Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5ea2a6-ff2f-47fd-b7c8-f4f45043b8bc/1/p3tNEFqlxNZemaq2926tWJ5ih8w.mft
File: p3tNEFqlxNZemaq2926tWJ5ih8w.mft (raw, json)
Hash identifier: PZ1pxdSgTvDphzs/JMAczlrlsydTo+U33fHwqBd5TLE=
Subject key identifier: 39:D8:9F:D6:01:8D:F6:4A:EF:CA:F3:B5:E8:08:2A:D7:48:75:1B:85
Authority key identifier: A7:7B:4D:10:5A:A5:C4:D6:5E:99:AA:B6:F7:6E:AD:58:9E:62:87:CC
Certificate issuer: /CN=a77b4d105aa5c4d65e99aab6f76ead589e6287cc
Certificate serial: 01958CCE33F2412C13E3953DFC6780142C39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p3tNEFqlxNZemaq2926tWJ5ih8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5ea2a6-ff2f-47fd-b7c8-f4f45043b8bc/1/p3tNEFqlxNZemaq2926tWJ5ih8w.mft
Manifest number: 0293
Signing time: Thu 13 Mar 2025 00:01:18 +0000
Manifest this update: Thu 13 Mar 2025 00:01:18 +0000
Manifest next update: Fri 14 Mar 2025 00:01:18 +0000
Files and hashes: 1: p3tNEFqlxNZemaq2926tWJ5ih8w.crl (hash: NeUy0jK/I5RHKmRWtA1mHyv6GjhtWYGVbk6Fbqs+Vn0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5ea2a6-ff2f-47fd-b7c8-f4f45043b8bc/1/p3tNEFqlxNZemaq2926tWJ5ih8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/5ea2a6-ff2f-47fd-b7c8-f4f45043b8bc/1/p3tNEFqlxNZemaq2926tWJ5ih8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/p3tNEFqlxNZemaq2926tWJ5ih8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:ce:33:f2:41:2c:13:e3:95:3d:fc:67:80:14:2c:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a77b4d105aa5c4d65e99aab6f76ead589e6287cc
Validity
Not Before: Mar 13 00:01:18 2025 GMT
Not After : Mar 14 00:01:18 2025 GMT
Subject: CN=39d89fd6018df64aefcaf3b5e8082ad748751b85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:30:21:78:d2:98:f2:70:4e:e4:6d:39:58:c6:
30:31:3c:6a:4b:bd:f9:0a:fb:5a:7e:59:2a:01:52:
e4:9b:c2:1e:6d:3c:4a:47:ba:08:6d:dd:52:80:ea:
64:b8:04:a0:1a:1b:18:22:e8:31:59:cd:65:d4:3b:
7e:cd:3d:d4:ef:a0:a2:08:a9:43:4a:46:46:6c:96:
d4:7f:75:42:30:68:98:7e:ad:5a:03:87:e9:7e:78:
5d:56:04:02:89:93:06:a1:9e:71:5f:aa:48:da:32:
e3:08:8d:02:c7:0a:e6:e7:98:43:a7:b6:8b:22:37:
93:b4:f9:d5:fc:cc:57:57:21:b5:8d:1f:e0:77:2e:
b9:f1:4c:c7:99:c1:f9:fe:9d:90:3c:aa:78:36:35:
aa:11:8e:83:a2:a0:94:94:c2:cf:56:29:5f:c0:bc:
3c:3b:9b:39:ec:21:24:f3:f3:28:b1:5d:fd:42:10:
74:93:49:3b:de:60:86:28:67:99:c0:ce:41:b6:73:
67:0b:1b:cd:ad:f8:1c:99:41:78:57:9a:df:2f:b8:
92:46:dd:01:42:b3:c9:1f:0b:15:af:c5:8a:16:fa:
66:f6:fe:fa:06:19:7d:ee:37:f7:22:f2:8e:30:25:
c0:04:c9:07:d9:b8:87:4e:07:ca:78:bc:f4:4f:a1:
ed:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:D8:9F:D6:01:8D:F6:4A:EF:CA:F3:B5:E8:08:2A:D7:48:75:1B:85
X509v3 Authority Key Identifier:
keyid:A7:7B:4D:10:5A:A5:C4:D6:5E:99:AA:B6:F7:6E:AD:58:9E:62:87:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p3tNEFqlxNZemaq2926tWJ5ih8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5ea2a6-ff2f-47fd-b7c8-f4f45043b8bc/1/p3tNEFqlxNZemaq2926tWJ5ih8w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5ea2a6-ff2f-47fd-b7c8-f4f45043b8bc/1/p3tNEFqlxNZemaq2926tWJ5ih8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:f0:9d:d3:2d:53:b7:ab:17:ef:6f:10:4c:59:3b:d1:91:80:
08:f2:0e:b3:93:cd:ef:ea:22:89:31:b8:43:11:b6:b1:f4:e9:
84:e2:23:1e:48:df:13:47:21:52:5e:fc:a6:8b:20:6a:af:cd:
0b:a8:16:f9:56:65:e8:c9:88:7f:e3:a0:19:0d:2c:d3:d5:a4:
5d:35:76:ab:af:93:5e:a6:87:94:18:33:f9:c8:b0:6e:e5:27:
3c:f6:fa:0d:72:b0:24:44:29:ff:ee:20:13:62:20:f0:99:b1:
e4:52:92:b6:60:ae:eb:18:ca:07:1c:2d:2f:ab:3e:e2:97:83:
e0:76:81:9e:71:82:ef:e3:1d:f8:2f:1a:59:5b:2a:27:27:5a:
97:0c:4a:ca:95:af:8e:5d:82:72:97:5a:7a:1f:10:1c:1e:31:
a6:a8:cb:01:33:f7:d3:c6:b3:7d:ce:ac:7b:9e:e3:d6:4c:d8:
f3:af:e9:f7:16:5f:b8:80:77:61:55:cd:00:55:66:4e:ca:d0:
37:72:c4:31:5d:78:b1:81:42:05:a2:bd:3e:e8:21:e2:1b:c0:
5c:45:30:01:58:c1:c1:ee:30:5f:e5:ec:1d:8e:b2:b2:a1:e7:
8e:e8:db:32:72:26:44:0a:62:3d:c3:15:d3:6f:c4:74:3c:aa:
09:a7:3b:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:55:49 2025 by rpki-client