Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.mft
File: 1m3elQ2lbxIDMn5Q4rOVxAIlF5g.mft (raw, json)
Hash identifier: CbOrFeCQ9P+yS5vvmjckNmS0z2xYgWr+qwgDD1lLK6U=
Subject key identifier: 77:1A:09:29:70:F2:9D:82:92:21:70:E1:16:19:52:83:C1:C5:FC:93
Authority key identifier: D6:6D:DE:95:0D:A5:6F:12:03:32:7E:50:E2:B3:95:C4:02:25:17:98
Certificate issuer: /CN=d66dde950da56f1203327e50e2b395c402251798
Certificate serial: 01968391B0A1D6F02D6EF5E58272860C2575
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.mft
Manifest number: 1513
Signing time: Tue 29 Apr 2025 22:01:25 +0000
Manifest this update: Tue 29 Apr 2025 22:01:25 +0000
Manifest next update: Wed 30 Apr 2025 22:01:25 +0000
Files and hashes: 1: 1m3elQ2lbxIDMn5Q4rOVxAIlF5g.crl (hash: Jona4ovcZZnspIXLbcvVug9+u1G6l9M37mkRRTCpSpc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.mft
rsync://rpki.ripe.net/repository/DEFAULT/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 22:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:91:b0:a1:d6:f0:2d:6e:f5:e5:82:72:86:0c:25:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d66dde950da56f1203327e50e2b395c402251798
Validity
Not Before: Apr 29 22:01:25 2025 GMT
Not After : Apr 30 22:01:25 2025 GMT
Subject: CN=771a092970f29d82922170e116195283c1c5fc93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:23:f4:ba:b3:a8:5a:11:cb:30:bd:26:60:a0:
bc:35:5a:78:5e:df:68:1f:ce:7b:ee:14:06:4b:16:
cf:c2:d8:5b:f1:81:d2:00:b1:50:4e:29:14:dc:08:
e5:f2:64:27:81:88:63:b7:41:b9:88:21:04:4e:60:
f9:e1:e1:b6:46:62:5e:8f:f3:5a:a8:15:1e:e7:ab:
f8:c0:55:63:76:73:b4:8b:da:de:88:92:13:a5:da:
d1:49:c9:f4:d8:99:64:c2:18:fb:52:eb:71:ca:0e:
55:1c:48:51:fc:3e:05:a8:53:97:69:ad:5f:23:dc:
cc:0e:8c:6b:bf:09:d1:7e:35:64:25:30:99:09:89:
0a:65:81:98:ea:82:8f:e5:77:70:81:8f:95:29:11:
4f:4b:e6:0f:4a:ee:5b:01:96:44:9b:ce:05:2c:94:
5a:e9:14:86:92:05:1e:e3:b4:93:39:c2:e3:dd:7a:
3b:22:cf:e4:68:a3:4c:3b:c4:45:49:4b:92:d2:4b:
98:66:57:bf:3f:f4:90:72:af:0f:e3:a3:8f:e8:fa:
17:c4:9a:8f:b7:f5:0d:42:d8:5c:cb:17:d3:fa:c0:
69:58:e2:08:09:1d:7f:3a:5d:22:77:83:05:bc:07:
40:21:f4:e7:1c:85:87:69:48:82:d1:88:a5:08:88:
32:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:1A:09:29:70:F2:9D:82:92:21:70:E1:16:19:52:83:C1:C5:FC:93
X509v3 Authority Key Identifier:
keyid:D6:6D:DE:95:0D:A5:6F:12:03:32:7E:50:E2:B3:95:C4:02:25:17:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:98:79:60:ca:cf:4b:76:b5:84:94:9f:f5:c1:9f:81:27:fe:
e9:51:e7:25:ae:40:51:1b:04:2f:1a:f1:41:2c:4d:8a:76:90:
a6:c9:d2:03:6a:f5:e7:f9:10:a3:a9:35:f9:b5:d4:83:cd:e5:
a7:34:7d:9d:e2:b8:55:1e:85:d9:75:93:ab:61:ea:9a:35:5a:
48:f5:3a:a5:df:71:63:0f:01:5d:45:91:15:4e:a7:48:c1:31:
1c:af:1f:71:7a:c3:99:cf:f6:50:17:83:d8:05:6a:bf:b5:97:
8b:31:d3:ed:1a:05:21:55:e2:86:72:2c:db:95:24:99:28:a9:
75:3a:5e:a7:8d:91:f2:4e:41:88:a6:68:3f:de:50:aa:3c:d4:
92:6d:ce:50:d1:b7:ea:d8:e7:33:35:49:a5:9a:f9:bf:e6:91:
ac:02:3b:a0:7d:fb:f8:ef:3d:52:ee:de:1e:2a:ca:f3:46:c5:
24:8b:b0:30:6f:ec:15:5d:b7:4c:69:88:f3:27:9c:e6:10:dd:
ce:28:45:ee:06:0a:ae:ea:34:1e:51:14:c7:72:d0:fc:68:f0:
01:3b:9a:18:df:ce:56:44:f9:45:d4:58:fa:83:e8:26:31:73:
28:b0:b4:c8:52:29:cd:cf:fa:50:ca:49:09:1f:70:8c:79:09:
9c:93:53:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 06:26:57 2025 by rpki-client