Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/18a5c2-25f4-45fc-bb41-9afdc345e3d3/1/PA_tbg0UKi8JwEDJmvHJNWAgkpE.mft
File: PA_tbg0UKi8JwEDJmvHJNWAgkpE.mft (raw, json)
Hash identifier: MJv+VA6X9eLCFAy9q6iLe2M0ZjPWgvKe3W9nAtU8S7k=
Subject key identifier: 7F:CE:8B:53:B0:D7:E0:55:36:B6:73:62:A9:C2:76:8C:8C:34:EE:08
Authority key identifier: 3C:0F:ED:6E:0D:14:2A:2F:09:C0:40:C9:9A:F1:C9:35:60:20:92:91
Certificate issuer: /CN=3c0fed6e0d142a2f09c040c99af1c93560209291
Certificate serial: 019676B15720C2B35A3B5A11D1C4C0DF2CA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PA_tbg0UKi8JwEDJmvHJNWAgkpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/18a5c2-25f4-45fc-bb41-9afdc345e3d3/1/PA_tbg0UKi8JwEDJmvHJNWAgkpE.mft
Manifest number: 0F92
Signing time: Sun 27 Apr 2025 10:00:55 +0000
Manifest this update: Sun 27 Apr 2025 10:00:55 +0000
Manifest next update: Mon 28 Apr 2025 10:00:55 +0000
Files and hashes: 1: PA_tbg0UKi8JwEDJmvHJNWAgkpE.crl (hash: v9gfqYo9F5QATixAbxTG1sLxAKn1OVCjo/LulBi1iIg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/18a5c2-25f4-45fc-bb41-9afdc345e3d3/1/PA_tbg0UKi8JwEDJmvHJNWAgkpE.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/18a5c2-25f4-45fc-bb41-9afdc345e3d3/1/PA_tbg0UKi8JwEDJmvHJNWAgkpE.mft
rsync://rpki.ripe.net/repository/DEFAULT/PA_tbg0UKi8JwEDJmvHJNWAgkpE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:b1:57:20:c2:b3:5a:3b:5a:11:d1:c4:c0:df:2c:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c0fed6e0d142a2f09c040c99af1c93560209291
Validity
Not Before: Apr 27 10:00:55 2025 GMT
Not After : Apr 28 10:00:55 2025 GMT
Subject: CN=7fce8b53b0d7e05536b67362a9c2768c8c34ee08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e9:90:7c:ca:13:43:f5:7d:ed:99:05:76:f8:
ff:3c:bd:79:5c:8d:16:c3:c3:fe:eb:8d:fd:dc:99:
d1:dc:f0:63:68:41:2b:60:87:f8:eb:e9:7f:68:42:
fa:b0:df:9f:7a:04:c7:10:b8:11:82:45:df:af:10:
2d:9a:7a:1d:f8:31:3f:8a:c6:7a:d9:66:55:e2:57:
59:60:34:e8:0a:ea:34:f2:f4:ae:5b:c0:e1:43:a4:
49:4b:03:34:d7:0b:d9:1f:17:18:92:28:3f:9e:55:
35:12:46:ec:5f:df:39:c0:f0:4a:35:f6:82:23:b6:
59:9a:7d:95:e0:8b:b8:21:1f:10:e5:23:c6:ba:a0:
b4:29:a1:1f:fb:df:7a:7c:8c:73:cf:18:e8:50:c8:
23:21:f5:48:f9:67:81:d7:e2:a1:b4:fc:86:3b:68:
de:2b:5c:3c:41:c0:49:9f:5d:01:f9:75:2c:a4:50:
26:bb:29:75:1d:c9:ad:4b:ab:c8:91:fa:47:66:3c:
50:4b:90:e7:21:8f:cb:37:1a:c8:31:4d:ac:07:f0:
a5:c8:c9:47:3c:ac:b0:93:46:ea:9c:56:23:8b:74:
cd:7c:26:40:92:ce:e9:90:c9:ac:c2:e0:87:79:78:
49:63:d3:a6:b4:b8:85:cb:e2:06:4a:81:be:ca:8d:
22:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:CE:8B:53:B0:D7:E0:55:36:B6:73:62:A9:C2:76:8C:8C:34:EE:08
X509v3 Authority Key Identifier:
keyid:3C:0F:ED:6E:0D:14:2A:2F:09:C0:40:C9:9A:F1:C9:35:60:20:92:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PA_tbg0UKi8JwEDJmvHJNWAgkpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/18a5c2-25f4-45fc-bb41-9afdc345e3d3/1/PA_tbg0UKi8JwEDJmvHJNWAgkpE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/18a5c2-25f4-45fc-bb41-9afdc345e3d3/1/PA_tbg0UKi8JwEDJmvHJNWAgkpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:a0:79:4b:dc:a1:8e:5a:ab:15:eb:29:14:3a:e9:ec:a8:ff:
4e:44:3f:66:94:85:80:7a:f7:19:28:6b:3d:b3:bd:fe:af:d7:
7b:c2:df:7f:ec:27:fd:d0:05:91:7f:28:19:4c:f8:20:4c:ba:
f3:74:d4:39:a0:4e:d7:f9:25:2c:cf:78:ae:6e:50:42:43:67:
31:46:93:e9:9e:7f:f2:71:0a:bc:cc:7e:69:81:eb:32:51:b7:
47:c6:d7:fd:af:43:ef:91:61:7f:68:84:4f:44:6b:9e:20:2b:
f6:35:d7:26:7a:ef:ac:5d:1d:8b:35:32:1b:33:34:1f:64:e3:
3f:8f:14:38:a7:bf:77:1b:db:71:cc:53:1e:ad:c8:bb:38:64:
fd:32:df:e2:2c:22:74:b6:fc:c0:ba:e1:f4:a8:5c:19:ca:4b:
07:ec:73:c5:01:73:97:4a:13:0b:08:88:65:c4:fb:cb:b9:9c:
67:4e:13:5c:4d:c3:1e:d7:0f:94:f0:b2:d3:9c:df:db:3f:d8:
1a:d2:a8:a9:8f:ec:f0:a8:7a:53:02:09:17:98:17:d2:12:91:
75:31:21:15:d7:a8:54:95:a8:db:70:c6:8f:f5:20:7f:a2:7b:
4e:1f:a8:32:2f:b6:41:f3:e9:28:16:9f:10:f4:19:1c:6c:3a:
bf:07:15:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:52:34 2025 by rpki-client