Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
File: CaT39OTp5yw6M5P7XW6nQrwbTCg.mft (raw, json)
Hash identifier: fmL35Mn2/q6QjaH6GDJhuIry45SbCsEwskgAkf7vz8A=
Subject key identifier: BD:02:3B:A2:88:D2:B3:74:27:6A:BF:DC:BF:F8:9E:0B:F9:45:DA:C1
Authority key identifier: 09:A4:F7:F4:E4:E9:E7:2C:3A:33:93:FB:5D:6E:A7:42:BC:1B:4C:28
Certificate issuer: /CN=09a4f7f4e4e9e72c3a3393fb5d6ea742bc1b4c28
Certificate serial: 019629729BF1613BE564AE29F7C42E457683
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CaT39OTp5yw6M5P7XW6nQrwbTCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
Manifest number: 0EAA
Signing time: Sat 12 Apr 2025 10:01:38 +0000
Manifest this update: Sat 12 Apr 2025 10:01:38 +0000
Manifest next update: Sun 13 Apr 2025 10:01:38 +0000
Files and hashes: 1: CaT39OTp5yw6M5P7XW6nQrwbTCg.crl (hash: V0NATEdEHOed7iQUyEoIJJvxSUW6FOutjP/Dh8pQRQ8=)
2: JoXcYev6DySlst62DTDcDz1JN0Q.roa (hash: PRhyl4bdJivpbrgVw6w06UO6PZN+9+qwU0T6MPbrnFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
rsync://rpki.ripe.net/repository/DEFAULT/CaT39OTp5yw6M5P7XW6nQrwbTCg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 08:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:29:72:9b:f1:61:3b:e5:64:ae:29:f7:c4:2e:45:76:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09a4f7f4e4e9e72c3a3393fb5d6ea742bc1b4c28
Validity
Not Before: Apr 12 10:01:38 2025 GMT
Not After : Apr 13 10:01:38 2025 GMT
Subject: CN=bd023ba288d2b374276abfdcbff89e0bf945dac1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:06:b2:0f:c4:b8:57:3b:f8:83:6e:aa:93:ff:
17:82:51:3d:1f:6b:8b:e6:25:ca:c2:40:cc:40:62:
61:c3:a9:e5:bf:6f:ca:46:c0:4f:6c:ca:26:13:78:
38:db:ad:43:03:af:63:ac:78:10:36:0f:06:87:0c:
cf:04:fc:9a:e2:39:ed:f3:76:dd:47:50:7b:68:6e:
8f:14:7e:45:70:c2:66:b2:38:2b:14:19:bd:b5:45:
51:fd:ba:c4:99:4c:5a:5d:e9:d5:e5:5e:48:d6:ee:
e6:02:da:a1:27:89:2f:fe:39:6e:b8:21:ac:f2:6b:
6b:7a:0b:79:2e:a6:08:10:09:8b:2a:47:ce:9e:42:
b1:cd:0c:2f:2a:f1:dc:6b:ca:64:11:16:0a:e2:71:
12:20:0f:86:72:ae:e1:7e:35:3e:40:e7:0d:ed:af:
e2:3a:7b:15:ae:97:13:49:5d:eb:95:6a:20:53:b7:
3b:61:df:2c:d9:e1:20:d7:b3:c5:75:c5:71:a7:3c:
4b:d2:fa:7b:f2:cb:9e:32:8f:fe:dd:7f:3f:2c:a4:
dc:c6:dd:54:87:ad:86:8e:c5:4f:4c:10:6e:73:34:
f9:a0:c2:a9:15:25:ca:1e:bc:11:4d:02:fd:2f:58:
b5:0b:dd:46:4d:ce:15:71:e1:eb:a2:35:5e:5f:d8:
bc:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:02:3B:A2:88:D2:B3:74:27:6A:BF:DC:BF:F8:9E:0B:F9:45:DA:C1
X509v3 Authority Key Identifier:
keyid:09:A4:F7:F4:E4:E9:E7:2C:3A:33:93:FB:5D:6E:A7:42:BC:1B:4C:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CaT39OTp5yw6M5P7XW6nQrwbTCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:bf:12:ea:d3:cb:13:7e:8a:04:16:f2:91:55:bb:61:1f:9c:
49:3d:c7:77:b5:ef:e5:73:b6:00:63:e1:fd:21:9f:e0:95:93:
08:40:55:2b:0f:19:a5:46:72:b9:4e:8b:52:a9:40:cd:94:e0:
37:c6:3e:90:56:29:4c:94:fa:f4:91:92:8d:c6:13:a7:2d:d5:
e0:6a:52:a3:62:f1:76:e1:5e:b7:0c:0d:2f:f4:18:00:85:80:
91:e7:d0:0f:b2:1b:8e:59:08:e9:69:d7:5f:1f:6a:1d:94:ff:
10:55:3e:36:b4:e8:63:2a:b9:b8:30:ff:32:5e:cd:4d:2d:c1:
29:66:65:5f:b7:46:26:a8:99:ac:98:9d:a4:2a:62:4f:eb:c5:
fd:86:3f:49:65:9f:61:d3:cd:dc:64:f4:e5:1a:4b:b4:66:0d:
5f:3f:46:68:86:ec:6a:a6:aa:a6:1a:8e:5e:9c:72:30:de:4a:
9f:68:cb:47:69:f4:a6:e8:9f:20:98:67:f2:23:58:db:dd:a5:
17:38:38:a9:b6:be:de:e0:3f:15:ce:f8:35:1d:41:24:80:a8:
0b:35:cb:ee:f2:bd:1f:01:7a:85:27:71:4f:08:d7:d4:cc:11:
7e:21:37:50:b6:44:d1:aa:3a:40:a3:cd:34:c5:06:34:be:2a:
d2:92:b6:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 16:05:38 2025 by rpki-client