Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
File: b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft (raw, json)
Hash identifier: 6IhnUlJsGLYTAOE5E/9ZkU9BeZm18cop5I1O82JXnrg=
Subject key identifier: C3:FF:9F:7F:A4:B2:B4:9A:05:CF:E8:B6:D5:B2:3F:57:96:54:FA:90
Authority key identifier: 6F:64:8E:3C:AB:60:9B:D1:48:3C:A3:E5:19:11:CE:AA:53:F0:C6:A1
Certificate issuer: /CN=6f648e3cab609bd1483ca3e51911ceaa53f0c6a1
Certificate serial: 019629A9085089B4F54AE211169D1F3470EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b2SOPKtgm9FIPKPlGRHOqlPwxqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
Manifest number: 0EDF
Signing time: Sat 12 Apr 2025 11:01:05 +0000
Manifest this update: Sat 12 Apr 2025 11:01:05 +0000
Manifest next update: Sun 13 Apr 2025 11:01:05 +0000
Files and hashes: 1: b2SOPKtgm9FIPKPlGRHOqlPwxqE.crl (hash: 5V/8ZlbbHEedEfnU6ZxunRn5+VsPVuD6gJb4NqYwf0k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/b2SOPKtgm9FIPKPlGRHOqlPwxqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 11:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:29:a9:08:50:89:b4:f5:4a:e2:11:16:9d:1f:34:70:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f648e3cab609bd1483ca3e51911ceaa53f0c6a1
Validity
Not Before: Apr 12 11:01:05 2025 GMT
Not After : Apr 13 11:01:05 2025 GMT
Subject: CN=c3ff9f7fa4b2b49a05cfe8b6d5b23f579654fa90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:2e:e3:9b:db:a3:0a:70:2f:46:b0:10:2d:0d:
b5:ed:e8:92:1b:30:a1:2f:e0:1f:a4:a8:13:26:8c:
f7:32:e5:85:71:5a:fe:3d:37:3f:89:28:62:fc:ac:
7a:fb:a7:0e:33:0f:2f:72:88:d8:ab:9f:31:c6:ab:
72:6f:de:55:e7:a8:00:8b:26:ef:04:b5:92:67:1c:
4e:ed:f6:7d:ac:38:80:de:81:fb:ad:74:b9:70:9a:
31:a9:2e:23:b6:54:e2:09:31:16:25:7b:f8:6d:ad:
eb:0a:fa:6c:07:35:f0:31:53:2b:cd:5d:43:46:d5:
4e:4a:fa:dc:dd:ed:fb:2b:f1:26:46:7c:98:da:f2:
d3:34:60:eb:61:78:35:72:e0:81:27:ef:71:dd:17:
d5:ff:d5:53:3f:18:4f:b9:fb:a3:5e:34:93:2c:06:
b3:37:54:b0:ff:bb:0c:8c:86:58:39:d8:a6:dc:ea:
fd:e6:a9:c9:ed:81:e6:cd:79:02:c4:29:7d:3a:f7:
86:24:8b:00:ce:53:60:84:71:f0:07:fe:25:b8:dd:
44:04:46:4d:c5:56:37:2e:0b:e4:bd:3b:dc:2d:02:
47:ce:ca:7f:c7:46:00:1d:f8:66:fe:9d:da:93:db:
78:c6:44:f1:a4:c8:99:e6:8b:67:ca:a2:c2:b0:7a:
33:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:FF:9F:7F:A4:B2:B4:9A:05:CF:E8:B6:D5:B2:3F:57:96:54:FA:90
X509v3 Authority Key Identifier:
keyid:6F:64:8E:3C:AB:60:9B:D1:48:3C:A3:E5:19:11:CE:AA:53:F0:C6:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2SOPKtgm9FIPKPlGRHOqlPwxqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:5c:e0:cd:06:da:6e:73:48:5f:22:82:15:3e:9d:1c:75:ca:
30:29:d1:21:81:42:a0:ab:8d:06:76:04:17:5d:e3:86:ad:34:
1a:7a:9e:fb:f3:6b:64:0d:d0:52:8d:c8:ee:f8:f0:0e:22:f3:
2c:83:72:b0:b3:3a:c8:9f:98:df:59:50:8d:89:19:85:06:84:
b6:4b:bf:a2:d7:8d:97:7e:ba:03:17:e2:7a:bd:5e:05:b8:f0:
21:6f:17:ed:57:7c:ad:18:e5:b3:bc:a2:ef:59:02:99:58:d4:
cc:69:f5:f6:ad:d8:29:d5:a8:3d:00:12:65:c4:3a:64:f8:8e:
7e:5e:50:b6:b5:c9:f7:d3:af:0e:d7:69:de:d6:c8:e6:40:2d:
ef:ed:40:45:a7:b7:0a:66:84:3d:c6:d3:7e:07:eb:b5:ef:72:
3a:7f:3c:8b:e5:73:03:ba:15:1a:e1:2f:c5:50:1a:63:7b:19:
cc:87:ef:9b:5b:55:94:05:9d:51:2d:ed:94:c1:80:e5:92:24:
1b:6e:c7:ce:76:df:fe:bf:ca:62:14:4b:c3:f2:95:23:33:05:
bd:03:15:3a:68:6c:a4:3f:31:b8:70:01:20:04:14:3b:48:db:
f0:c9:2e:e1:94:7c:74:af:09:98:1b:76:35:78:50:c3:19:00:
57:04:f2:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 18:14:51 2025 by rpki-client