Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
File: 3ohLjkYvPsE6QCTWaamdlK8FzbI.mft (raw, json)
Hash identifier: jw3Z31n4pfYE4JviZHSJZf7TRsFrQv5GGisJ4FtWJFo=
Subject key identifier: D9:9A:6F:1A:1A:00:F1:8B:AB:19:04:35:1F:EF:B5:12:32:1F:9B:75
Authority key identifier: DE:88:4B:8E:46:2F:3E:C1:3A:40:24:D6:69:A9:9D:94:AF:05:CD:B2
Certificate issuer: /CN=de884b8e462f3ec13a4024d669a99d94af05cdb2
Certificate serial: 01968435D9CAFCFBD838061E8F6393797905
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ohLjkYvPsE6QCTWaamdlK8FzbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
Manifest number: 05C5
Signing time: Wed 30 Apr 2025 01:00:43 +0000
Manifest this update: Wed 30 Apr 2025 01:00:43 +0000
Manifest next update: Thu 01 May 2025 01:00:43 +0000
Files and hashes: 1: 3ohLjkYvPsE6QCTWaamdlK8FzbI.crl (hash: eZxm7M9CCcIYbh+TSNPpnBodSDFR04eGSFbmJ8Vkqn4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
rsync://rpki.ripe.net/repository/DEFAULT/3ohLjkYvPsE6QCTWaamdlK8FzbI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:84:35:d9:ca:fc:fb:d8:38:06:1e:8f:63:93:79:79:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de884b8e462f3ec13a4024d669a99d94af05cdb2
Validity
Not Before: Apr 30 01:00:43 2025 GMT
Not After : May 1 01:00:43 2025 GMT
Subject: CN=d99a6f1a1a00f18bab1904351fefb512321f9b75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ac:30:7e:b3:e7:bb:2f:3f:0d:fe:a5:15:77:
9f:62:9a:9c:f0:4b:6d:c4:4a:e3:c3:56:09:a8:ef:
73:63:fa:d3:9b:77:28:94:e2:cf:4e:2b:b4:90:30:
fb:ba:24:f5:5b:9e:bd:fb:27:d6:f2:bf:35:3c:8e:
35:8e:09:1d:c3:b9:d4:a5:a3:9f:6b:8d:35:e4:8f:
cc:18:1b:41:46:d9:68:da:99:cc:0d:88:77:51:27:
7b:a0:c4:a6:10:e9:4f:b4:0e:96:17:79:1c:05:73:
16:d1:c4:0a:84:88:3b:00:53:08:c6:55:be:4f:c9:
af:06:16:bd:68:c3:d5:ac:04:1b:8f:06:30:1f:8b:
9a:c6:65:42:b0:3c:01:45:23:69:f8:45:bb:a3:78:
e6:02:3a:64:21:96:9e:ab:f9:6c:e9:11:64:66:42:
a1:91:da:85:24:9c:6f:c7:35:eb:af:12:2c:fc:37:
db:04:73:40:d2:cc:69:89:4a:d4:5b:d9:1f:c9:69:
63:e0:e3:13:45:ac:8a:56:05:32:84:1c:08:be:89:
ad:a1:c7:21:bb:7c:41:36:f2:20:ce:00:1b:2d:da:
f0:40:08:b1:e6:29:12:3e:d8:36:cc:93:50:39:b4:
f5:16:7b:4d:42:03:de:89:5b:c2:a8:8d:7e:25:83:
63:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:9A:6F:1A:1A:00:F1:8B:AB:19:04:35:1F:EF:B5:12:32:1F:9B:75
X509v3 Authority Key Identifier:
keyid:DE:88:4B:8E:46:2F:3E:C1:3A:40:24:D6:69:A9:9D:94:AF:05:CD:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ohLjkYvPsE6QCTWaamdlK8FzbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/45df56-dd32-433c-b44e-4af70402b270/1/3ohLjkYvPsE6QCTWaamdlK8FzbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:8d:f5:91:66:d9:f2:5c:bf:44:a1:ae:1c:f2:07:b1:8a:0d:
94:c0:98:cf:ed:3c:3c:74:56:2c:a2:cc:e3:1f:c9:f3:90:68:
40:e4:4b:c5:a6:2f:94:60:e5:f4:14:45:86:3f:9e:5f:68:45:
bf:52:ec:26:14:f6:80:7e:17:91:14:04:09:22:bb:53:58:d2:
b0:36:ae:3b:47:db:1d:d8:a3:7d:c1:2c:d9:4e:25:a9:24:0f:
19:25:fe:8f:b4:b6:a7:64:7a:8a:ce:eb:d4:39:7d:57:24:ed:
7e:c3:52:45:c6:f0:ef:14:9f:d6:e0:82:0f:8a:7e:f7:96:d1:
ab:7f:7c:a0:f5:66:36:67:7a:26:42:06:08:ca:78:e4:45:55:
b8:e8:6a:8f:c9:16:c5:99:bf:12:aa:2a:68:8f:74:aa:c3:31:
80:7b:7a:23:2c:05:42:be:cd:9c:d0:d7:38:2f:70:21:76:76:
d3:bb:e2:ab:94:42:64:e7:b2:ae:1a:a7:86:85:26:6d:ba:7b:
5d:4a:fb:8b:2d:9d:73:95:ac:21:66:dd:8e:74:b8:b6:60:45:
2d:fd:cb:56:ef:46:a3:48:d7:c2:70:5b:2f:65:5e:f7:71:14:
7c:82:4d:f6:f4:32:09:98:28:dc:a5:fb:57:9e:49:f1:c7:81:
d2:ec:51:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 08:31:24 2025 by rpki-client