da:e9:c4:d9:2c:46:37:f1:bc:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f7f1f40c8ebb29368f6e83bf9ddd0675e07d4ed
Validity
Not Before: Apr 20 04:00:47 2025 GMT
Not After : Apr 21 04:00:47 2025 GMT
Subject: CN=ef56f161ccef8df174adef592424b9c50032294b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:4b:1a:02:ed:78:ee:8d:4c:54:21:b6:fc:1a:
43:c3:95:4a:d3:d7:be:a8:7f:74:d2:03:ed:e3:0a:
cb:e2:58:81:cc:e9:a0:ab:96:22:d7:15:b6:71:d6:
cf:6f:4c:60:6e:27:8c:8a:15:c3:19:8d:ab:2a:40:
7a:a1:67:03:e9:09:a0:61:59:84:46:b5:42:b7:99:
c1:5d:25:c4:64:87:32:84:01:73:a1:91:ec:71:1c:
b6:ab:7f:b3:ee:85:8c:ce:28:90:04:86:20:7c:0d:
2b:b7:f2:de:ec:a3:ef:75:7a:81:ad:88:81:d6:f0:
be:46:2c:15:c5:06:67:ce:c6:ac:7a:97:0a:2b:bb:
18:b2:c3:16:c9:9d:8f:0e:96:69:8a:68:78:86:cb:
76:0c:a9:e4:b6:36:b3:b3:c2:fa:46:48:13:51:bb:
97:77:41:ab:6e:b5:67:26:6b:16:a1:14:df:d1:76:
2b:c3:94:b3:f8:3c:aa:16:48:da:6a:51:93:4e:4f:
ef:c2:82:9b:7d:75:1b:35:48:1a:50:89:04:d1:12:
5c:8f:a1:8d:b0:51:0f:44:8a:6e:ae:05:ed:19:0a:
13:f5:4f:2b:11:5c:60:97:5e:af:82:d5:70:a5:c5:
3d:5c:3c:56:cc:6c:9f:14:32:33:5d:f6:29:40:92:
16:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:56:F1:61:CC:EF:8D:F1:74:AD:EF:59:24:24:B9:C5:00:32:29:4B
X509v3 Authority Key Identifier:
keyid:1F:7F:1F:40:C8:EB:B2:93:68:F6:E8:3B:F9:DD:D0:67:5E:07:D4:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H38fQMjrspNo9ug7-d3QZ14H1O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7ed662-25f2-4a04-a7b6-777a4f800245/1/H38fQMjrspNo9ug7-d3QZ14H1O0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7ed662-25f2-4a04-a7b6-777a4f800245/1/H38fQMjrspNo9ug7-d3QZ14H1O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:98:4e:8d:86:47:40:21:ba:ee:2d:97:ab:fa:55:6d:85:5b:
7f:ff:ba:53:a3:3f:24:4b:e4:da:ed:05:eb:23:23:c0:ff:cc:
3f:5c:f0:d8:7e:33:86:fa:b2:1b:18:98:9b:8b:8f:b8:40:eb:
74:9f:11:55:fe:95:ed:20:38:a9:9f:8b:92:6c:1f:32:33:80:
be:0b:93:55:ec:12:7a:ae:24:81:ba:41:10:7c:40:30:3c:09:
db:b7:63:33:93:64:91:fa:ee:f2:a9:c8:71:95:10:4c:07:e5:
cd:de:ea:0e:52:8f:35:80:ee:19:89:05:22:37:f4:37:ae:4c:
75:6d:d7:49:ad:c3:fb:89:d1:45:3c:2e:d8:9d:cd:e5:a3:cd:
27:44:b3:6a:a7:56:36:19:1d:39:2f:76:e8:b6:4c:18:e7:3a:
05:b4:38:b0:3b:2d:8f:10:b7:6d:d4:e1:87:e4:c1:ca:ef:54:
73:37:f2:ae:d9:eb:fe:72:72:73:f4:fb:4f:66:ca:d6:bd:f8:
b3:07:11:ab:e9:8d:52:22:41:67:96:08:62:df:f3:32:5a:26:
b0:fa:48:a4:83:7f:b2:5e:85:f6:c5:c6:ba:06:8f:49:53:c6:
93:bb:81:c6:a6:93:a2:04:50:f1:c8:6e:c6:6f:2c:ad:e1:35:
5f:be:fc:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:59:02 2025 by rpki-client