Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
File: Ma-3caS5EQsRSqgHr7cIaxplN54.mft (raw, json)
Hash identifier: uCc/B3ewCr7bzBSmuHbA6Ccbpl6zKq9h+/dQ0JrWXpA=
Subject key identifier: BF:65:CF:34:E8:AE:CF:E1:83:60:D8:56:53:85:DC:B0:31:1B:16:EB
Authority key identifier: 31:AF:B7:71:A4:B9:11:0B:11:4A:A8:07:AF:B7:08:6B:1A:65:37:9E
Certificate issuer: /CN=31afb771a4b9110b114aa807afb7086b1a65379e
Certificate serial: 01964F6D6C4C580CF14D0CC4A88504303BF3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
Manifest number: 02B7
Signing time: Sat 19 Apr 2025 19:01:33 +0000
Manifest this update: Sat 19 Apr 2025 19:01:33 +0000
Manifest next update: Sun 20 Apr 2025 19:01:33 +0000
Files and hashes: 1: Ma-3caS5EQsRSqgHr7cIaxplN54.crl (hash: bl9DQbT6P2t6fr05S1Ezr9e+zBsscHXslHY3GYy2ysc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 19:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:6d:6c:4c:58:0c:f1:4d:0c:c4:a8:85:04:30:3b:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31afb771a4b9110b114aa807afb7086b1a65379e
Validity
Not Before: Apr 19 19:01:33 2025 GMT
Not After : Apr 20 19:01:33 2025 GMT
Subject: CN=bf65cf34e8aecfe18360d8565385dcb0311b16eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3d:f1:ce:be:ee:de:f0:1e:c0:71:50:2d:a4:
e5:c8:2f:c4:ea:9e:cf:c2:47:54:ec:e5:69:4a:a7:
bf:55:e9:37:cb:78:23:f7:7f:ad:af:f1:56:01:88:
4a:16:5e:a7:7f:65:1a:94:d3:01:51:4c:14:6f:98:
1b:69:2b:fa:56:03:7c:b8:6f:38:5f:b4:89:87:cc:
5c:2a:65:60:39:59:35:93:04:1e:ac:81:74:09:1d:
8a:36:9a:21:4a:50:29:f6:4f:7a:ed:ce:59:3e:7d:
9e:e6:e8:5b:45:46:ff:9c:b5:b8:b0:ef:3c:67:20:
e1:fe:bf:15:bd:96:c8:15:0f:80:98:75:38:13:a2:
1c:71:1a:3e:c4:b6:c4:95:e8:35:d9:bd:f8:20:56:
89:1b:bb:ae:de:a0:f2:70:0d:19:83:0f:87:43:37:
f2:8b:d1:96:da:ac:e2:8d:ce:5b:45:47:a6:72:53:
e7:a0:43:c4:5e:22:03:54:e8:a9:25:34:05:77:cd:
7d:d0:f0:09:7b:0f:d8:e3:cf:ba:d7:4f:2c:57:54:
98:d8:08:1a:51:90:6f:8a:5b:bb:df:b9:a9:ee:43:
6b:5e:74:e6:0f:11:ad:8e:89:b8:fa:8b:b1:8a:d9:
77:91:1a:cd:7f:45:30:57:67:1f:a2:05:4f:68:81:
4c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:65:CF:34:E8:AE:CF:E1:83:60:D8:56:53:85:DC:B0:31:1B:16:EB
X509v3 Authority Key Identifier:
keyid:31:AF:B7:71:A4:B9:11:0B:11:4A:A8:07:AF:B7:08:6B:1A:65:37:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:87:08:99:48:3c:40:38:74:d9:ca:2a:5d:bc:01:f3:06:e4:
73:56:28:fb:67:f2:05:10:aa:1b:3b:71:9c:47:5a:fd:48:27:
dd:8a:ed:7f:7e:5c:fc:45:b7:52:5d:f4:51:2b:4f:68:58:dd:
9c:ce:fc:d2:e1:ec:f5:72:88:db:72:e3:48:eb:c3:a0:6d:f2:
a0:27:c6:68:11:fe:80:a3:29:5a:e3:4f:a5:79:7f:fd:1b:79:
30:63:86:12:d3:1d:b3:ea:cc:bf:da:f7:64:d0:39:e2:b9:52:
3a:f7:17:9d:a2:3b:71:55:a7:0a:b7:99:dd:7a:ff:aa:a0:69:
45:bc:ff:98:f5:01:ac:2d:20:37:7b:3e:ca:0c:ff:33:a5:bc:
8c:51:6d:eb:ed:20:91:fc:f1:77:88:f9:8e:c4:05:9e:ff:58:
c2:b5:39:c3:9f:5f:dd:77:87:19:ba:7f:ab:5f:61:7a:95:55:
c0:1c:9c:d3:34:30:d2:4a:e8:c0:65:b2:e1:c6:5a:d0:fe:a0:
1d:a8:18:53:41:9e:da:f4:6b:c4:b6:bb:59:4b:e3:0b:f1:0a:
ba:bc:e1:23:8c:1c:c2:87:d8:91:63:63:58:0e:25:27:5a:40:
25:6b:e1:e2:4e:10:af:30:8d:42:4f:39:ae:4e:7e:3b:f6:38:
b4:cd:92:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:04:03 2025 by rpki-client