Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft
File: ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft (raw, json)
Hash identifier: YD9TJWzfEtqcGVL4ReXw+T6ngMW0b0c/MIjd88qJ8w0=
Subject key identifier: 47:5F:E8:34:3D:F1:EF:AA:32:28:CB:93:5D:95:F7:AA:A8:5F:22:84
Authority key identifier: 11:2A:6A:26:0D:1E:67:E0:A7:B4:E6:DC:F4:03:FD:39:F6:DE:97:54
Certificate issuer: /CN=112a6a260d1e67e0a7b4e6dcf403fd39f6de9754
Certificate serial: 01958C609121E4FEE22FF123485EEF03C23B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ESpqJg0eZ-CntObc9AP9Ofbel1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft
Manifest number: 036D
Signing time: Wed 12 Mar 2025 22:01:33 +0000
Manifest this update: Wed 12 Mar 2025 22:01:33 +0000
Manifest next update: Thu 13 Mar 2025 22:01:33 +0000
Files and hashes: 1: ESpqJg0eZ-CntObc9AP9Ofbel1Q.crl (hash: 09oq73ODSRZO1nmFDPrz6fzgAEa4aBCOIMmRR5cOUPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ESpqJg0eZ-CntObc9AP9Ofbel1Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:60:91:21:e4:fe:e2:2f:f1:23:48:5e:ef:03:c2:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=112a6a260d1e67e0a7b4e6dcf403fd39f6de9754
Validity
Not Before: Mar 12 22:01:33 2025 GMT
Not After : Mar 13 22:01:33 2025 GMT
Subject: CN=475fe8343df1efaa3228cb935d95f7aaa85f2284
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e8:2f:ba:18:0f:88:4e:bb:00:f5:33:74:22:
f4:74:53:9b:fd:c1:ff:4c:de:6f:ca:20:8c:4b:7e:
1a:e7:7d:f2:9d:ea:3f:d1:c5:5d:f6:22:59:8f:9a:
ef:e7:26:1f:cb:3d:89:e4:c3:93:0e:d7:06:48:20:
8e:ee:75:3c:5b:42:fe:ed:7e:55:61:82:50:12:bf:
3b:a5:69:fb:36:c1:c2:93:27:81:c9:ef:51:b2:b3:
98:18:fa:04:17:8d:ca:73:bd:99:32:7e:e7:3b:69:
5a:35:c1:0a:49:5f:7c:04:a8:3a:fa:c9:e1:f0:37:
68:28:d0:25:21:1d:42:d0:e0:aa:cd:4c:c0:eb:82:
92:6a:d3:28:e5:ed:dc:17:ef:fe:77:9a:d4:bf:65:
e3:57:f4:95:33:3a:36:9c:12:b0:f3:83:d0:2f:9e:
4a:40:9e:0f:7c:1a:d9:8a:89:dd:88:03:30:86:97:
44:98:64:27:ef:f8:61:7e:70:66:3e:2e:7c:01:f8:
c1:b6:b4:e2:94:0e:49:f7:70:ef:5d:41:d1:52:dd:
d7:65:ed:91:6c:6f:5d:4c:3e:99:08:97:21:bc:b8:
04:7d:21:d9:6a:4f:b4:f3:cb:ff:fd:3b:d8:99:89:
cc:fe:8e:eb:ca:11:9e:df:7d:33:d6:ce:a7:0a:50:
32:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:5F:E8:34:3D:F1:EF:AA:32:28:CB:93:5D:95:F7:AA:A8:5F:22:84
X509v3 Authority Key Identifier:
keyid:11:2A:6A:26:0D:1E:67:E0:A7:B4:E6:DC:F4:03:FD:39:F6:DE:97:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESpqJg0eZ-CntObc9AP9Ofbel1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/84faed-0cb5-4799-9447-a3988fc90d60/1/ESpqJg0eZ-CntObc9AP9Ofbel1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:f0:be:d0:2e:d9:cd:05:4a:28:39:84:3f:2f:5a:98:ff:12:
20:d6:46:f2:a1:06:ee:07:b4:ae:1e:7b:a8:d8:4b:be:39:7d:
6a:6f:bc:09:b6:be:18:be:aa:5d:7e:e2:49:eb:31:34:87:a3:
4e:53:0a:8c:a6:25:c7:fc:2c:d8:4a:ee:ee:34:30:eb:f5:4a:
0f:7a:83:9c:57:34:78:c2:fc:1e:89:41:56:05:c4:aa:3a:f2:
54:fa:28:da:60:c8:29:49:63:c1:85:cb:a3:35:5a:2b:ca:01:
a0:a1:f2:b5:cf:99:9d:e1:c4:02:5c:af:63:9e:a0:15:ce:c8:
15:72:21:d9:34:51:bd:2c:e4:3d:2b:dc:6b:7a:fa:85:47:09:
b6:2e:0b:60:17:72:21:99:6d:e3:3b:7d:72:ce:d8:b4:08:71:
6a:8c:92:1f:54:ff:ac:6c:fb:43:5a:72:f9:34:66:64:bf:5f:
69:78:1a:62:ed:a1:d7:0f:96:96:82:73:fc:84:df:5d:b3:eb:
5b:1e:12:f2:7c:a7:77:24:e1:8b:ee:da:5a:44:4e:fc:3c:25:
7d:23:89:be:0d:f7:f4:ef:7b:00:74:fb:74:f5:e7:0d:2b:54:
3e:0e:42:cf:46:46:22:f4:46:05:90:2d:57:ab:5f:37:7d:b9:
49:ca:07:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:24:07 2025 by rpki-client