Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.mft
File: obfHtAmGdKBPsXeELOxO65v4nh4.mft (raw, json)
Hash identifier: uRv0RXVjWDaj1z8iIO352AtHnfzxHNBHn9ZbXo0ItvA=
Subject key identifier: 8F:68:57:0B:51:9A:0C:CE:EC:03:9E:7A:A6:7A:1B:2E:AD:51:52:4B
Authority key identifier: A1:B7:C7:B4:09:86:74:A0:4F:B1:77:84:2C:EC:4E:EB:9B:F8:9E:1E
Certificate issuer: /CN=a1b7c7b4098674a04fb177842cec4eeb9bf89e1e
Certificate serial: 01967BD7ABAB2D619169EBCE7F9B5C78EBEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obfHtAmGdKBPsXeELOxO65v4nh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.mft
Manifest number: 150E
Signing time: Mon 28 Apr 2025 10:00:53 +0000
Manifest this update: Mon 28 Apr 2025 10:00:53 +0000
Manifest next update: Tue 29 Apr 2025 10:00:53 +0000
Files and hashes: 1: obfHtAmGdKBPsXeELOxO65v4nh4.crl (hash: cmXIyXDkyF1vmx4kijOqowlm92E5fNkiUtFMHOe6CKU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.mft
rsync://rpki.ripe.net/repository/DEFAULT/obfHtAmGdKBPsXeELOxO65v4nh4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7b:d7:ab:ab:2d:61:91:69:eb:ce:7f:9b:5c:78:eb:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1b7c7b4098674a04fb177842cec4eeb9bf89e1e
Validity
Not Before: Apr 28 10:00:53 2025 GMT
Not After : Apr 29 10:00:53 2025 GMT
Subject: CN=8f68570b519a0cceec039e7aa67a1b2ead51524b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:cc:3d:d0:f7:52:c9:60:6b:e0:64:7e:2e:d6:
58:29:88:40:8d:5a:21:32:45:ad:3e:ee:af:0a:63:
2c:00:53:96:aa:c1:9a:00:28:f1:3e:93:9e:af:f3:
7d:03:32:22:15:b8:4b:d2:68:de:b0:7d:57:a8:96:
ad:f3:e6:7d:0e:20:62:d9:24:0e:eb:95:6e:24:02:
e1:36:69:0e:61:a1:1a:5e:96:81:d2:88:c1:8c:2c:
f0:31:fb:a4:f8:26:bb:ba:ce:d5:e2:b2:7b:b4:b0:
91:f7:0e:05:16:1b:ef:be:71:e7:f6:f7:f8:98:8e:
25:f7:c2:e6:19:c3:a4:16:ce:27:e9:6f:61:a5:38:
d4:22:47:c7:ac:d8:aa:b7:71:eb:22:86:b9:b2:b7:
75:32:58:cd:cb:4d:3e:b9:b0:1d:1f:6a:0e:2b:0d:
4a:65:9a:bf:cf:9f:0a:fb:c1:87:41:aa:c5:9a:ff:
d4:13:e2:11:b4:a4:07:4a:4f:a6:a2:8e:17:60:cd:
20:84:52:fd:76:c5:6a:1e:cf:e3:ee:47:48:75:51:
da:14:c3:00:0f:ba:3f:92:57:33:8b:77:26:a3:f9:
0e:ce:d4:fa:8a:94:e3:b1:dd:db:9d:11:e4:e3:89:
1a:07:8a:7e:5f:32:73:cc:b9:90:fa:5d:24:cf:1f:
88:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:68:57:0B:51:9A:0C:CE:EC:03:9E:7A:A6:7A:1B:2E:AD:51:52:4B
X509v3 Authority Key Identifier:
keyid:A1:B7:C7:B4:09:86:74:A0:4F:B1:77:84:2C:EC:4E:EB:9B:F8:9E:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obfHtAmGdKBPsXeELOxO65v4nh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:17:e2:19:fd:b7:02:36:4b:c8:ef:09:77:d4:81:90:73:83:
d1:7c:ba:2e:47:b5:a7:43:d0:20:88:4b:93:56:a5:12:6e:38:
2a:04:d0:b2:a7:8c:0b:bf:1a:8a:a8:81:06:6d:ea:a5:df:c6:
9d:da:ad:e6:d4:71:60:04:cc:45:08:ae:78:18:53:5a:1d:bc:
9f:06:0a:14:b6:d0:68:67:71:44:9f:5c:67:09:e3:a2:58:fc:
e8:92:7d:28:4c:91:07:a4:6a:4d:44:fd:16:9d:b5:51:53:a5:
78:0e:6e:55:4b:8c:36:a9:dc:bd:06:46:a8:a6:97:e5:a9:69:
91:7c:34:16:8a:54:65:cc:26:1e:8b:2b:4d:32:52:26:4c:26:
b7:ef:2c:d5:b4:22:0b:1f:3e:bd:98:88:27:9b:96:cd:42:b3:
c9:9f:29:82:40:c9:e2:c5:de:6e:5a:86:0e:b5:20:e0:71:9a:
a8:c3:01:03:e8:cd:34:23:b6:9f:22:1b:f9:12:77:38:8d:18:
54:88:37:24:da:37:53:4b:8e:fd:77:66:e2:81:59:09:53:20:
a6:ff:fc:4f:a3:d0:ea:49:fd:a1:19:31:23:92:12:89:7e:a6:
3b:5c:03:73:6b:b6:6c:d5:1c:6c:6a:f7:c0:49:ef:b6:a0:c0:
bf:cc:be:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 13:30:19 2025 by rpki-client