Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft
File: RK3etuoTlfaY9C51Qa70kkJiX2I.mft (raw, json)
Hash identifier: O5isoTQuN6S/8ec8Ld/OrOPvlBt30W66oHbT/OqMFTc=
Subject key identifier: 0B:56:F7:DE:E9:22:E2:E0:1B:62:C1:7C:88:16:70:23:B1:12:36:BB
Authority key identifier: 44:AD:DE:B6:EA:13:95:F6:98:F4:2E:75:41:AE:F4:92:42:62:5F:62
Certificate issuer: /CN=44addeb6ea1395f698f42e7541aef49242625f62
Certificate serial: 0196876DCE24FEA255C4E8555D0FE3976CDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RK3etuoTlfaY9C51Qa70kkJiX2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft
Manifest number: 1515
Signing time: Wed 30 Apr 2025 16:00:42 +0000
Manifest this update: Wed 30 Apr 2025 16:00:42 +0000
Manifest next update: Thu 01 May 2025 16:00:42 +0000
Files and hashes: 1: RK3etuoTlfaY9C51Qa70kkJiX2I.crl (hash: 5YfafY1hqTWyPzLrpk5V9A4mw0btV/Ud3Oz3pkGLDFQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/RK3etuoTlfaY9C51Qa70kkJiX2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 13:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:87:6d:ce:24:fe:a2:55:c4:e8:55:5d:0f:e3:97:6c:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44addeb6ea1395f698f42e7541aef49242625f62
Validity
Not Before: Apr 30 16:00:42 2025 GMT
Not After : May 1 16:00:42 2025 GMT
Subject: CN=0b56f7dee922e2e01b62c17c88167023b11236bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0e:58:11:05:97:36:2b:ae:62:09:1b:5f:6f:
c1:2c:ef:6a:e6:f2:d2:bc:05:78:9b:ec:2a:39:a7:
e6:30:14:19:55:5f:e5:6d:d4:cf:e6:8f:c8:0a:6b:
90:c7:25:d9:d7:7b:6b:94:02:72:79:e0:03:15:e3:
5f:57:d5:62:78:22:08:1e:73:87:95:1d:e9:49:9b:
ca:88:cf:9e:ee:85:28:c9:39:8c:82:28:79:0f:9a:
a1:c0:d6:39:68:8a:28:64:25:ad:3d:8a:3a:bc:ba:
9c:ba:80:ab:ad:67:93:67:5f:30:6c:52:62:8f:42:
d0:35:7a:bf:d9:8a:61:18:40:5c:ec:5b:81:37:60:
5f:6c:7d:c9:87:e4:2d:0d:c7:bd:6d:fb:c1:ca:9f:
c2:1e:0b:98:f4:2f:37:97:1a:79:93:e6:03:5d:7f:
d1:43:cd:5a:98:bf:0e:2f:ec:fa:3c:c8:38:7c:e2:
55:0c:b5:3d:56:d0:81:99:28:c2:de:25:7b:92:ac:
f3:9f:30:bf:41:1e:e6:09:73:d5:22:b9:00:93:c9:
41:3a:a0:02:1c:e5:c8:4f:20:bc:d0:bc:dc:a8:c4:
d3:da:32:65:69:c2:1e:e0:59:e9:24:75:74:89:a3:
ff:23:3f:96:3c:3f:b9:2b:ad:f9:ad:5c:a6:2b:a1:
b5:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:56:F7:DE:E9:22:E2:E0:1B:62:C1:7C:88:16:70:23:B1:12:36:BB
X509v3 Authority Key Identifier:
keyid:44:AD:DE:B6:EA:13:95:F6:98:F4:2E:75:41:AE:F4:92:42:62:5F:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RK3etuoTlfaY9C51Qa70kkJiX2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:a5:71:33:4c:5c:93:1e:ff:88:0a:6f:59:22:25:fd:44:24:
8d:18:13:20:77:67:59:f4:8f:72:eb:50:71:34:90:9c:b8:53:
a4:6d:28:a2:82:35:a6:ab:ed:1d:3f:a6:70:02:89:5f:a8:59:
5c:d8:04:9b:b2:b9:6e:98:d9:59:5e:a0:3c:7f:8d:7d:7c:06:
b9:41:17:72:95:d1:af:fd:9c:af:da:86:a4:c4:19:02:a8:d3:
bd:07:06:09:6b:a9:a0:97:b0:d3:4d:2c:2c:8d:53:c0:ad:d8:
63:57:63:6b:09:0f:43:d1:1d:62:ed:6c:02:d7:4a:3f:9c:2b:
2c:bd:f7:46:49:4e:dc:7f:ac:81:f2:2f:5f:92:74:6b:6b:37:
ee:a4:53:02:7b:fb:fb:ce:a3:97:a6:04:ac:e8:fd:85:66:08:
e6:b9:37:d1:b2:2d:a4:30:25:f1:69:c3:75:8f:02:52:06:71:
1b:af:09:f2:d7:aa:68:40:e6:16:4e:fd:01:02:03:79:09:65:
9f:0f:1e:7f:6d:ee:87:b0:60:4e:a4:6d:37:80:f1:32:eb:62:
00:15:b6:8a:78:4c:00:48:d1:a6:cf:8c:d5:d9:be:88:cb:e0:
7c:07:c3:b0:ee:f9:77:c6:78:20:78:88:8c:c4:63:cf:5c:c4:
98:5e:4b:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 21:25:59 2025 by rpki-client