Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
File: cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft (raw, json)
Hash identifier: K067+tf0yitYF5ytbjZulfvdb7/fe/HSaSdscnbsY0Q=
Subject key identifier: 80:DC:F7:74:6C:A4:DC:79:63:3A:0B:F5:53:1E:2E:8C:85:8F:30:51
Authority key identifier: 70:CE:E6:2B:79:47:2D:CA:E5:1E:AD:4D:8E:A0:69:23:87:0F:51:97
Certificate issuer: /CN=70cee62b79472dcae51ead4d8ea06923870f5197
Certificate serial: 01964FDB2D66B61AFFD14E2AAE949C9F9CA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
Manifest number: 14F7
Signing time: Sat 19 Apr 2025 21:01:26 +0000
Manifest this update: Sat 19 Apr 2025 21:01:26 +0000
Manifest next update: Sun 20 Apr 2025 21:01:26 +0000
Files and hashes: 1: cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl (hash: FnkWasMbkON7qnFYV4oXxTRW7izslfNfzb3GOD4CnRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:db:2d:66:b6:1a:ff:d1:4e:2a:ae:94:9c:9f:9c:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cee62b79472dcae51ead4d8ea06923870f5197
Validity
Not Before: Apr 19 21:01:26 2025 GMT
Not After : Apr 20 21:01:26 2025 GMT
Subject: CN=80dcf7746ca4dc79633a0bf5531e2e8c858f3051
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:e1:77:a9:a9:ea:88:af:84:f6:29:16:82:f1:
79:52:06:1a:7a:bf:cd:06:36:42:e4:1a:02:08:62:
2b:f7:e2:2c:d5:ee:b5:d8:6a:94:d5:e5:92:a9:6f:
00:27:33:82:32:89:be:c1:db:91:44:2c:bd:ea:d6:
56:82:23:85:60:83:14:3f:56:78:c5:0f:ac:3d:36:
e9:7e:61:5e:e0:bf:de:52:42:ca:b9:7b:b9:7f:64:
45:17:ba:9c:c1:df:21:9d:f1:26:e4:c9:4b:cf:2b:
3b:ae:4b:e9:ea:06:4e:18:b8:d0:91:93:63:70:7f:
16:46:64:e9:84:0a:58:d1:a9:22:90:7e:e0:bd:a3:
69:19:05:91:15:cd:bd:c8:16:a6:6c:a2:46:cf:9c:
66:7e:12:e4:7f:c1:3f:24:72:18:5c:61:4c:35:d6:
9e:b5:db:ff:f8:5c:98:5c:fc:a2:93:ab:cf:3c:8c:
1a:91:7f:ee:ad:bb:54:77:8b:bf:93:d1:7e:7d:31:
04:83:fd:9f:5a:ce:a7:95:f9:a5:16:68:a1:3a:92:
6a:f7:65:5d:6e:13:af:1e:33:c4:91:85:32:a0:51:
53:22:78:b7:66:6e:e5:7a:1c:36:62:27:93:82:9c:
00:c2:2f:9b:cd:ed:0c:cd:cc:4d:c3:7a:fc:21:77:
e9:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:DC:F7:74:6C:A4:DC:79:63:3A:0B:F5:53:1E:2E:8C:85:8F:30:51
X509v3 Authority Key Identifier:
keyid:70:CE:E6:2B:79:47:2D:CA:E5:1E:AD:4D:8E:A0:69:23:87:0F:51:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:a8:fb:df:2a:17:4c:77:48:da:4c:3a:4d:4f:bb:1b:b6:2b:
94:77:25:dc:88:db:99:fe:52:fb:7a:37:bb:0f:4a:f0:ff:20:
d8:f9:54:55:63:90:e0:b7:0c:99:72:a1:c2:72:7f:6d:25:a6:
51:29:4d:72:cb:bf:80:52:97:34:46:da:53:58:36:10:d5:9b:
86:57:60:5a:ec:91:fa:a9:85:38:ef:c5:0a:82:fd:7f:2b:e8:
5a:7b:e4:51:c3:74:0f:d4:90:3b:45:c2:eb:4d:c5:6b:3a:d3:
40:f6:73:2a:88:9a:11:46:52:0a:b3:cd:15:af:ba:c9:bb:b6:
17:bd:7f:eb:6c:af:81:07:92:0b:45:12:55:8f:5a:cc:c9:7d:
e4:03:df:d5:20:4b:e8:14:d5:82:8a:8d:50:d2:62:85:87:29:
9e:e0:1f:65:f3:00:0f:38:57:0a:f3:b5:94:bb:25:1c:c0:42:
c7:67:82:8c:3f:2c:50:47:ff:a1:6a:db:ab:32:56:65:9e:2f:
48:c3:85:e1:e3:12:34:99:a9:17:6d:86:82:29:ea:0d:e4:b3:
20:43:69:15:59:76:97:93:2a:63:e5:6a:c7:d4:4b:48:6c:ae:
4c:be:82:c9:35:09:03:50:0a:51:df:bc:7e:f6:3e:a4:d4:4d:
92:be:8f:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 00:59:35 2025 by rpki-client