Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
File: BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft (raw, json)
Hash identifier: k0cU+1O/I0nHixJJ4Zt+vBnOM8v28jXbwR7J+15JW+Q=
Subject key identifier: 67:0C:B6:14:77:C9:EA:F3:4E:06:77:7E:29:8D:A6:84:25:54:20:27
Authority key identifier: 04:B6:1E:51:40:CD:89:84:F7:FE:20:10:DB:59:EB:DB:2F:3E:D4:E6
Certificate issuer: /CN=04b61e5140cd8984f7fe2010db59ebdb2f3ed4e6
Certificate serial: 01965537D2CEF1DA37F5DF79D13D4789D94A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BLYeUUDNiYT3_iAQ21nr2y8-1OY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
Manifest number: 0B56
Signing time: Sun 20 Apr 2025 22:00:43 +0000
Manifest this update: Sun 20 Apr 2025 22:00:43 +0000
Manifest next update: Mon 21 Apr 2025 22:00:43 +0000
Files and hashes: 1: BLYeUUDNiYT3_iAQ21nr2y8-1OY.crl (hash: p3deA8R/cHwUq4Hzg9aElsDtoD8Ru+rYWJf3nkBwAlY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
rsync://rpki.ripe.net/repository/DEFAULT/BLYeUUDNiYT3_iAQ21nr2y8-1OY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:d2:ce:f1:da:37:f5:df:79:d1:3d:47:89:d9:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04b61e5140cd8984f7fe2010db59ebdb2f3ed4e6
Validity
Not Before: Apr 20 22:00:43 2025 GMT
Not After : Apr 21 22:00:43 2025 GMT
Subject: CN=670cb61477c9eaf34e06777e298da68425542027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b7:f7:d9:09:64:25:14:98:b7:33:6a:82:4e:
c6:ec:20:28:7b:bf:6a:12:89:ab:32:10:e3:01:76:
b5:7c:72:e7:82:86:15:b8:bf:93:e2:45:a1:d9:54:
8c:ff:e4:2a:a1:34:a7:24:aa:05:85:99:cc:31:b1:
78:00:20:70:74:72:95:65:d0:fd:bf:5e:22:08:cd:
5c:d6:92:2f:b1:d4:1a:73:79:38:14:c1:b6:36:1d:
b8:b6:ed:14:08:23:be:00:73:66:cc:04:76:27:b2:
f6:a4:db:b2:74:cd:c5:12:ed:27:7c:8b:19:06:f9:
24:60:53:42:e8:58:9a:d7:e6:b8:a5:4e:48:a5:52:
4c:40:fc:7e:6d:54:0a:64:1c:7a:ee:f8:a8:44:07:
a6:a6:73:7b:18:a3:d2:bc:b6:2d:67:77:e6:7a:e7:
b7:77:04:ce:9e:93:db:6e:4c:c4:e8:70:05:e7:b3:
d8:17:60:03:9e:c6:e4:ce:40:79:fe:11:2d:ac:d4:
4a:34:e9:34:f0:dd:ce:34:c3:f0:f9:f0:e5:83:92:
42:04:31:00:b2:32:33:38:81:da:5a:5f:96:f6:f0:
f9:51:3d:f7:84:dc:c6:37:c8:54:6f:a8:37:86:85:
7f:c4:fd:e1:e2:3a:18:79:d9:e6:78:99:a6:d0:64:
b2:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:0C:B6:14:77:C9:EA:F3:4E:06:77:7E:29:8D:A6:84:25:54:20:27
X509v3 Authority Key Identifier:
keyid:04:B6:1E:51:40:CD:89:84:F7:FE:20:10:DB:59:EB:DB:2F:3E:D4:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BLYeUUDNiYT3_iAQ21nr2y8-1OY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/d4ef16-2795-4f39-9be9-6175e83c6a2b/1/BLYeUUDNiYT3_iAQ21nr2y8-1OY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:b9:cc:70:ab:4b:85:e4:e3:4c:15:06:98:dd:90:d4:e9:ca:
2d:ca:c8:ca:78:66:2d:c2:f8:85:01:22:7c:66:51:70:24:e6:
e8:98:e2:01:df:96:5e:75:a7:b4:19:e0:45:87:d4:13:56:45:
da:c9:32:7a:af:36:3b:8a:cf:f6:c0:2b:3c:18:37:11:38:e4:
f4:57:33:52:6d:cf:b4:7c:f8:23:9f:d2:c6:34:1d:1c:89:51:
d1:20:e7:31:8b:f9:96:9a:10:8b:b2:d8:ba:b7:7f:60:51:aa:
e6:2f:5d:7b:53:0c:f7:94:0f:fe:65:05:f2:55:9b:c1:e2:94:
b8:0c:1e:c6:58:34:a5:21:fd:18:76:21:54:13:b0:da:18:21:
ba:05:81:0a:9a:71:27:ca:46:ab:d0:4b:44:36:07:49:9a:d0:
52:15:e2:35:82:5c:27:47:e7:06:b4:0f:cb:2c:05:f3:71:d8:
40:b8:20:a1:69:53:cc:a7:ff:e7:5c:a4:c4:20:e5:14:3a:bb:
4f:2b:6b:6a:c7:71:d4:77:55:1e:85:d7:7b:7b:0e:69:4c:d6:
d6:77:2a:7d:e6:54:89:86:0b:7c:9f:1e:61:a6:0a:97:58:20:
0a:2d:b8:fb:4d:80:dc:ff:2f:54:c8:a7:08:d2:1b:dc:0f:ef:
c6:d6:9e:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 03:28:49 2025 by rpki-client