Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/648a08-3513-426e-8eee-98efc80a1593/1/Um-cDZfWNn4Mpy0WJMWFCmENZa4.mft
File: Um-cDZfWNn4Mpy0WJMWFCmENZa4.mft (raw, json)
Hash identifier: hFcUZBmk5Z9jrHxUr6zva5EHFTxdvekUqk9+i/sBQbI=
Subject key identifier: DD:CB:78:9E:7B:2E:3B:DA:E3:7E:AD:18:FA:40:1B:0F:84:E4:4B:9C
Authority key identifier: 52:6F:9C:0D:97:D6:36:7E:0C:A7:2D:16:24:C5:85:0A:61:0D:65:AE
Certificate issuer: /CN=526f9c0d97d6367e0ca72d1624c5850a610d65ae
Certificate serial: 01958EF38C886B0AA886C520BB7268F7A91C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Um-cDZfWNn4Mpy0WJMWFCmENZa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/648a08-3513-426e-8eee-98efc80a1593/1/Um-cDZfWNn4Mpy0WJMWFCmENZa4.mft
Manifest number: 0E62
Signing time: Thu 13 Mar 2025 10:01:20 +0000
Manifest this update: Thu 13 Mar 2025 10:01:20 +0000
Manifest next update: Fri 14 Mar 2025 10:01:20 +0000
Files and hashes: 1: Um-cDZfWNn4Mpy0WJMWFCmENZa4.crl (hash: OENOzEYvvBZid7sDAUgeGNhEUm3UaQ2M8QawFIX5+Ao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/648a08-3513-426e-8eee-98efc80a1593/1/Um-cDZfWNn4Mpy0WJMWFCmENZa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/648a08-3513-426e-8eee-98efc80a1593/1/Um-cDZfWNn4Mpy0WJMWFCmENZa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Um-cDZfWNn4Mpy0WJMWFCmENZa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:f3:8c:88:6b:0a:a8:86:c5:20:bb:72:68:f7:a9:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=526f9c0d97d6367e0ca72d1624c5850a610d65ae
Validity
Not Before: Mar 13 10:01:20 2025 GMT
Not After : Mar 14 10:01:20 2025 GMT
Subject: CN=ddcb789e7b2e3bdae37ead18fa401b0f84e44b9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1d:53:8f:31:bf:88:8b:cd:88:e7:b7:12:fb:
78:dc:50:19:fd:2a:e6:22:7b:cb:1c:e2:1e:ad:63:
46:d9:97:b7:14:51:5d:79:40:8d:21:29:1b:c4:65:
62:ca:0e:f9:fe:04:04:10:ad:36:7c:d2:4e:cf:f8:
39:03:1f:7b:2f:d4:1b:54:3e:63:32:31:8f:55:81:
34:20:8f:44:69:8c:72:38:19:23:00:c7:65:a5:88:
dc:3d:2c:4e:a5:1b:7d:48:f5:09:b6:3b:d7:a4:83:
75:1f:6c:20:60:bd:23:8d:4b:a3:c2:19:95:9d:a3:
0c:a2:2c:8c:ab:35:cf:d3:aa:50:14:e9:65:c6:eb:
82:c6:08:ba:c6:48:7a:f0:af:41:d2:97:73:ee:4d:
06:99:5c:01:32:50:f3:ab:f6:5f:37:8e:82:7f:a6:
37:cc:33:a8:75:25:de:ae:d2:97:10:83:4c:32:7d:
c6:e3:8e:57:55:da:57:ad:ca:78:65:89:bf:eb:9e:
79:7b:f3:b2:a3:b0:ad:c3:6a:02:c6:7f:24:86:73:
62:52:fc:1d:94:af:45:35:b0:aa:ec:f1:d0:d7:c3:
64:98:c4:21:d3:a9:d4:2c:8a:a5:1c:4f:32:56:be:
b3:33:80:cc:2c:67:97:13:26:21:18:59:0b:44:26:
ec:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:CB:78:9E:7B:2E:3B:DA:E3:7E:AD:18:FA:40:1B:0F:84:E4:4B:9C
X509v3 Authority Key Identifier:
keyid:52:6F:9C:0D:97:D6:36:7E:0C:A7:2D:16:24:C5:85:0A:61:0D:65:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Um-cDZfWNn4Mpy0WJMWFCmENZa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/648a08-3513-426e-8eee-98efc80a1593/1/Um-cDZfWNn4Mpy0WJMWFCmENZa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/648a08-3513-426e-8eee-98efc80a1593/1/Um-cDZfWNn4Mpy0WJMWFCmENZa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:5a:97:cb:35:c0:80:93:e3:13:b7:6d:27:27:fd:33:10:59:
1e:f6:a1:b6:89:d1:10:a7:c8:51:41:da:45:ea:78:75:19:56:
6b:eb:36:50:87:1c:7b:17:b8:44:ef:13:c3:7f:1d:fd:06:0f:
1b:ff:e3:80:65:2b:65:98:8d:0e:01:25:54:49:74:f2:1b:ee:
9d:43:57:6a:26:c2:ee:ca:2f:be:01:ff:57:88:26:ce:1d:bc:
7c:2e:e9:8f:60:2d:f8:62:73:20:eb:76:87:14:33:63:f6:49:
b9:d5:64:a3:70:0a:b4:9a:a3:3f:9a:05:94:5b:c7:56:56:5c:
0a:17:22:e1:ad:18:5a:14:b8:f4:2e:c5:44:79:cd:45:79:1f:
0a:5a:d8:51:1e:06:8c:be:fe:47:00:d7:39:e1:f6:79:79:88:
cc:78:b0:16:1d:f4:93:f6:fa:ec:a8:67:e3:31:b1:18:05:85:
70:ec:06:7c:7c:a4:1a:88:62:06:0d:b7:e4:86:74:60:54:79:
91:c4:36:31:90:ba:51:c3:07:2f:c4:99:4c:11:25:79:08:86:
d3:8c:f3:53:56:6c:4f:ca:06:aa:1b:41:19:9d:ac:c7:7e:59:
e2:82:ce:95:49:ec:c5:a9:1d:b5:58:3a:db:af:29:3f:85:fa:
ff:7c:f3:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:51:20 2025 by rpki-client