Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
File: r5aNFt0rQdNStf0zxJs-xP2tQlg.mft (raw, json)
Hash identifier: 3NmretIM2xaMhLmx9wmDjm14zzaisfSqaKWaR5iP9XY=
Subject key identifier: D3:13:6A:39:C7:1D:93:40:12:55:87:BE:8C:76:3B:CA:00:12:6D:71
Authority key identifier: AF:96:8D:16:DD:2B:41:D3:52:B5:FD:33:C4:9B:3E:C4:FD:AD:42:58
Certificate issuer: /CN=af968d16dd2b41d352b5fd33c49b3ec4fdad4258
Certificate serial: 019612EA814924B959B168207C3172C8556E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
Manifest number: 0DEC
Signing time: Tue 08 Apr 2025 01:01:20 +0000
Manifest this update: Tue 08 Apr 2025 01:01:20 +0000
Manifest next update: Wed 09 Apr 2025 01:01:20 +0000
Files and hashes: 1: r5aNFt0rQdNStf0zxJs-xP2tQlg.crl (hash: aooB91VRhG4UDILb9fup9x/rQGSPXGB80r1TqjMVIlk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 01:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:12:ea:81:49:24:b9:59:b1:68:20:7c:31:72:c8:55:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af968d16dd2b41d352b5fd33c49b3ec4fdad4258
Validity
Not Before: Apr 8 01:01:20 2025 GMT
Not After : Apr 9 01:01:20 2025 GMT
Subject: CN=d3136a39c71d9340125587be8c763bca00126d71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2e:d1:3a:53:cb:d3:bc:bc:08:92:82:ae:4d:
95:a0:1b:50:f3:d0:fb:d6:e4:93:5a:09:8b:c1:b0:
4a:06:d2:96:a0:77:8d:18:fa:16:df:cb:f7:31:49:
ac:35:a9:13:9c:e6:8a:b7:15:c8:2a:0a:4d:73:10:
39:0b:a9:15:8f:46:a3:95:19:45:15:1d:16:cf:d4:
ba:61:9d:fd:62:ee:8f:d2:b7:df:95:f5:aa:d4:01:
e9:2e:27:b3:4f:55:b9:67:5c:79:c1:a5:44:d9:75:
84:19:c3:13:c5:00:bf:0f:c5:1b:8d:55:b5:2c:00:
3d:b1:ee:93:fc:d7:71:89:34:60:b9:ed:88:4d:de:
3e:03:c5:a3:78:c7:e7:a0:a7:ad:9e:42:07:e1:7f:
84:71:21:49:37:8a:ea:58:0d:54:dc:1b:eb:e9:60:
0f:53:d5:2e:90:21:39:27:ef:2a:6c:bf:f6:70:8e:
bf:ac:75:02:f9:9b:6b:d1:29:d1:88:0a:5f:53:8b:
84:61:ed:59:0a:82:03:53:9f:ca:3a:16:e5:19:0b:
42:63:f5:6d:70:76:ad:64:f5:d0:e2:3e:76:0d:b8:
52:9a:77:41:43:3d:fe:ec:a0:8c:e9:ab:20:f4:75:
07:d1:a8:f7:41:4f:00:d1:ee:d2:30:28:99:63:80:
4b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:13:6A:39:C7:1D:93:40:12:55:87:BE:8C:76:3B:CA:00:12:6D:71
X509v3 Authority Key Identifier:
keyid:AF:96:8D:16:DD:2B:41:D3:52:B5:FD:33:C4:9B:3E:C4:FD:AD:42:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:1c:e4:da:87:de:0d:61:83:73:e9:8e:1a:6a:da:1f:14:5a:
42:f5:61:18:c9:a8:96:36:1c:c4:73:f1:1d:2c:ba:72:fa:22:
46:03:9f:2d:81:0f:ee:b6:07:67:da:e3:f2:c1:58:5f:9e:a4:
08:88:db:84:b7:44:14:a3:06:42:be:15:b5:e6:09:cc:2e:02:
46:ec:0f:83:42:ae:a6:08:9c:c4:e5:ea:6a:de:71:23:d0:77:
3d:d9:a3:d6:c9:9d:57:17:ca:5e:f1:e7:25:e6:1d:88:20:ba:
f0:7a:23:0a:0c:b9:61:01:10:f4:ac:9f:39:a8:73:dd:18:43:
2c:04:72:e4:31:2c:e8:33:fe:e0:20:02:45:e0:e5:a4:28:c3:
21:fc:76:18:7f:ad:0c:4b:2a:3f:9e:65:ab:7f:24:66:d7:7e:
47:b1:10:1f:23:66:67:22:4c:f3:50:a7:41:99:89:c9:90:f5:
7d:c4:a4:86:16:5a:0b:df:b4:2b:98:ae:9d:62:e1:d4:93:0d:
cd:b4:69:71:4a:76:89:d4:88:0d:69:23:9c:b7:37:15:5a:2e:
5d:b2:83:2c:7a:68:d0:10:85:77:8c:ac:ef:35:b7:9c:8f:d0:
56:aa:0c:ae:3e:fd:a2:b1:27:54:7f:f5:41:03:59:16:12:5b:
e0:3e:43:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 09:30:56 2025 by rpki-client