Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
File: D8lnTtVfCnZcpdocb6-k3SXioXg.mft (raw, json)
Hash identifier: 090B7moRSx/TCZi4zbQUKHiwTQHfuGjuAnC7hTEUygs=
Subject key identifier: 80:03:AA:73:C3:30:85:D6:C1:A1:27:19:CC:2D:31:12:E0:73:D9:76
Authority key identifier: 0F:C9:67:4E:D5:5F:0A:76:5C:A5:DA:1C:6F:AF:A4:DD:25:E2:A1:78
Certificate issuer: /CN=0fc9674ed55f0a765ca5da1c6fafa4dd25e2a178
Certificate serial: 019651FFB71C99F64AED4ED18E1B2201CBE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
Manifest number: 05E1
Signing time: Sun 20 Apr 2025 07:00:35 +0000
Manifest this update: Sun 20 Apr 2025 07:00:35 +0000
Manifest next update: Mon 21 Apr 2025 07:00:35 +0000
Files and hashes: 1: D8lnTtVfCnZcpdocb6-k3SXioXg.crl (hash: +0VOXxo/N99uqISfwb66XnUnWLRgb1uTds9ozlZ07e4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:ff:b7:1c:99:f6:4a:ed:4e:d1:8e:1b:22:01:cb:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fc9674ed55f0a765ca5da1c6fafa4dd25e2a178
Validity
Not Before: Apr 20 07:00:35 2025 GMT
Not After : Apr 21 07:00:35 2025 GMT
Subject: CN=8003aa73c33085d6c1a12719cc2d3112e073d976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:62:98:ac:30:f4:40:54:09:14:3a:2c:a8:b9:
61:16:0d:d1:ce:32:af:b8:5c:6c:0c:2a:01:38:2c:
66:07:69:da:f9:c9:63:56:1a:90:65:bf:82:bd:9d:
31:4d:c2:f5:8e:b2:4b:56:61:63:61:3f:51:b1:23:
43:e2:11:f4:4a:e6:aa:46:ff:c9:29:90:3f:b3:3f:
19:39:c7:d6:b9:a4:07:e0:b3:1a:78:14:77:ba:09:
33:25:11:39:54:3a:e8:77:8c:f4:3b:64:e3:d0:85:
21:3b:69:f2:81:da:63:b2:82:a9:a2:7c:8e:4f:07:
ed:8d:fd:6c:6a:7e:b3:4f:87:3c:62:ad:51:1f:a9:
65:56:20:e5:2a:43:4b:6b:fa:0a:09:2a:8c:e0:c8:
4f:72:d0:82:86:1f:1d:e8:d5:a5:ba:20:39:70:77:
40:5c:07:ee:03:ae:33:98:20:b7:8d:6a:7d:8e:20:
00:f6:6f:ce:5c:e4:84:4a:fa:41:ed:52:38:af:8a:
09:4f:ba:8a:1b:49:f3:76:3a:08:4b:0d:46:4c:cd:
b0:0c:0c:19:66:89:04:b6:e1:91:16:b3:35:e8:4a:
b8:a8:69:0a:b7:55:49:83:51:86:45:b2:cf:01:62:
92:a7:0c:b3:93:14:f7:67:4a:9e:9c:ed:74:7e:0f:
42:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:03:AA:73:C3:30:85:D6:C1:A1:27:19:CC:2D:31:12:E0:73:D9:76
X509v3 Authority Key Identifier:
keyid:0F:C9:67:4E:D5:5F:0A:76:5C:A5:DA:1C:6F:AF:A4:DD:25:E2:A1:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D8lnTtVfCnZcpdocb6-k3SXioXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/8ab2a3-088e-4e0c-be9a-4a946c52fbc2/1/D8lnTtVfCnZcpdocb6-k3SXioXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d8:1a:ba:44:71:87:82:e0:4a:ad:5a:20:77:7e:d8:c2:7a:26:
c1:e7:a4:c5:3d:4e:37:6a:03:07:52:a0:a9:df:54:c9:46:e6:
34:5d:88:9d:a3:fe:23:63:9b:56:a4:0a:fd:51:ca:7b:ad:35:
0b:c0:a2:c8:b2:7f:62:99:58:fb:b0:16:a3:bf:0c:11:49:a0:
9e:56:0f:4b:24:0b:11:5c:7c:d2:bc:04:7c:ec:6d:d0:3b:c6:
e5:58:55:17:67:3f:4a:45:d4:81:78:4a:94:1a:ad:32:d1:f5:
e7:dc:3c:56:c0:fb:ec:b3:57:b1:5e:52:0d:3a:6f:f8:85:e2:
17:31:82:7d:83:79:99:78:ed:cf:05:32:31:57:0d:82:18:4f:
62:71:c0:7d:85:50:98:74:a3:c9:82:ce:4b:79:7c:36:ef:eb:
39:8c:e6:bc:e3:0e:52:6b:b5:27:0f:42:77:80:f1:30:54:b6:
2b:5a:4c:6c:84:1b:4e:8d:fa:2c:dd:ef:15:f4:b5:4e:71:57:
9e:0d:e7:9a:96:a6:e8:a2:47:5f:0f:1b:2b:76:cc:39:06:0d:
0e:52:38:b0:50:12:6c:b7:11:7d:cc:04:39:67:52:4c:cd:4c:
ce:98:54:74:45:e2:17:68:d5:06:f3:23:8b:f7:be:4c:7f:9c:
cf:5d:4f:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:23:20 2025 by rpki-client