Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft
File: cBKlLoiwGDLPDuN8zath3s59EsY.mft (raw, json)
Hash identifier: CGgugrGuiBmIk9OR8IRUpz+5sCUYCLqZChQIWgqgfsY=
Subject key identifier: 3F:33:2F:EF:C7:C2:3E:44:43:DF:15:48:F8:66:D1:6C:CA:E1:2E:7F
Authority key identifier: 70:12:A5:2E:88:B0:18:32:CF:0E:E3:7C:CD:AB:61:DE:CE:7D:12:C6
Certificate issuer: /CN=7012a52e88b01832cf0ee37ccdab61dece7d12c6
Certificate serial: 019653EE8AF3ECE13060CC857733C58FBB0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cBKlLoiwGDLPDuN8zath3s59EsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft
Manifest number: 097E
Signing time: Sun 20 Apr 2025 16:01:04 +0000
Manifest this update: Sun 20 Apr 2025 16:01:04 +0000
Manifest next update: Mon 21 Apr 2025 16:01:04 +0000
Files and hashes: 1: cBKlLoiwGDLPDuN8zath3s59EsY.crl (hash: 2YMU6k7RGOWVITESoeViVIiqTzNufEyqQa4B7FNqiTQ=)
2: muE7z7bw5WUF44PtXee-WtjAnUQ.roa (hash: eOTAuS8cb5e4NeqERvCCoU2l75Ey2kGH2CxTpug1Tes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cBKlLoiwGDLPDuN8zath3s59EsY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:ee:8a:f3:ec:e1:30:60:cc:85:77:33:c5:8f:bb:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7012a52e88b01832cf0ee37ccdab61dece7d12c6
Validity
Not Before: Apr 20 16:01:04 2025 GMT
Not After : Apr 21 16:01:04 2025 GMT
Subject: CN=3f332fefc7c23e4443df1548f866d16ccae12e7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f8:e6:23:24:ab:58:f3:e2:07:29:42:12:cc:
72:e1:90:98:11:24:11:e8:df:84:d2:7a:2a:0e:02:
09:ea:c7:d7:3a:34:08:46:82:7b:71:dd:ac:ae:3f:
ed:e8:0d:44:2e:2f:d7:cd:35:d8:93:ea:94:a1:a2:
86:a9:c5:ca:63:86:cf:64:38:c7:83:40:65:49:f7:
df:6e:18:45:22:c8:cc:64:c6:b1:b9:35:0f:da:85:
bf:10:d7:54:1d:da:db:86:ab:75:77:bf:8e:1d:fc:
29:69:d4:fe:5b:14:52:a6:b5:e2:bb:83:4f:c3:54:
d4:3a:10:4c:ef:6c:dd:76:b4:84:3f:84:ac:ec:3f:
00:3e:09:c3:e3:c1:08:fa:4e:3d:47:cd:c2:e5:a1:
b9:55:ec:84:19:47:77:b2:2f:26:36:7d:61:09:38:
80:9d:f4:f3:3e:26:cf:0a:80:cd:11:21:df:1d:e8:
3e:5b:aa:33:d7:5d:11:7d:a5:0a:73:f7:47:9f:33:
d4:95:95:42:72:c4:b2:36:5f:0a:bd:b6:e9:b3:1e:
6a:bc:0d:59:ab:cc:f9:24:93:5a:25:f4:ba:9b:54:
aa:89:33:ba:b2:06:c1:04:38:e9:53:47:75:1d:07:
18:be:79:30:52:68:c0:90:51:ad:e3:b0:95:d9:9a:
b8:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:33:2F:EF:C7:C2:3E:44:43:DF:15:48:F8:66:D1:6C:CA:E1:2E:7F
X509v3 Authority Key Identifier:
keyid:70:12:A5:2E:88:B0:18:32:CF:0E:E3:7C:CD:AB:61:DE:CE:7D:12:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cBKlLoiwGDLPDuN8zath3s59EsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:66:ed:65:09:a6:96:71:d2:12:e1:a3:79:6f:c4:e3:09:60:
30:46:ff:3c:64:6b:2e:de:30:90:c0:98:3e:ae:8c:55:cc:55:
15:17:cd:ff:6b:8a:f8:23:c8:56:bb:b0:a6:d9:0c:c9:81:a5:
da:61:ec:9b:6c:b8:fa:69:f0:dd:1c:4f:28:e0:30:88:21:d3:
ce:7c:8c:95:4f:3b:d5:c9:97:56:34:e6:de:f7:24:9c:41:41:
39:2b:56:cd:e3:78:84:ff:a1:73:3f:83:7c:c6:ab:e0:3e:c5:
11:68:7e:93:04:47:55:b7:4f:06:9b:29:b6:17:55:ff:d6:6d:
0e:0c:b8:07:ea:40:07:47:cb:1d:21:0e:69:14:54:0b:9c:20:
b5:4d:8d:2d:76:2a:95:6a:e6:52:99:4f:ae:37:4c:58:a6:96:
08:ad:89:1b:ac:d3:2b:9b:6a:b2:4b:6c:e2:89:81:0c:6b:72:
1b:b9:a7:a5:30:2d:70:06:b7:76:bd:81:99:7c:27:98:8f:60:
a7:12:20:60:a1:d8:32:cc:3d:7b:9a:77:65:a4:33:4c:ec:0c:
f6:b4:64:8b:ff:fb:46:c1:1b:ca:81:52:8b:6d:71:c1:69:dd:
ef:54:33:4b:76:63:c7:e7:cc:e1:06:da:c5:e8:ca:cc:c1:9e:
6c:de:fa:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:57:15 2025 by rpki-client