Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.mft
File: Dozgpqu47lDUSzuuQtSiVJ_7gkA.mft (raw, json)
Hash identifier: JzvfzODQUQSVu7vkFUfClKrwnExmqWRiTZGikYSI2d4=
Subject key identifier: 03:E5:3A:84:72:2D:AC:05:AF:53:15:81:72:98:69:0E:FF:18:72:61
Authority key identifier: 0E:8C:E0:A6:AB:B8:EE:50:D4:4B:3B:AE:42:D4:A2:54:9F:FB:82:40
Certificate issuer: /CN=0e8ce0a6abb8ee50d44b3bae42d4a2549ffb8240
Certificate serial: 01968391ABDC37D8CDE6C1D6582FFE661334
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dozgpqu47lDUSzuuQtSiVJ_7gkA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.mft
Manifest number: 1353
Signing time: Tue 29 Apr 2025 22:01:23 +0000
Manifest this update: Tue 29 Apr 2025 22:01:23 +0000
Manifest next update: Wed 30 Apr 2025 22:01:23 +0000
Files and hashes: 1: Dozgpqu47lDUSzuuQtSiVJ_7gkA.crl (hash: ZKtb2U7aiOuIIvrH7nvzQTEoLDbQHPRQv1ZyoxC+mSI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dozgpqu47lDUSzuuQtSiVJ_7gkA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 22:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:91:ab:dc:37:d8:cd:e6:c1:d6:58:2f:fe:66:13:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e8ce0a6abb8ee50d44b3bae42d4a2549ffb8240
Validity
Not Before: Apr 29 22:01:23 2025 GMT
Not After : Apr 30 22:01:23 2025 GMT
Subject: CN=03e53a84722dac05af5315817298690eff187261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8a:cf:3b:10:5c:51:31:19:ff:5f:a6:ed:76:
3c:d6:e5:54:71:af:46:78:bd:cc:78:ba:c3:94:1f:
1f:93:cd:b1:ae:59:00:d0:d3:10:69:19:34:95:c3:
6f:50:cd:dc:e8:59:de:0d:29:38:ca:a0:1a:1f:c4:
45:8d:32:d6:a1:32:7e:65:90:25:2a:ed:38:36:ea:
28:d9:b3:b3:ff:64:f4:2f:e0:45:80:28:0f:f0:fe:
76:04:4f:8f:06:54:c2:32:55:dd:b9:df:3e:7a:61:
f3:5d:8f:a5:69:84:6c:f4:19:43:86:d8:4f:fa:68:
3d:92:62:10:f8:15:08:88:82:34:c9:9a:9d:d5:93:
68:c1:df:7e:df:d1:fa:67:61:90:c1:89:44:f3:94:
ce:98:a8:f2:d9:5d:dc:0a:96:d5:4d:0f:48:15:68:
d5:55:2b:73:6c:f0:a4:3c:1b:3e:3f:e4:cd:53:31:
52:76:71:ba:1c:b8:b4:d7:3b:03:e1:40:5c:32:0b:
7e:f6:f9:45:61:ad:79:9a:53:e6:50:ce:9f:11:1c:
19:47:00:e2:c1:6a:96:ee:f7:e4:70:7c:ca:a4:9a:
dc:41:00:97:9e:2f:99:9d:da:46:55:e9:81:9c:06:
3f:70:d4:44:86:6a:5c:e3:8a:3e:e7:12:c6:37:c4:
cd:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:E5:3A:84:72:2D:AC:05:AF:53:15:81:72:98:69:0E:FF:18:72:61
X509v3 Authority Key Identifier:
keyid:0E:8C:E0:A6:AB:B8:EE:50:D4:4B:3B:AE:42:D4:A2:54:9F:FB:82:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dozgpqu47lDUSzuuQtSiVJ_7gkA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:5f:83:5e:08:f7:55:03:0d:42:8c:06:4e:45:ed:c5:b2:ac:
35:e0:9c:77:eb:86:07:9a:0e:f5:56:3a:0c:5e:fc:ab:4d:e5:
92:67:eb:70:21:23:44:91:fd:b4:0d:09:b5:50:e3:84:84:16:
4b:4e:4a:64:76:d0:1f:3c:0a:01:0d:7b:e0:22:cb:9f:d7:24:
53:02:6d:0e:26:fb:3e:d8:8c:24:1d:d8:26:c5:6c:c3:c3:58:
2a:5c:1d:b3:30:22:d6:09:fa:84:88:9c:fa:52:3f:35:14:06:
80:d3:63:31:e8:ad:95:86:c7:3f:5e:99:e3:f1:8b:6f:d9:31:
e7:bc:9f:e0:9f:73:f0:80:9f:68:16:c8:28:01:b1:fe:84:bc:
d2:e2:46:a6:95:6e:c2:ef:cf:e3:6a:b3:d6:4e:c4:7d:e6:55:
8d:5b:d2:c4:e6:f3:0d:5a:7e:8e:88:d2:bf:0c:b6:df:5f:1c:
15:f9:28:1d:39:56:52:3a:55:76:4a:a0:b4:8b:38:18:40:c1:
97:c2:0d:9f:d4:7a:3f:58:69:5d:84:e7:0b:f0:a4:77:c7:87:
76:88:c9:75:39:f7:3a:c3:2f:d6:5a:8d:ef:ff:3e:dd:ca:65:
33:0a:8c:62:1c:77:1f:f2:4b:84:26:dd:0f:df:59:6a:25:b9:
fe:7b:f3:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 02:07:34 2025 by rpki-client