Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.mft
File: cl3CBR5_PY1hf1UYng7m8xdNkto.mft (raw, json)
Hash identifier: Frvfl9SNEDJtxq/H43cQdSKMNlZZ/ej5kAeb1cfJVEQ=
Subject key identifier: 23:B8:80:1F:53:AD:09:82:4D:19:50:C7:F2:C7:52:9C:10:7D:77:6B
Authority key identifier: 72:5D:C2:05:1E:7F:3D:8D:61:7F:55:18:9E:0E:E6:F3:17:4D:92:DA
Certificate issuer: /CN=725dc2051e7f3d8d617f55189e0ee6f3174d92da
Certificate serial: 019644449736E9EAA1EC059D4D019656AB8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cl3CBR5_PY1hf1UYng7m8xdNkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.mft
Manifest number: 021A
Signing time: Thu 17 Apr 2025 15:01:07 +0000
Manifest this update: Thu 17 Apr 2025 15:01:07 +0000
Manifest next update: Fri 18 Apr 2025 15:01:07 +0000
Files and hashes: 1: cl3CBR5_PY1hf1UYng7m8xdNkto.crl (hash: EQ9tdPcoohnjyAsaW/6z7uRhQUvk2rejuyzq204MCPU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.mft
rsync://rpki.ripe.net/repository/DEFAULT/cl3CBR5_PY1hf1UYng7m8xdNkto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 15:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:44:97:36:e9:ea:a1:ec:05:9d:4d:01:96:56:ab:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=725dc2051e7f3d8d617f55189e0ee6f3174d92da
Validity
Not Before: Apr 17 15:01:07 2025 GMT
Not After : Apr 18 15:01:07 2025 GMT
Subject: CN=23b8801f53ad09824d1950c7f2c7529c107d776b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d6:e2:5d:4b:7b:5f:3d:17:9a:85:45:73:9b:
28:5a:0c:0a:02:d7:0f:9f:66:ff:48:3b:a0:f7:58:
3f:84:29:fc:9b:03:62:14:97:10:c5:49:6d:eb:6e:
6e:cd:99:f4:d1:ab:a9:ec:f4:d1:0b:f1:37:4f:4c:
0e:4c:ee:54:20:f7:47:82:c8:03:fa:45:f8:27:31:
9f:02:a0:5c:06:8e:d9:46:be:cd:84:f7:2a:cb:c7:
b4:d2:a0:f1:bf:bb:f9:50:d3:67:01:83:82:ee:1f:
d1:40:f3:40:a4:39:a7:37:c1:40:7c:75:41:53:8b:
10:b4:96:2a:3a:69:9d:5c:8d:16:aa:7a:a5:72:08:
d2:8d:a8:08:a2:21:78:a6:26:1a:33:50:14:5d:f2:
9f:e4:ec:15:4c:8c:85:9a:53:54:4b:3a:14:39:a3:
6c:5a:6a:19:b6:9c:54:76:1b:f2:c2:d5:32:17:11:
5a:61:ef:0d:e4:7e:9c:d2:de:cc:49:73:a4:35:c5:
78:9b:d7:bc:26:85:28:e6:32:9c:a5:bd:9a:ac:6e:
16:d1:7f:95:3d:67:ab:9b:ef:a5:47:f6:d3:93:19:
1e:34:ff:05:7d:1f:0c:45:4b:b9:9d:72:cf:ce:1e:
9a:52:32:7f:ad:48:6d:4c:f4:68:d3:06:d8:32:2a:
6b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:B8:80:1F:53:AD:09:82:4D:19:50:C7:F2:C7:52:9C:10:7D:77:6B
X509v3 Authority Key Identifier:
keyid:72:5D:C2:05:1E:7F:3D:8D:61:7F:55:18:9E:0E:E6:F3:17:4D:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cl3CBR5_PY1hf1UYng7m8xdNkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:4d:18:1c:84:2d:4c:ea:51:51:c7:20:4e:02:c9:65:a8:af:
15:cb:b6:c2:de:b3:02:53:07:fa:93:ea:0d:2f:79:46:af:30:
79:cf:4a:42:cb:d1:ca:43:e2:e9:fb:72:7c:70:19:97:0f:e7:
f6:ab:2b:52:98:8c:c2:1d:87:11:2c:46:2b:1b:6a:a0:6d:72:
f0:0f:cf:66:9d:33:d3:27:98:2f:80:bb:04:2b:d3:82:3e:aa:
cf:55:56:72:31:d5:f2:99:4e:99:aa:ee:03:1d:58:3f:f7:41:
d7:8f:7a:f5:78:6c:7a:09:34:04:6a:f5:be:0c:07:c8:1b:86:
77:b0:ea:03:29:03:b1:14:95:fc:60:f1:05:08:7f:68:44:23:
4b:72:86:d1:83:fb:39:b7:91:78:75:7a:78:03:d7:99:8d:f0:
de:e8:35:dd:ae:80:9d:0d:ce:ef:85:cc:42:e8:ae:ed:25:65:
29:9a:7e:ac:6d:4e:12:19:77:a5:f5:8c:97:28:e6:d2:5d:75:
4c:9b:d3:b6:2a:7f:15:d8:9b:01:ae:3a:a1:5e:cf:92:46:b7:
93:b8:16:e5:d5:02:c9:78:cd:bb:a0:5e:49:c0:10:b6:e6:b4:
18:55:fb:d0:ba:8e:7c:9f:22:22:a3:83:12:7d:ef:6a:63:76:
56:4e:b9:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:40:01 2025 by rpki-client