Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.mft
File: XrtlNn2CQrAVmiU5y1oCM1Qu-WM.mft (raw, json)
Hash identifier: QNJxH3xnrSbLIVKXj939T4EsGxmE+af1k0iPRZ89Xk4=
Subject key identifier: BF:42:56:DC:82:BE:C1:50:DF:6A:8D:B7:41:92:D2:E0:D0:93:48:E9
Authority key identifier: 5E:BB:65:36:7D:82:42:B0:15:9A:25:39:CB:5A:02:33:54:2E:F9:63
Certificate issuer: /CN=5ebb65367d8242b0159a2539cb5a0233542ef963
Certificate serial: 0194C42C4D21CA91AAC242705D920599C94A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.mft
Manifest number: 0503
Signing time: Sun 02 Feb 2025 01:00:25 +0000
Manifest this update: Sun 02 Feb 2025 01:00:25 +0000
Manifest next update: Mon 03 Feb 2025 01:00:25 +0000
Files and hashes: 1: XrtlNn2CQrAVmiU5y1oCM1Qu-WM.crl (hash: Imt+SmQPzxeS5l7WMlGAGwqI5WxyOQuNCAYxLwOjKPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.mft
rsync://rpki.ripe.net/repository/DEFAULT/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c4:2c:4d:21:ca:91:aa:c2:42:70:5d:92:05:99:c9:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ebb65367d8242b0159a2539cb5a0233542ef963
Validity
Not Before: Feb 2 01:00:25 2025 GMT
Not After : Feb 3 01:00:25 2025 GMT
Subject: CN=bf4256dc82bec150df6a8db74192d2e0d09348e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:97:3a:91:6a:eb:b0:cf:8f:36:0e:c2:9a:3b:
0a:3e:e8:eb:11:74:96:04:77:13:a9:24:38:89:ce:
2a:88:8e:f5:68:0b:b7:3e:fb:12:fb:88:9d:17:a3:
f3:12:dc:66:c2:98:5c:cf:5f:56:1f:e8:6d:b2:e2:
9b:cb:26:5c:5e:90:6c:6d:14:25:a4:36:18:cc:00:
49:63:50:5f:d9:cd:5d:fc:96:b8:d9:f6:2c:b0:c5:
c0:e4:c8:c0:24:1f:b2:14:93:f2:06:ca:3c:2c:38:
ac:6a:a1:5f:42:a8:16:55:82:f3:f1:7f:c9:97:b3:
b6:8a:f9:b6:10:e6:51:b9:f7:1a:f4:df:37:47:b6:
16:08:47:22:5b:fc:9a:f4:24:67:8a:67:6e:38:ee:
95:bf:d3:50:06:f2:7a:ff:24:91:45:2a:4b:62:7d:
be:1b:b7:e6:7b:bb:0a:db:68:f9:b6:0e:45:dc:e2:
bf:21:dd:30:ed:29:c1:54:0e:da:04:5d:ef:91:a3:
ec:95:57:f6:7c:35:de:e1:de:97:26:a1:6b:e7:b4:
7f:05:b0:e6:d7:61:46:08:a2:e1:ef:d1:9c:1f:ef:
d7:43:d6:7f:d4:f5:fb:ca:21:cc:ef:77:9b:2d:3a:
69:47:47:a5:c0:eb:09:26:83:49:32:ef:3f:55:95:
6b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:42:56:DC:82:BE:C1:50:DF:6A:8D:B7:41:92:D2:E0:D0:93:48:E9
X509v3 Authority Key Identifier:
keyid:5E:BB:65:36:7D:82:42:B0:15:9A:25:39:CB:5A:02:33:54:2E:F9:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/5430d6-edc0-4428-b24a-300f5cabee11/1/XrtlNn2CQrAVmiU5y1oCM1Qu-WM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:6b:02:9d:45:da:c2:a9:01:17:56:c2:f7:50:e5:58:43:75:
59:91:73:83:bc:99:77:60:2e:ee:be:b9:8f:63:00:17:2d:9c:
45:f6:c8:4b:f6:42:bd:b2:90:ca:ee:7d:64:35:f8:b5:4e:6a:
9f:55:7e:bb:55:1e:b3:79:74:9c:4f:2c:17:ca:83:5b:f4:47:
35:b3:6d:6e:ab:e5:f7:cf:0d:c2:0f:07:10:6e:c4:df:2f:35:
aa:1d:94:92:38:e2:50:49:ef:1d:bd:68:74:58:cb:54:54:ea:
c1:e4:28:e8:c7:e0:00:46:8a:32:df:ba:08:73:dc:76:70:fe:
24:f0:82:8c:57:7a:a5:9c:b0:b5:04:57:b1:16:26:d2:78:7b:
c7:b5:5e:e7:71:4b:32:08:83:22:68:e5:32:8e:9e:16:4e:ec:
95:ad:37:03:1c:bf:c6:9e:e1:d4:a0:5c:d8:5a:6e:2a:71:eb:
ae:68:00:0c:b0:d4:16:e8:16:e3:1a:40:dc:d6:3c:65:b2:c7:
ec:a7:6b:01:2c:35:01:34:08:35:d7:34:5a:f6:7f:a7:40:05:
a7:1f:92:a3:24:e5:a1:d7:6d:2c:9f:27:08:3a:f8:17:6c:37:
b6:e3:c0:77:8f:4e:04:00:8a:91:21:ae:d0:3f:a4:84:d9:9c:
db:ee:33:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:44:46 2025 by rpki-client