Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft
File: iMaZNJivBRiWLl9I1chG3BddGIQ.mft (raw, json)
Hash identifier: 8noRGYMWOavmpumUR3CPdA3Ih8O9N/kKcFogdJDmuaM=
Subject key identifier: 66:73:68:B9:C0:C2:A0:5F:FB:9F:2A:A4:7F:66:17:CB:AB:A1:6D:24
Authority key identifier: 88:C6:99:34:98:AF:05:18:96:2E:5F:48:D5:C8:46:DC:17:5D:18:84
Certificate issuer: /CN=88c6993498af0518962e5f48d5c846dc175d1884
Certificate serial: 019590AB2F84DB386A7DFE968B3376FFB0DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iMaZNJivBRiWLl9I1chG3BddGIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft
Manifest number: 1496
Signing time: Thu 13 Mar 2025 18:01:32 +0000
Manifest this update: Thu 13 Mar 2025 18:01:32 +0000
Manifest next update: Fri 14 Mar 2025 18:01:32 +0000
Files and hashes: 1: iMaZNJivBRiWLl9I1chG3BddGIQ.crl (hash: 0Z2esVr6zwPS7IIOoqnCO15D/BjleHGbvf2JRhhWt+Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/iMaZNJivBRiWLl9I1chG3BddGIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:ab:2f:84:db:38:6a:7d:fe:96:8b:33:76:ff:b0:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88c6993498af0518962e5f48d5c846dc175d1884
Validity
Not Before: Mar 13 18:01:32 2025 GMT
Not After : Mar 14 18:01:32 2025 GMT
Subject: CN=667368b9c0c2a05ffb9f2aa47f6617cbaba16d24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:85:9d:f3:f0:fe:a8:c6:00:18:c2:24:de:57:
b5:08:30:98:10:f5:10:3c:38:62:4e:d8:10:60:93:
3a:71:a6:a2:53:1c:9d:49:6b:ae:9b:d6:8d:a4:c8:
d2:3f:12:25:3f:63:90:1d:61:86:30:e8:e0:ac:41:
fe:84:7c:9a:dd:de:88:0e:9b:2b:e4:28:6d:0b:6b:
98:23:02:ec:02:0d:5e:74:9a:6d:c7:f0:11:0a:3e:
e2:ee:a7:4d:08:e5:f5:d1:df:15:0d:ed:b0:e6:5b:
73:22:5f:8e:61:03:1d:d6:85:ea:eb:8f:7c:99:25:
c0:5b:9c:a2:83:7d:c8:50:bf:35:54:95:ae:98:01:
0b:0b:f4:a4:9f:ad:d1:58:ce:80:29:19:61:0e:70:
32:51:2f:6a:f1:9f:5a:33:ac:36:14:7b:b2:42:a7:
17:15:88:46:54:d4:15:80:02:42:c3:39:95:9f:04:
ff:93:5a:4f:2b:80:2b:b8:5c:7d:b9:cf:3a:56:07:
71:b6:b4:75:a7:30:58:ef:81:8b:62:3c:e8:75:05:
bb:76:e0:93:00:f9:ab:be:e9:fc:ce:d8:d8:9d:29:
23:e6:bb:a9:8b:bc:5b:ba:91:ac:b0:61:9a:47:1c:
ad:df:62:b6:6e:3d:2b:12:ec:58:0b:d0:e0:3f:d2:
ee:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:73:68:B9:C0:C2:A0:5F:FB:9F:2A:A4:7F:66:17:CB:AB:A1:6D:24
X509v3 Authority Key Identifier:
keyid:88:C6:99:34:98:AF:05:18:96:2E:5F:48:D5:C8:46:DC:17:5D:18:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iMaZNJivBRiWLl9I1chG3BddGIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:73:fd:c6:f1:18:98:ce:9e:24:5b:af:5a:bc:04:ee:9c:6b:
59:e2:c0:52:b1:db:97:39:93:74:8b:7e:9e:12:b4:9a:14:2e:
37:f4:33:dd:e3:57:28:e7:0e:ad:e8:02:d4:55:e1:49:3e:98:
6b:eb:54:b0:9a:e3:86:67:1f:3e:7f:7b:24:c5:08:41:b4:72:
0e:ce:69:87:43:7e:00:e1:47:e6:a6:d8:73:ed:3d:1a:12:f9:
d2:46:30:b0:80:d6:7b:1c:74:1b:b6:31:e3:4f:d3:d2:ce:86:
ab:18:c4:77:34:61:bd:03:ae:a1:34:c6:b8:34:51:19:cc:9c:
f1:f3:e9:50:dc:5c:14:f6:30:91:c7:a6:13:f6:e1:86:80:9f:
c1:bc:78:9b:20:eb:0e:b5:32:d4:97:e6:16:75:41:8f:56:8a:
56:ad:87:76:18:73:3e:76:df:ee:d1:cc:c0:d0:94:3e:ea:da:
3a:44:1d:6a:9b:54:d9:c4:1a:c4:07:0d:09:ca:26:42:74:a0:
d8:89:83:1a:d3:f2:db:d5:2b:22:7f:1e:83:8a:45:ed:26:7a:
8e:7b:c1:a7:35:0a:b3:aa:ae:b3:bb:cf:5a:e8:a2:27:e5:a5:
7f:a8:a6:bf:7d:1f:71:8f:af:e7:1a:2d:a7:00:47:5a:a2:79:
76:ce:f2:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:11:15 2025 by rpki-client