Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/03477c-10a4-455b-be6b-b3a09430c665/1/DyP3PWT22_gdUdNYBUgVaM3YGHU.mft
File: DyP3PWT22_gdUdNYBUgVaM3YGHU.mft (raw, json)
Hash identifier: fKeBTsYHs/3qjGvwUiX6taQi1xJigcqxHLiNU/p+bfU=
Subject key identifier: 5F:C9:63:AC:97:CF:4E:BB:4F:25:36:D1:68:BE:E5:AC:32:43:98:16
Authority key identifier: 0F:23:F7:3D:64:F6:DB:F8:1D:51:D3:58:05:48:15:68:CD:D8:18:75
Certificate issuer: /CN=0f23f73d64f6dbf81d51d35805481568cdd81875
Certificate serial: 019650ECD64ADCB4DBF072518AD174BDC4D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DyP3PWT22_gdUdNYBUgVaM3YGHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/03477c-10a4-455b-be6b-b3a09430c665/1/DyP3PWT22_gdUdNYBUgVaM3YGHU.mft
Manifest number: 0CC5
Signing time: Sun 20 Apr 2025 02:00:20 +0000
Manifest this update: Sun 20 Apr 2025 02:00:20 +0000
Manifest next update: Mon 21 Apr 2025 02:00:20 +0000
Files and hashes: 1: DyP3PWT22_gdUdNYBUgVaM3YGHU.crl (hash: 7BWa3I/w9Q0BDHj2oip4rUQN9j/1qbN9+3SivPbWqV0=)
2: _mseEGqhmjk5DbDhY65kEG9l3Do.roa (hash: 4EKC+djlGJVTHQZoZJyp3llh1Qpa/Gw18st2TTUCkbA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/03477c-10a4-455b-be6b-b3a09430c665/1/DyP3PWT22_gdUdNYBUgVaM3YGHU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/03477c-10a4-455b-be6b-b3a09430c665/1/DyP3PWT22_gdUdNYBUgVaM3YGHU.mft
rsync://rpki.ripe.net/repository/DEFAULT/DyP3PWT22_gdUdNYBUgVaM3YGHU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:ec:d6:4a:dc:b4:db:f0:72:51:8a:d1:74:bd:c4:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f23f73d64f6dbf81d51d35805481568cdd81875
Validity
Not Before: Apr 20 02:00:20 2025 GMT
Not After : Apr 21 02:00:20 2025 GMT
Subject: CN=5fc963ac97cf4ebb4f2536d168bee5ac32439816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a1:2d:1e:f2:9d:eb:8a:a1:b0:31:bc:61:af:
f1:a7:48:07:b0:a9:f1:aa:01:d4:da:d3:64:51:90:
7f:86:33:86:68:c2:a4:21:23:b2:1f:12:ba:53:f4:
52:07:15:53:63:34:bc:31:e0:b8:4d:33:11:b9:59:
2e:e8:34:aa:54:20:b8:4f:8e:46:8d:55:95:6a:14:
5d:bd:50:2b:59:ee:73:21:1e:6d:f7:c3:8b:46:67:
97:80:6d:6c:1b:53:6e:7a:98:c9:f5:cb:41:ec:f5:
fd:cf:36:a4:20:58:74:66:50:be:4a:a2:ee:00:e2:
61:ea:78:77:15:1d:f2:33:27:43:ab:eb:b0:22:ae:
b9:99:8c:e2:96:42:a9:89:69:1b:b3:cc:85:1b:90:
fb:7b:45:fb:c6:02:66:a8:2a:ba:f3:98:91:9a:13:
e3:e4:46:cb:56:2a:86:e6:cb:df:62:1f:77:93:a6:
f8:5a:09:ee:97:8b:86:d7:dc:28:58:f1:ff:19:2b:
75:47:fc:71:2e:d8:b9:60:f4:2f:e4:70:18:a5:21:
f9:fb:c2:5e:6b:ad:b9:16:c6:83:97:b2:f6:7a:ed:
02:fc:2f:4f:87:d0:4e:a3:bd:ea:2b:01:a8:f2:82:
b3:35:12:bf:6e:94:01:99:8a:4f:ac:f7:24:1f:cd:
3f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:C9:63:AC:97:CF:4E:BB:4F:25:36:D1:68:BE:E5:AC:32:43:98:16
X509v3 Authority Key Identifier:
keyid:0F:23:F7:3D:64:F6:DB:F8:1D:51:D3:58:05:48:15:68:CD:D8:18:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DyP3PWT22_gdUdNYBUgVaM3YGHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/03477c-10a4-455b-be6b-b3a09430c665/1/DyP3PWT22_gdUdNYBUgVaM3YGHU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/03477c-10a4-455b-be6b-b3a09430c665/1/DyP3PWT22_gdUdNYBUgVaM3YGHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:a1:70:25:de:74:a6:45:a5:fc:52:3c:5a:d1:33:87:6d:7e:
b1:d0:cd:a4:b8:f1:b7:45:86:e4:b9:a2:33:68:d3:d9:f1:9d:
dd:60:c8:36:42:52:9b:14:3e:d6:81:85:ee:36:be:ec:7a:4b:
f6:f2:8c:12:92:08:7b:47:e6:4d:98:a5:2c:c3:18:02:da:86:
ab:7c:a2:9e:e8:b5:f5:b0:95:91:01:af:62:aa:e4:b3:e7:24:
db:31:5a:d0:cd:8a:85:b5:1b:23:d8:52:c9:bd:47:1a:b4:98:
45:2e:33:cd:0d:84:a4:a8:0f:cc:20:9e:74:b9:e9:06:67:d4:
79:6d:50:8f:fc:82:1c:5b:9a:2f:26:4e:e8:ba:c2:26:28:f0:
d7:9a:a8:dd:71:5f:6e:e5:60:08:27:9b:7b:62:9f:74:a2:43:
8b:3b:29:f4:ae:ff:06:0d:af:41:47:f0:df:0c:69:76:fe:21:
f9:00:1e:8a:cd:e7:d8:3e:68:f2:49:24:91:80:25:88:97:5a:
84:cb:75:df:a3:45:50:7e:03:97:ea:41:2a:2a:f0:9c:a1:2e:
db:b1:07:b8:d7:33:1a:19:48:05:c8:c7:75:22:a2:6f:cc:f0:
6a:20:53:0e:94:18:ad:c7:70:25:62:0d:f1:ea:4e:d4:79:5f:
4a:0f:8f:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:19:35 2025 by rpki-client