Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
File: X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft (raw, json)
Hash identifier: ojGb1cG4sCUhu9J26FnG+hiowJc9uOXco122c3e1QvM=
Subject key identifier: D6:8B:43:F1:53:98:BA:01:45:B1:4F:A2:4A:93:31:F1:76:A4:09:2C
Authority key identifier: 5F:7A:12:35:46:FE:51:A9:E4:BE:DF:83:EE:E0:37:52:BD:96:39:D6
Certificate issuer: /CN=5f7a123546fe51a9e4bedf83eee03752bd9639d6
Certificate serial: 0194C3BEA23FE3C74D6E1FEE7702C924CF05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X3oSNUb-Uankvt-D7uA3Ur2WOdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
Manifest number: 0205
Signing time: Sat 01 Feb 2025 23:00:38 +0000
Manifest this update: Sat 01 Feb 2025 23:00:38 +0000
Manifest next update: Sun 02 Feb 2025 23:00:38 +0000
Files and hashes: 1: X3oSNUb-Uankvt-D7uA3Ur2WOdY.crl (hash: 51WIYOBf0rWgD93E7Qv2Z0lioaYEIB942nyEZVzQbYU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
rsync://rpki.ripe.net/repository/DEFAULT/X3oSNUb-Uankvt-D7uA3Ur2WOdY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 23:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:be:a2:3f:e3:c7:4d:6e:1f:ee:77:02:c9:24:cf:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f7a123546fe51a9e4bedf83eee03752bd9639d6
Validity
Not Before: Feb 1 23:00:38 2025 GMT
Not After : Feb 2 23:00:38 2025 GMT
Subject: CN=d68b43f15398ba0145b14fa24a9331f176a4092c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f0:0c:09:38:21:e3:c9:5e:42:50:90:0e:3e:
2b:d4:49:19:16:a6:f4:db:72:00:20:b0:2b:19:75:
42:47:5c:cd:83:99:aa:d8:12:ea:68:8d:83:2f:53:
df:fa:d0:87:03:fd:b9:df:67:72:2e:07:37:f3:ab:
2f:28:98:fb:8b:ce:56:7c:4c:d7:5c:05:e8:11:25:
5a:9b:42:4e:23:5d:9c:bc:f1:c1:d0:2c:3e:ac:38:
9d:1f:07:eb:18:ac:3f:d8:2f:8d:2e:e1:23:75:60:
2e:35:5f:61:59:32:37:0f:3c:9b:2e:da:14:02:52:
8b:83:1a:d1:d4:37:38:a4:d7:6c:5a:f9:da:45:a0:
ff:77:8c:a7:12:3c:01:86:bc:6a:ee:86:8c:50:34:
91:81:3b:d6:b8:40:11:1d:86:94:06:7e:47:1f:65:
6b:3d:2a:e7:17:30:a3:18:14:a7:52:92:5f:bf:97:
aa:e0:de:de:7e:01:9a:b3:91:4a:de:bb:5e:90:b4:
24:9b:42:2a:13:25:be:f0:5e:39:a8:2b:a6:e5:d5:
3c:c0:9c:8e:d7:1d:f0:5f:e2:84:63:14:21:eb:2b:
80:50:d6:a2:af:0b:4b:55:4d:6c:ab:0a:02:5c:f8:
ce:6b:c3:de:43:c6:92:3e:83:76:80:65:a4:c4:79:
80:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:8B:43:F1:53:98:BA:01:45:B1:4F:A2:4A:93:31:F1:76:A4:09:2C
X509v3 Authority Key Identifier:
keyid:5F:7A:12:35:46:FE:51:A9:E4:BE:DF:83:EE:E0:37:52:BD:96:39:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X3oSNUb-Uankvt-D7uA3Ur2WOdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:db:ff:2f:d2:0d:6b:e9:1b:75:61:95:94:af:b5:2c:13:89:
f8:0e:f5:ad:bf:e3:92:2d:a1:2b:b9:4a:97:c8:c0:14:1c:fd:
8d:ec:68:37:f3:ff:40:b1:02:48:56:89:43:53:da:78:ec:89:
73:21:54:c5:fb:5b:03:8e:56:77:f1:04:65:30:ac:b6:47:1e:
8f:14:cb:a8:dd:1b:6b:a8:b8:2e:57:32:fe:ff:7f:2b:80:4b:
bf:27:fc:3f:a7:ca:37:c2:33:22:83:a1:80:a0:47:3c:c7:4c:
7a:62:e3:e9:17:4b:09:27:e3:97:ae:89:26:a6:52:85:89:e4:
94:18:24:f0:f1:5c:e0:a4:73:3b:35:63:0c:57:1e:db:66:b6:
26:67:47:e8:db:4e:9e:42:0c:ac:94:ab:1c:a0:ee:0b:45:d6:
11:47:45:90:52:77:a2:92:68:46:eb:67:0c:43:e1:b6:3b:c3:
69:c1:5d:be:64:bd:b4:17:f2:1f:fd:54:91:bf:0f:39:17:56:
69:ab:c5:54:4f:86:de:ae:6e:3a:c1:0f:89:b0:ba:43:51:9c:
54:5e:e1:7d:b9:0a:84:e1:43:a8:2c:47:16:6c:bf:b0:d9:e6:
52:65:e0:5c:fc:de:eb:91:ef:3c:85:05:00:2a:64:25:4f:64:
87:83:98:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:47:30 2025 by rpki-client