Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft
File: bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft (raw, json)
Hash identifier: X5eM8li967++kKCsT5T96mP2nlXeSNREdSu/rWAstSc=
Subject key identifier: C1:67:6D:D1:19:E1:41:44:30:03:53:65:A8:FD:22:91:5C:01:51:F2
Authority key identifier: 6D:DA:05:6C:3B:54:E5:00:CA:19:C8:F5:C4:77:0A:C3:F4:50:E4:BD
Certificate issuer: /CN=6dda056c3b54e500ca19c8f5c4770ac3f450e4bd
Certificate serial: 0196767A8C1DAF06451E760F02A66EC0B85F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft
Manifest number: 150B
Signing time: Sun 27 Apr 2025 09:01:04 +0000
Manifest this update: Sun 27 Apr 2025 09:01:04 +0000
Manifest next update: Mon 28 Apr 2025 09:01:04 +0000
Files and hashes: 1: bdoFbDtU5QDKGcj1xHcKw_RQ5L0.crl (hash: 8RTHcHck2ReV4LZOhnGTXgZniJCJka+nRfiegWGshXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:7a:8c:1d:af:06:45:1e:76:0f:02:a6:6e:c0:b8:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dda056c3b54e500ca19c8f5c4770ac3f450e4bd
Validity
Not Before: Apr 27 09:01:04 2025 GMT
Not After : Apr 28 09:01:04 2025 GMT
Subject: CN=c1676dd119e1414430035365a8fd22915c0151f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e5:e6:1a:6d:b2:b3:4c:a2:47:44:70:70:d6:
db:ae:d4:4f:85:45:42:e4:ed:42:f6:fe:f4:a5:78:
6f:e7:bd:7c:92:59:d9:e6:9d:8d:ae:b6:0a:96:5f:
7c:4d:12:58:fa:bd:7c:83:93:08:af:5e:e3:d8:ae:
64:0e:58:d5:66:34:d6:de:32:a9:ca:76:0f:38:60:
86:bc:c2:8d:54:31:a1:5b:96:65:71:a7:eb:e9:db:
3c:4e:e6:0e:b0:5e:1f:cd:b2:c8:b8:f1:7d:0a:66:
5f:fd:39:75:b2:dd:80:25:50:38:36:75:71:e5:aa:
99:7a:43:d9:28:2e:31:cb:d0:51:cb:2c:5f:bc:46:
9a:95:70:6f:9d:5a:1b:c4:33:5a:64:fe:e6:5f:3d:
94:94:8e:60:c0:9e:60:37:86:2d:20:67:77:29:d6:
3f:e4:9e:fc:52:39:f2:be:f2:e8:18:c6:65:6d:78:
17:6f:c0:89:26:c5:36:39:2d:3c:23:3e:4a:1e:8f:
0d:80:7a:25:71:1b:45:96:fc:29:a5:56:d5:fe:41:
cb:fe:28:0a:37:ec:1f:b2:bc:05:4d:e8:d2:7e:50:
b7:dc:af:a4:0a:a3:5a:7b:2e:4d:f4:26:c9:25:55:
9a:19:67:5f:81:b7:47:2d:ca:92:c5:86:5e:8d:24:
67:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:67:6D:D1:19:E1:41:44:30:03:53:65:A8:FD:22:91:5C:01:51:F2
X509v3 Authority Key Identifier:
keyid:6D:DA:05:6C:3B:54:E5:00:CA:19:C8:F5:C4:77:0A:C3:F4:50:E4:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/db8ed5-37db-417e-9157-a3c3f9aa8608/1/bdoFbDtU5QDKGcj1xHcKw_RQ5L0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:e4:18:3f:86:93:28:70:08:a7:41:4c:bd:bc:8c:39:c3:32:
95:e9:b2:2c:f7:d2:24:dd:27:31:a5:c8:4a:76:a0:c9:62:9c:
bb:1a:10:5a:33:81:4a:fb:3c:fb:42:e0:e2:33:88:e1:0c:ef:
a9:0f:09:64:b6:37:95:c2:0e:be:d0:06:28:f7:08:c6:25:09:
1e:bb:39:f3:e2:ed:08:88:10:3f:27:61:fc:0e:97:db:d3:78:
a3:0e:00:26:08:ca:1e:62:4f:a8:23:9a:fa:06:c2:bd:43:8f:
1c:84:98:59:0b:05:50:28:58:5a:2f:79:b4:de:2e:23:d2:83:
3b:03:50:2b:7c:64:df:cb:a1:1d:82:17:51:7c:b1:ae:3e:e1:
51:a0:d8:ca:15:5d:66:14:02:87:0f:96:22:82:c2:e4:9d:a7:
e6:ec:64:1f:a2:54:59:17:44:cf:f7:21:3d:4e:13:a0:02:85:
db:c0:09:2e:b1:0c:39:38:f1:cc:e7:af:74:e6:70:1b:88:ec:
f2:48:4e:77:2a:3f:59:fe:39:c4:d7:fb:90:47:af:35:1d:f0:
06:34:80:0d:40:97:a8:39:0d:35:6d:b1:28:da:d0:c3:93:90:
68:15:72:c6:a1:e2:af:52:dc:b9:35:28:41:0e:45:86:4b:bb:
05:c9:47:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 17:37:11 2025 by rpki-client