Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
File: Ay1SsyOaHOPN00MxNIzngN3xZMA.mft (raw, json)
Hash identifier: eriYYb4mZ821qGnY9cuZyGNn2+T6xFeQsPepFk0NRp8=
Subject key identifier: CB:A7:88:17:51:BA:2B:0A:39:02:1B:E7:5A:80:64:38:54:F9:83:16
Authority key identifier: 03:2D:52:B3:23:9A:1C:E3:CD:D3:43:31:34:8C:E7:80:DD:F1:64:C0
Certificate issuer: /CN=032d52b3239a1ce3cdd34331348ce780ddf164c0
Certificate serial: 01965726D476160AC53E9DBD1A3B779EC34B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
Manifest number: 05B0
Signing time: Mon 21 Apr 2025 07:01:24 +0000
Manifest this update: Mon 21 Apr 2025 07:01:24 +0000
Manifest next update: Tue 22 Apr 2025 07:01:24 +0000
Files and hashes: 1: Ay1SsyOaHOPN00MxNIzngN3xZMA.crl (hash: XKFOxhPsV+0frD/xKbSzGZpK39p07QEwkkVMyXt6Mic=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:26:d4:76:16:0a:c5:3e:9d:bd:1a:3b:77:9e:c3:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=032d52b3239a1ce3cdd34331348ce780ddf164c0
Validity
Not Before: Apr 21 07:01:24 2025 GMT
Not After : Apr 22 07:01:24 2025 GMT
Subject: CN=cba7881751ba2b0a39021be75a80643854f98316
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:43:58:7f:2d:4c:29:3f:87:82:57:2f:2c:2f:
88:0d:c9:6d:45:fd:cb:a9:56:c0:e9:39:38:a8:18:
50:b6:74:3e:b8:5f:57:63:9d:8b:4b:a7:cc:4b:80:
0b:18:06:9d:03:b4:34:63:7d:7e:c4:3a:4c:bc:a3:
94:5f:01:f5:3e:6c:3d:7a:f9:25:a3:b7:73:2f:41:
16:a2:85:96:e8:78:90:00:00:bd:15:f7:d6:0d:02:
b9:43:ea:f1:4d:11:d7:b7:b6:0a:97:d3:e0:37:a9:
db:aa:d8:c6:0d:f6:77:ea:fd:19:f4:6a:87:45:96:
6a:80:2b:05:c0:2b:dc:6c:ab:d5:a2:cf:59:90:a7:
e7:94:3f:fe:c3:71:5b:5a:e0:20:99:88:94:cd:8b:
4e:f8:28:a4:37:d8:07:a6:5f:5b:f3:59:44:88:6c:
ef:e6:56:14:44:38:6e:1a:ac:f8:41:9a:0a:1c:d2:
49:40:5b:92:db:d3:41:97:ac:33:b5:fd:04:54:c4:
b8:95:ef:40:7f:95:ab:65:42:e0:0c:cd:85:11:23:
42:6b:aa:fb:1b:e1:9b:12:71:ce:70:3c:3e:fb:b9:
16:99:2a:a5:7c:81:d2:2f:dd:0d:19:90:be:24:9e:
e8:55:8c:09:14:4a:16:b5:68:99:f4:97:c9:bd:ae:
7d:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:A7:88:17:51:BA:2B:0A:39:02:1B:E7:5A:80:64:38:54:F9:83:16
X509v3 Authority Key Identifier:
keyid:03:2D:52:B3:23:9A:1C:E3:CD:D3:43:31:34:8C:E7:80:DD:F1:64:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ay1SsyOaHOPN00MxNIzngN3xZMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/bc5f15-58ae-4df0-9c6d-e7ad73bbcc89/1/Ay1SsyOaHOPN00MxNIzngN3xZMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:38:75:6d:38:0f:97:ab:b0:0f:1a:91:3f:1d:65:21:2a:f0:
de:de:2d:9f:8a:49:4c:39:0c:9d:c4:40:79:56:bd:fe:eb:0d:
40:6c:82:fd:09:fb:f5:46:d6:b8:f6:5e:25:6d:3c:c0:f1:23:
f6:e8:a5:21:67:b4:d6:2a:fb:cc:bf:8d:32:11:38:34:f8:52:
ec:47:23:3f:ba:3b:0f:f8:5e:a9:1a:62:73:35:2b:62:24:97:
fd:b6:02:ef:17:86:00:41:1b:bf:73:d8:22:17:24:3d:59:93:
72:ce:e3:fe:b3:20:c5:06:9c:f8:ba:bf:22:a5:a0:3b:a6:c6:
d6:94:ad:e1:53:90:5d:85:4e:92:23:c2:79:7c:b2:e7:e7:40:
dd:88:b7:f5:19:ab:9a:cf:bc:d6:ff:cb:a4:54:59:df:4d:a6:
6f:97:7b:52:79:5a:56:47:f8:00:0a:c7:07:f5:90:e6:c4:19:
24:02:44:1f:fb:87:9d:8f:db:f5:14:41:d7:8a:9a:35:1c:63:
48:70:de:bb:3e:d2:b3:70:10:10:47:67:7a:ba:4c:54:3a:db:
6a:a9:09:b5:22:2e:13:36:0d:2c:06:17:2d:3b:6c:61:c6:26:
03:2e:a2:b5:75:b5:74:ff:62:b3:55:b5:28:98:a2:6c:39:72:
40:d3:ce:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:47:21 2025 by rpki-client