Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.mft
File: rfjUKjroBc6WqpT66fW0QG_0VZk.mft (raw, json)
Hash identifier: XUKjkVDeLBTVgFMLCtz42rTOP0x5251ZTqn1cYJBJQQ=
Subject key identifier: 39:D0:EC:9E:86:6A:8F:D0:B5:A5:1A:BF:4B:C2:DB:C1:06:5F:0D:49
Authority key identifier: AD:F8:D4:2A:3A:E8:05:CE:96:AA:94:FA:E9:F5:B4:40:6F:F4:55:99
Certificate issuer: /CN=adf8d42a3ae805ce96aa94fae9f5b4406ff45599
Certificate serial: 01965D96504CAF9D51BC84D5EBFD8D455D43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfjUKjroBc6WqpT66fW0QG_0VZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.mft
Manifest number: 0269
Signing time: Tue 22 Apr 2025 13:00:54 +0000
Manifest this update: Tue 22 Apr 2025 13:00:54 +0000
Manifest next update: Wed 23 Apr 2025 13:00:54 +0000
Files and hashes: 1: rfjUKjroBc6WqpT66fW0QG_0VZk.crl (hash: QskUxcjkGuNEEwmwCpfZNcjmt5lKAtbfKxhr8Bs+kYw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rfjUKjroBc6WqpT66fW0QG_0VZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 13:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5d:96:50:4c:af:9d:51:bc:84:d5:eb:fd:8d:45:5d:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf8d42a3ae805ce96aa94fae9f5b4406ff45599
Validity
Not Before: Apr 22 13:00:54 2025 GMT
Not After : Apr 23 13:00:54 2025 GMT
Subject: CN=39d0ec9e866a8fd0b5a51abf4bc2dbc1065f0d49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7e:39:84:a5:ec:5a:4c:8d:6f:c0:e3:a0:e7:
32:c1:b0:c9:67:d4:a8:54:4e:19:74:ff:6e:1a:ab:
a7:15:7e:a1:39:74:18:a9:0e:d3:b3:0e:a1:41:b8:
a4:6d:86:98:7c:4e:61:33:00:bf:0a:35:2c:71:37:
53:40:17:45:a5:c9:4f:e6:ac:b5:78:8a:71:bc:0b:
ee:05:50:45:0a:b6:d7:03:c2:21:1c:c2:11:f1:04:
78:34:71:a4:b2:73:62:e6:2b:2d:06:ef:9f:ab:61:
24:9d:53:e5:49:d6:b8:2c:a9:3b:ee:af:4a:2f:f6:
71:14:08:be:1f:4c:f0:2b:3a:4b:98:06:1f:1e:41:
a8:8f:bf:dd:33:15:f2:cc:4d:65:f5:65:4c:41:b9:
d2:5e:4e:6c:57:10:3c:6c:1d:5a:00:d1:40:62:ac:
33:a3:71:ea:dc:f4:29:8c:c0:8f:9b:c1:b9:d0:a7:
2a:d7:60:b4:3b:b0:c4:0a:c7:fd:fc:0b:85:56:fe:
e4:dc:2f:7b:73:66:1e:04:fd:4d:17:37:cc:26:4f:
5b:ad:ac:d4:0c:4f:40:a7:ca:a3:05:46:c8:4c:4a:
9c:03:30:82:d5:9b:08:16:4a:e9:14:45:7e:61:8e:
79:b6:da:c7:de:3d:9b:53:1b:dc:32:da:8d:c7:44:
62:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:D0:EC:9E:86:6A:8F:D0:B5:A5:1A:BF:4B:C2:DB:C1:06:5F:0D:49
X509v3 Authority Key Identifier:
keyid:AD:F8:D4:2A:3A:E8:05:CE:96:AA:94:FA:E9:F5:B4:40:6F:F4:55:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfjUKjroBc6WqpT66fW0QG_0VZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:32:c3:56:dd:41:2e:b2:15:fb:10:00:02:6a:78:78:3e:d4:
6b:32:08:ed:c0:05:15:0e:4e:91:02:67:62:ad:22:f6:72:7e:
4a:2e:d7:18:8f:b5:fc:8f:77:7a:9c:ba:82:6d:7b:3c:49:06:
44:dc:50:e3:95:3d:8a:f3:4f:9b:89:57:9e:1b:12:8b:fb:d1:
e7:1c:7e:4d:aa:75:e9:f3:d4:34:1f:0c:ee:b8:68:06:d9:81:
8c:dc:5c:0d:26:ca:ca:a0:07:21:1f:2b:1f:e6:21:99:5a:63:
2d:7d:79:a9:e5:73:0f:de:e9:83:a5:4b:05:39:00:c2:d2:65:
f2:60:27:f9:bd:c0:05:b0:eb:77:c8:8b:70:ab:5e:e7:35:13:
f8:30:65:75:ac:dd:b4:47:07:f7:6d:70:46:fc:39:01:2d:4f:
6e:ce:45:e2:34:39:e5:39:5d:0e:f4:ec:f4:ea:2a:f0:7b:b2:
40:6b:76:0d:41:a6:2d:eb:35:b6:6a:2e:f4:0e:7b:06:14:44:
59:7f:c6:6f:c6:83:00:f3:92:6a:96:2c:44:7c:b8:ba:e1:aa:
71:bb:24:36:27:6a:5d:6f:56:81:59:46:ec:23:fc:0b:a9:e1:
c1:0d:90:82:13:72:57:da:08:c3:24:34:54:a6:ae:c0:7b:40:
fd:01:6a:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 19:46:50 2025 by rpki-client