Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
File: 04BE23ZiygAUgai9swt6vRi86ao.mft (raw, json)
Hash identifier: v7KVO0TOxyw4ft/yrAT4j46Bm2CwSJ+FfkD1e3v2vRM=
Subject key identifier: 05:C9:56:94:7B:F3:83:46:41:69:62:67:5E:39:1A:73:6E:A4:9E:DD
Authority key identifier: D3:80:44:DB:76:62:CA:00:14:81:A8:BD:B3:0B:7A:BD:18:BC:E9:AA
Certificate issuer: /CN=d38044db7662ca001481a8bdb30b7abd18bce9aa
Certificate serial: 019655DCCBD8A3BBC55370D34DD0B177B2FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04BE23ZiygAUgai9swt6vRi86ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
Manifest number: 0FC1
Signing time: Mon 21 Apr 2025 01:00:55 +0000
Manifest this update: Mon 21 Apr 2025 01:00:55 +0000
Manifest next update: Tue 22 Apr 2025 01:00:55 +0000
Files and hashes: 1: 04BE23ZiygAUgai9swt6vRi86ao.crl (hash: kyf4Y+3J4vXKQf7OpP6xUb1B4cPdGinfwMISd/h+AHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
rsync://rpki.ripe.net/repository/DEFAULT/04BE23ZiygAUgai9swt6vRi86ao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:dc:cb:d8:a3:bb:c5:53:70:d3:4d:d0:b1:77:b2:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d38044db7662ca001481a8bdb30b7abd18bce9aa
Validity
Not Before: Apr 21 01:00:55 2025 GMT
Not After : Apr 22 01:00:55 2025 GMT
Subject: CN=05c956947bf38346416962675e391a736ea49edd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:e1:b1:75:c4:80:01:53:3e:f6:54:c6:e9:f8:
92:0c:5c:d4:95:22:81:2e:19:50:1d:28:04:01:f8:
7b:90:a4:2e:1a:62:a5:6b:6f:4b:e3:b9:6b:cd:cc:
48:a4:94:96:35:e2:3d:c2:70:cf:35:a1:83:56:b0:
9d:71:b7:04:bf:66:4f:47:31:27:56:18:20:82:52:
cb:f9:c8:2b:ff:84:2a:3b:2e:0d:64:e3:98:86:54:
f9:37:25:d3:e3:39:2c:ca:cf:d5:12:ca:6a:2d:55:
56:ce:89:3c:3d:df:e5:90:ef:b2:44:18:31:b3:fc:
62:cb:64:e8:65:b6:f1:fe:7e:f2:c5:61:d6:ea:05:
07:4d:6f:fb:ba:47:ea:c4:88:69:97:88:94:e7:35:
fa:50:17:bf:14:f3:f6:3a:41:02:67:24:4e:5c:d2:
59:e9:b6:29:9c:63:f9:bc:d9:51:08:0e:d0:5c:09:
8f:82:07:9c:fb:04:12:3b:6b:88:d9:97:be:22:eb:
5a:3f:c0:1d:0b:27:d2:f2:bf:1f:f4:84:d1:23:c2:
07:5a:d4:7d:b0:8f:e3:bf:06:ec:09:ed:a4:e4:c6:
2a:84:f0:5c:c8:78:25:8c:c2:a4:af:a8:03:4e:4e:
1a:8a:01:40:31:06:f2:b0:bf:42:d8:a2:23:eb:45:
9f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:C9:56:94:7B:F3:83:46:41:69:62:67:5E:39:1A:73:6E:A4:9E:DD
X509v3 Authority Key Identifier:
keyid:D3:80:44:DB:76:62:CA:00:14:81:A8:BD:B3:0B:7A:BD:18:BC:E9:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04BE23ZiygAUgai9swt6vRi86ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:e9:60:0f:57:b3:cd:56:8b:25:f6:84:78:5d:66:bc:e3:75:
e5:d8:d5:d3:93:fd:57:80:a5:08:4d:1a:a0:14:69:11:e8:0a:
26:90:1d:ef:64:a2:02:6e:e4:82:84:8c:8b:69:83:3a:c4:b3:
6f:21:a0:d7:15:46:37:4b:30:f2:ad:f5:5c:e2:d9:b0:e1:42:
c4:19:a7:6c:d8:64:df:ee:e8:5b:ee:79:19:7f:2c:27:be:b9:
1d:f7:23:e8:3c:02:76:a3:5a:e4:cf:05:d8:2d:8d:3e:e8:04:
6a:b9:11:81:59:42:6f:6d:dc:e7:df:eb:c5:1e:cc:bd:61:69:
db:fb:f3:5d:89:43:3a:23:fa:05:bd:c5:a6:80:26:d5:ca:1b:
be:8d:f3:00:94:b0:41:4f:f1:8e:ca:1f:ce:a0:ef:18:2f:61:
6b:02:42:4f:31:79:94:38:a6:07:f3:3d:73:05:fa:8d:04:f3:
48:0d:f1:9e:c3:38:71:4d:9a:1a:10:cd:32:7c:ad:ca:2a:d1:
af:b6:4e:d3:0e:26:1f:7b:45:69:2d:58:fc:78:c3:2c:07:30:
30:3b:f6:34:d2:79:da:d5:05:62:9f:1d:93:ab:c4:97:43:54:
9d:41:38:5d:19:ec:c3:3d:97:a4:7a:99:bc:23:bf:26:50:af:
5c:c6:87:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 11:11:28 2025 by rpki-client