Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft
File: jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft (raw, json)
Hash identifier: FEzN3SvqgtT7FGur5HhCYdH+FSmchUDNS+NywFDPdrA=
Subject key identifier: 99:85:FD:75:9D:63:5D:2D:D5:D6:AC:62:EE:37:5B:14:03:99:7B:04
Authority key identifier: 8D:C2:97:EF:18:59:CA:33:75:97:06:BD:C6:EE:79:25:CF:A5:14:1D
Certificate issuer: /CN=8dc297ef1859ca33759706bdc6ee7925cfa5141d
Certificate serial: 01958C6047EF0AB31C84176DAC03A2792D94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jcKX7xhZyjN1lwa9xu55Jc-lFB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft
Manifest number: 0C73
Signing time: Wed 12 Mar 2025 22:01:14 +0000
Manifest this update: Wed 12 Mar 2025 22:01:14 +0000
Manifest next update: Thu 13 Mar 2025 22:01:14 +0000
Files and hashes: 1: jcKX7xhZyjN1lwa9xu55Jc-lFB0.crl (hash: pW1cHurk+xGHX7VoYGV7v4D/yNmaD4G1VBDXLzDm2hM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/jcKX7xhZyjN1lwa9xu55Jc-lFB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:60:47:ef:0a:b3:1c:84:17:6d:ac:03:a2:79:2d:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8dc297ef1859ca33759706bdc6ee7925cfa5141d
Validity
Not Before: Mar 12 22:01:14 2025 GMT
Not After : Mar 13 22:01:14 2025 GMT
Subject: CN=9985fd759d635d2dd5d6ac62ee375b1403997b04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c0:a1:5c:d8:25:ad:27:df:1c:f2:14:e1:a7:
6a:83:bb:e5:b4:c2:29:ca:55:3a:5d:97:f9:46:f0:
9e:45:4f:21:02:69:07:40:74:d9:0c:61:03:dc:6d:
5b:85:d0:87:9f:11:a8:9e:07:d6:26:4e:44:0d:62:
d3:00:ed:83:a3:3b:ff:52:06:b3:0c:ee:c8:83:90:
08:69:ff:23:c8:a3:89:69:d7:1e:97:ab:33:90:ca:
6e:cd:9b:b7:10:5b:54:88:01:c2:d5:b9:6c:66:87:
9d:4e:dc:12:b9:6a:4d:7b:58:cd:18:bc:f4:3f:ee:
ff:39:81:19:70:ab:5c:9e:a3:cb:67:00:90:5b:36:
6f:d2:5e:c1:11:63:2e:ee:58:60:b1:55:07:94:d1:
3f:11:e7:c3:a5:41:59:02:74:1f:53:0c:9a:fe:3d:
c6:a5:71:f6:a5:92:1b:bd:64:88:14:88:2c:94:33:
f9:d2:1b:43:5b:66:22:5d:3c:e1:55:72:58:75:42:
81:6c:4b:50:68:fe:fd:dc:84:65:7b:da:bb:f1:8b:
76:8c:b9:fa:4e:23:96:45:f3:0b:42:8b:39:d9:91:
3f:fa:6b:50:74:ef:be:95:a7:35:f4:2a:28:37:a6:
4e:0f:6d:f8:47:dd:a7:a0:6b:89:5f:a0:c7:8d:46:
f4:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:85:FD:75:9D:63:5D:2D:D5:D6:AC:62:EE:37:5B:14:03:99:7B:04
X509v3 Authority Key Identifier:
keyid:8D:C2:97:EF:18:59:CA:33:75:97:06:BD:C6:EE:79:25:CF:A5:14:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jcKX7xhZyjN1lwa9xu55Jc-lFB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:34:69:34:3f:bf:63:28:a5:60:72:a9:ea:3b:51:ad:7b:8c:
50:10:15:95:4f:22:45:71:4b:90:6a:c5:3c:7d:f2:f7:2e:f3:
b3:3d:ee:43:a0:c5:8b:99:0b:5b:78:fd:65:39:6f:70:2f:05:
99:75:94:8b:dc:b4:e6:da:e4:24:ba:4f:0b:0c:f4:1a:b6:a4:
75:c0:91:19:20:c1:b7:b5:cc:3f:ec:94:3b:99:4f:66:8e:19:
e9:4c:3b:97:a0:59:96:e1:20:fe:da:4d:b6:d7:91:a6:61:92:
0d:f4:90:21:52:8f:ba:90:d8:98:2c:f2:05:7a:36:29:a4:2f:
b4:e0:63:05:fd:14:01:f1:80:55:db:2b:ef:e9:5a:bc:a0:4d:
14:9c:ab:a7:0d:09:3a:f3:b3:11:62:a4:57:89:9e:2b:47:52:
75:cf:bc:16:f8:20:a5:13:23:72:b2:89:14:35:04:38:72:3f:
02:ab:9f:66:94:60:8a:40:92:28:ab:16:01:77:da:28:24:b7:
31:6e:95:27:e5:f9:19:34:10:32:fe:32:d1:7e:d7:84:f9:3e:
0a:15:f4:10:b7:bf:c9:ca:6d:3d:d7:44:a6:68:f4:0e:58:62:
5c:82:64:1b:22:94:e2:7d:05:1f:1b:4a:ff:5d:b6:12:b9:5f:
e4:47:a3:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:15:08 2025 by rpki-client