Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5ea2a6-ff2f-47fd-b7c8-f4f45043b8bc/1/p3tNEFqlxNZemaq2926tWJ5ih8w.mft
File: p3tNEFqlxNZemaq2926tWJ5ih8w.mft (raw, json)
Hash identifier: AgHIEiITqD6jxBgV1DQzcf0F9z4u8nShL+71Pq8Lu7s=
Subject key identifier: 83:78:62:00:2A:93:0E:DE:4B:58:1F:13:F1:9B:44:AB:11:56:46:1B
Authority key identifier: A7:7B:4D:10:5A:A5:C4:D6:5E:99:AA:B6:F7:6E:AD:58:9E:62:87:CC
Certificate issuer: /CN=a77b4d105aa5c4d65e99aab6f76ead589e6287cc
Certificate serial: 019648213C31D0C23348B14DE1575A2E3AF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p3tNEFqlxNZemaq2926tWJ5ih8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5ea2a6-ff2f-47fd-b7c8-f4f45043b8bc/1/p3tNEFqlxNZemaq2926tWJ5ih8w.mft
Manifest number: 02F4
Signing time: Fri 18 Apr 2025 09:00:59 +0000
Manifest this update: Fri 18 Apr 2025 09:00:59 +0000
Manifest next update: Sat 19 Apr 2025 09:00:59 +0000
Files and hashes: 1: p3tNEFqlxNZemaq2926tWJ5ih8w.crl (hash: MCXgJsKF+iYY0weFSnZW4Fy4D0Mc9PuuuverdG1O+cU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5ea2a6-ff2f-47fd-b7c8-f4f45043b8bc/1/p3tNEFqlxNZemaq2926tWJ5ih8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/5ea2a6-ff2f-47fd-b7c8-f4f45043b8bc/1/p3tNEFqlxNZemaq2926tWJ5ih8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/p3tNEFqlxNZemaq2926tWJ5ih8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 09:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:48:21:3c:31:d0:c2:33:48:b1:4d:e1:57:5a:2e:3a:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a77b4d105aa5c4d65e99aab6f76ead589e6287cc
Validity
Not Before: Apr 18 09:00:59 2025 GMT
Not After : Apr 19 09:00:59 2025 GMT
Subject: CN=837862002a930ede4b581f13f19b44ab1156461b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:81:b0:c4:a4:eb:f4:76:96:f6:b8:6b:d2:d9:
94:c9:eb:95:54:90:9c:17:22:18:cf:fc:84:9c:4b:
24:0d:64:fa:d9:da:e5:9d:4e:76:5c:33:60:5b:4a:
7d:60:4f:a6:e4:72:31:f8:43:22:fa:33:de:28:37:
52:a6:1f:20:65:00:43:08:62:69:b2:e8:6d:1e:51:
af:ec:dd:68:e8:5d:ac:ff:1a:c2:da:d2:cf:1f:b2:
fa:d1:5d:f8:8e:08:7c:4c:72:5f:3a:ba:5e:70:c9:
23:06:de:fd:cb:dc:1a:d8:a7:f8:f2:97:fc:c1:ed:
05:eb:d1:aa:b1:bd:cc:1b:10:c1:2c:9e:e2:a9:14:
10:f5:37:65:57:c4:ed:0e:4d:0f:be:75:dd:89:a8:
3f:c6:83:f8:74:2e:58:6a:86:ea:c5:49:f5:c7:91:
44:6b:71:3d:c2:24:d0:e8:34:3f:6c:b2:67:50:82:
72:60:58:76:76:f0:9b:a5:65:1c:ad:a4:e4:f4:1f:
63:8e:4d:6b:e5:42:a5:f6:4a:eb:1c:01:b3:20:82:
1e:20:fb:aa:93:2c:bd:69:31:a6:b5:8c:ce:f7:5f:
d6:d1:29:81:ad:48:c7:7a:ec:d4:bb:55:54:ec:2c:
f2:ec:4b:39:b7:4d:62:f1:97:22:5b:fc:85:55:97:
41:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:78:62:00:2A:93:0E:DE:4B:58:1F:13:F1:9B:44:AB:11:56:46:1B
X509v3 Authority Key Identifier:
keyid:A7:7B:4D:10:5A:A5:C4:D6:5E:99:AA:B6:F7:6E:AD:58:9E:62:87:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p3tNEFqlxNZemaq2926tWJ5ih8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5ea2a6-ff2f-47fd-b7c8-f4f45043b8bc/1/p3tNEFqlxNZemaq2926tWJ5ih8w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5ea2a6-ff2f-47fd-b7c8-f4f45043b8bc/1/p3tNEFqlxNZemaq2926tWJ5ih8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:56:39:b4:23:88:e7:a4:fa:d3:88:2f:16:85:07:0e:c2:0c:
1e:64:7b:cf:24:9f:0b:85:ae:ab:52:6f:21:82:c4:84:aa:ab:
ba:48:78:88:a9:50:b9:62:39:aa:ca:89:5e:22:cf:9c:9b:7b:
48:4d:47:5e:28:c7:41:7f:bf:0b:af:69:c5:be:47:c4:af:c2:
8b:00:5c:30:4c:de:62:a5:31:6b:89:10:73:53:30:bf:3e:a0:
73:84:7c:e5:53:12:92:79:03:93:db:d6:69:a0:e7:59:2d:cb:
b4:91:3e:ae:94:ed:03:85:d5:01:62:2f:40:7c:54:16:68:e1:
ca:d2:4f:ba:ae:d6:7e:7c:03:85:57:b5:e0:35:a7:ae:f3:36:
e1:e3:4f:e6:d4:91:09:72:26:d8:42:4c:42:c4:8f:10:9f:2a:
f0:bb:bb:68:ad:3b:fa:7b:ed:cc:11:e4:7e:bb:1e:7b:c7:1b:
23:e7:bc:5f:b1:56:36:95:40:a3:80:a6:c7:6d:e2:51:07:52:
93:7f:16:16:38:14:97:a8:f8:5d:67:47:71:ce:23:b2:7c:7a:
68:1a:e8:fa:fe:c5:e2:f8:e4:69:93:b8:50:19:0c:76:f6:2d:
fc:5f:b3:fd:f0:0a:a5:e3:81:95:0f:e1:24:d3:34:21:08:44:
c2:57:f3:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 16:18:14 2025 by rpki-client