Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/3ec692-a3e4-4379-a1c7-a7e3c6a892ec/1/aWZ-UauBVWetZ8u10biJY4Nfqfc.mft
File: aWZ-UauBVWetZ8u10biJY4Nfqfc.mft (raw, json)
Hash identifier: pJRKgMpLz9hzH1NVLg6rVi8WU6G+l425ReD5hbdUWm4=
Subject key identifier: 08:33:B9:A6:31:BB:71:6F:78:41:CC:F3:B8:BF:A5:59:A2:DD:11:63
Authority key identifier: 69:66:7E:51:AB:81:55:67:AD:67:CB:B5:D1:B8:89:63:83:5F:A9:F7
Certificate issuer: /CN=69667e51ab815567ad67cbb5d1b88963835fa9f7
Certificate serial: 019694F24E1A15D72F760693A98A5C24C939
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aWZ-UauBVWetZ8u10biJY4Nfqfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/3ec692-a3e4-4379-a1c7-a7e3c6a892ec/1/aWZ-UauBVWetZ8u10biJY4Nfqfc.mft
Manifest number: 0C7F
Signing time: Sat 03 May 2025 07:00:29 +0000
Manifest this update: Sat 03 May 2025 07:00:29 +0000
Manifest next update: Sun 04 May 2025 07:00:29 +0000
Files and hashes: 1: aWZ-UauBVWetZ8u10biJY4Nfqfc.crl (hash: qiN7RMmSfUAh9zG7uGcEpGA5zoTQA7upyW5GPf6iEqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/3ec692-a3e4-4379-a1c7-a7e3c6a892ec/1/aWZ-UauBVWetZ8u10biJY4Nfqfc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/3ec692-a3e4-4379-a1c7-a7e3c6a892ec/1/aWZ-UauBVWetZ8u10biJY4Nfqfc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aWZ-UauBVWetZ8u10biJY4Nfqfc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 04 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:94:f2:4e:1a:15:d7:2f:76:06:93:a9:8a:5c:24:c9:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69667e51ab815567ad67cbb5d1b88963835fa9f7
Validity
Not Before: May 3 07:00:29 2025 GMT
Not After : May 4 07:00:29 2025 GMT
Subject: CN=0833b9a631bb716f7841ccf3b8bfa559a2dd1163
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d4:96:d5:e5:e0:b1:83:89:20:45:b5:be:bd:
d0:79:8f:d0:b7:28:e2:9e:98:bc:6b:d1:51:5d:0f:
71:58:2c:50:e7:44:99:88:0c:2d:47:a2:38:41:f1:
c4:2f:a3:0c:fe:5e:73:e2:6f:9e:7a:19:69:5c:ff:
82:ea:9f:80:92:c7:a3:24:e5:72:7c:0f:d5:35:a5:
69:e8:78:c9:e9:81:07:49:46:1e:00:70:15:30:04:
d8:46:1e:06:34:a3:a5:7c:f7:91:02:16:1d:83:84:
5e:a0:46:29:75:dc:30:85:78:d2:fb:07:1f:c4:70:
6c:0e:49:9a:e7:d4:0b:6f:3a:0b:b9:d2:67:a0:26:
6d:02:77:2d:75:6e:81:a3:ed:5a:e6:a3:f9:56:91:
4d:af:a4:01:4f:93:a8:13:3a:06:90:1e:5e:d4:04:
51:60:eb:1a:f4:ec:58:24:c4:40:e0:ac:c6:9e:11:
60:60:91:19:7a:32:0d:6b:44:57:ca:d0:fc:69:9a:
73:e0:5d:9d:8e:4e:33:90:d9:1b:c1:46:ae:e7:19:
af:4b:5a:b6:75:61:60:1e:2d:a4:79:39:56:fd:4e:
eb:e0:42:79:b0:e7:a7:2e:b6:ce:12:17:8b:0f:92:
78:e9:a7:b2:be:6e:23:c4:7a:05:6e:c2:9b:eb:d7:
8b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:33:B9:A6:31:BB:71:6F:78:41:CC:F3:B8:BF:A5:59:A2:DD:11:63
X509v3 Authority Key Identifier:
keyid:69:66:7E:51:AB:81:55:67:AD:67:CB:B5:D1:B8:89:63:83:5F:A9:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aWZ-UauBVWetZ8u10biJY4Nfqfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/3ec692-a3e4-4379-a1c7-a7e3c6a892ec/1/aWZ-UauBVWetZ8u10biJY4Nfqfc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/3ec692-a3e4-4379-a1c7-a7e3c6a892ec/1/aWZ-UauBVWetZ8u10biJY4Nfqfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:a8:66:6c:16:8f:52:7e:11:a3:ff:8e:91:d6:80:51:df:12:
fc:34:ef:5d:23:0a:84:51:fc:f3:0d:5f:15:ae:a0:49:41:fe:
d6:04:e7:a1:42:69:e6:4e:61:c3:c6:3f:ea:92:ca:12:3c:30:
b6:b0:7f:74:1c:c9:de:3e:17:27:ac:d9:85:ec:c6:9e:18:ed:
af:16:1d:0f:0c:a6:20:79:00:95:ee:24:eb:b4:f0:89:22:cc:
24:d3:3b:5f:08:f6:17:ef:e4:15:02:87:19:eb:9b:0a:91:14:
d8:65:d7:ee:ad:d5:3b:0c:4e:da:ca:9a:17:ab:f0:31:f0:e9:
d7:1e:ce:33:a3:74:c4:cd:5f:3a:d4:d2:8b:05:6e:32:fc:05:
48:7f:39:f7:8b:be:b3:7b:d8:29:3a:29:3c:b5:c8:6a:e8:6a:
ad:c3:bc:49:94:66:76:84:71:50:66:99:fb:89:45:de:04:b9:
ba:85:04:8a:25:b6:e4:4b:77:13:a5:ce:50:6d:e0:18:58:fa:
1f:e2:57:07:84:02:f2:a0:0a:9c:2f:2c:bf:4f:ec:69:6b:e3:
15:ec:03:ae:bc:8c:43:c5:8c:51:db:16:44:d5:c8:16:17:55:
1a:9c:d6:c7:0b:91:a4:ce:d8:28:76:f5:98:b3:1c:6b:fd:7e:
c8:80:84:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 12:36:24 2025 by rpki-client