Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft
File: d11030Q8uAUXzkFQ3OImYpQPHXw.mft (raw, json)
Hash identifier: 96SFt4CFtkt7nOCpmwkNbVIOmub4M5dTq7ld9Yi2i9k=
Subject key identifier: 0B:7D:9D:DF:2A:37:1B:03:18:8B:C0:8A:25:EC:68:BA:73:1B:FF:A9
Authority key identifier: 77:5D:74:DF:44:3C:B8:05:17:CE:41:50:DC:E2:26:62:94:0F:1D:7C
Certificate issuer: /CN=775d74df443cb80517ce4150dce22662940f1d7c
Certificate serial: 01951135139448806EFBC335AC3A8C15F2AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d11030Q8uAUXzkFQ3OImYpQPHXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft
Manifest number: 0891
Signing time: Mon 17 Feb 2025 00:00:45 +0000
Manifest this update: Mon 17 Feb 2025 00:00:45 +0000
Manifest next update: Tue 18 Feb 2025 00:00:45 +0000
Files and hashes: 1: d11030Q8uAUXzkFQ3OImYpQPHXw.crl (hash: WuHFaXWpeBnWJuoDauUnj7hBUanKJc9P/v6zZXaC2a8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/d11030Q8uAUXzkFQ3OImYpQPHXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:35:13:94:48:80:6e:fb:c3:35:ac:3a:8c:15:f2:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=775d74df443cb80517ce4150dce22662940f1d7c
Validity
Not Before: Feb 17 00:00:45 2025 GMT
Not After : Feb 18 00:00:45 2025 GMT
Subject: CN=0b7d9ddf2a371b03188bc08a25ec68ba731bffa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:28:ca:5f:00:f8:d1:8b:3b:a4:5d:c4:1c:2c:
26:a9:19:e2:5c:59:57:e2:96:5c:0c:fb:81:aa:75:
5d:e7:6c:26:dc:68:75:a1:37:92:06:58:e9:2e:91:
c4:74:4f:c6:a9:a7:47:e6:67:bc:42:73:0e:4e:af:
f3:06:4c:57:91:96:d1:44:8d:0d:7d:55:3a:70:c5:
2f:f6:49:bf:27:68:0b:fe:18:b5:50:f4:94:c0:be:
d1:04:c3:91:f1:df:f8:62:1d:36:37:17:3a:5c:5b:
39:cf:9a:f2:5a:30:74:59:bc:d8:af:dc:ce:93:00:
6b:20:80:8a:23:aa:da:f7:90:f5:3e:aa:54:79:6b:
fe:04:eb:66:0a:4c:62:03:3a:e6:5e:ba:4a:18:f9:
ca:3f:0b:b7:2e:f7:f7:0e:1c:a1:8b:ce:95:2e:00:
a1:04:7f:4d:02:34:45:9b:74:e3:30:9c:d2:52:1e:
ea:63:73:32:1d:5b:0d:e0:34:5a:9f:10:b0:db:2c:
15:4e:b6:f0:b2:89:0e:2d:44:38:b3:2f:32:94:ae:
31:72:01:5d:5c:06:d5:e6:b3:a3:04:d0:8b:a8:a5:
6b:f5:d3:93:0f:ce:81:32:38:63:46:2e:8c:31:b2:
4e:03:40:08:7a:12:04:96:fe:81:fb:10:d8:87:a0:
d6:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:7D:9D:DF:2A:37:1B:03:18:8B:C0:8A:25:EC:68:BA:73:1B:FF:A9
X509v3 Authority Key Identifier:
keyid:77:5D:74:DF:44:3C:B8:05:17:CE:41:50:DC:E2:26:62:94:0F:1D:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d11030Q8uAUXzkFQ3OImYpQPHXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:16:3e:7b:81:d0:31:22:38:4a:0e:56:73:99:bc:3e:8d:72:
5d:fa:12:73:46:05:37:c2:36:aa:07:d3:c1:04:8c:55:43:5a:
95:ad:88:c2:a4:45:91:19:47:c4:ff:63:a9:3c:63:82:91:cb:
ec:b3:7f:b6:67:c4:74:2a:f6:25:8a:e4:ce:fc:a9:74:5e:71:
0b:5b:b4:d9:73:44:b6:55:78:cb:dd:40:84:21:40:9b:c2:56:
64:cc:32:63:1d:f3:c3:ab:2c:b9:2a:52:f2:3a:ee:86:f8:f1:
ce:a8:a1:b5:cb:06:58:61:e0:31:76:aa:db:bd:77:b4:5a:9c:
51:c5:28:bf:25:c7:60:db:50:f5:bf:9b:70:de:dd:f2:b4:15:
2a:d8:e6:59:34:0a:e8:d1:80:8a:8d:f7:06:a5:6b:72:b5:10:
cf:ab:d7:b3:44:d8:51:c9:7e:a4:5e:eb:92:02:2b:ab:a6:e5:
10:13:fd:da:a0:d5:1c:06:8f:4b:d3:0f:e5:40:29:18:9e:61:
c0:90:f6:d8:07:90:51:18:22:32:98:18:f3:99:c6:c9:b6:83:
1e:14:1f:d3:94:85:d5:21:a5:bf:de:40:08:ae:38:34:80:0f:
ba:9c:cf:ba:22:99:38:ee:48:f4:d9:7f:0a:a2:fc:fb:6c:5e:
d5:e4:6c:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:52 2025 by rpki-client