Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
File: 18YKVOA8n4Fcwzr9RdPE25r3bxY.mft (raw, json)
Hash identifier: gxrjiLsLQQ5BqsZTGAzSqhr1qHBvQDc1aCUJQY/ERyo=
Subject key identifier: 38:B6:9B:65:CE:6F:95:82:05:7D:AD:34:D4:40:6F:4F:4B:9A:09:53
Authority key identifier: D7:C6:0A:54:E0:3C:9F:81:5C:C3:3A:FD:45:D3:C4:DB:9A:F7:6F:16
Certificate issuer: /CN=d7c60a54e03c9f815cc33afd45d3c4db9af76f16
Certificate serial: 019674C2729319CEE256EDC0ABB4D509B0B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/18YKVOA8n4Fcwzr9RdPE25r3bxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
Manifest number: 0C2C
Signing time: Sun 27 Apr 2025 01:00:22 +0000
Manifest this update: Sun 27 Apr 2025 01:00:22 +0000
Manifest next update: Mon 28 Apr 2025 01:00:22 +0000
Files and hashes: 1: 18YKVOA8n4Fcwzr9RdPE25r3bxY.crl (hash: PwU8965878ODnzpVYEzHcz/t550wbCFbAeheihFp4pw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/18YKVOA8n4Fcwzr9RdPE25r3bxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 01:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:c2:72:93:19:ce:e2:56:ed:c0:ab:b4:d5:09:b0:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7c60a54e03c9f815cc33afd45d3c4db9af76f16
Validity
Not Before: Apr 27 01:00:22 2025 GMT
Not After : Apr 28 01:00:22 2025 GMT
Subject: CN=38b69b65ce6f9582057dad34d4406f4f4b9a0953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d4:a3:08:ff:8a:4c:cc:fb:5c:f8:37:1b:71:
12:00:f2:f7:7c:64:1a:56:88:00:95:57:6f:76:dd:
91:1a:ae:24:bf:f9:e3:80:d6:55:4a:5a:0f:f4:24:
ea:ae:8c:f4:95:36:a8:e7:67:30:7d:97:5e:e6:c2:
79:cd:9f:87:23:74:7a:e9:f0:05:f7:d6:0f:7e:ea:
cc:84:fa:9c:98:9e:c4:b2:35:da:94:61:7a:21:9f:
c4:36:67:5a:45:25:e5:73:64:74:45:3d:b8:a7:99:
84:e1:d8:7f:19:3f:91:63:c4:5b:05:8c:62:76:3a:
9c:12:b7:e0:04:e7:3c:d5:a1:3a:e3:4a:88:53:2e:
81:77:28:2f:8a:be:7b:5c:eb:fc:ba:22:a4:91:f0:
00:7c:28:76:9a:dd:d7:85:ea:5a:01:d4:2b:1a:dd:
73:9e:a2:73:bd:14:2e:6e:3d:b5:eb:38:e2:d9:e0:
f5:5f:f5:8f:b7:50:7e:1c:52:46:da:30:a7:b8:65:
f1:fe:e1:e4:09:12:ff:0f:2d:27:d2:9f:e6:28:95:
17:01:44:69:16:28:08:89:5c:a0:74:f8:32:bc:90:
5f:8a:b4:89:69:e5:ce:93:3c:26:0b:28:2e:ca:e2:
3e:2e:3d:be:2e:6c:5e:27:6f:a8:a4:32:39:37:8e:
b4:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:B6:9B:65:CE:6F:95:82:05:7D:AD:34:D4:40:6F:4F:4B:9A:09:53
X509v3 Authority Key Identifier:
keyid:D7:C6:0A:54:E0:3C:9F:81:5C:C3:3A:FD:45:D3:C4:DB:9A:F7:6F:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/18YKVOA8n4Fcwzr9RdPE25r3bxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/89090c-53b1-41be-a338-3831f3ed1ca8/1/18YKVOA8n4Fcwzr9RdPE25r3bxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:e2:c2:19:01:98:a1:21:37:7d:c4:f7:3e:f9:a4:12:91:97:
0a:06:0e:c1:aa:7f:14:9f:0d:67:bf:bc:6c:90:01:54:68:cc:
aa:6e:29:de:df:5a:0d:b3:05:0a:cd:e2:73:73:d2:57:77:b3:
3d:8b:6a:f5:1d:b2:e6:35:31:e7:e8:24:2e:45:8c:44:a7:ae:
f0:7e:05:43:db:aa:2d:8d:5d:f7:e4:55:83:cf:3c:b5:60:4f:
5c:70:b1:cf:61:fc:19:05:7d:45:31:a8:c7:88:4d:ef:1b:6a:
a4:17:51:3a:d4:16:f6:03:df:47:f2:6c:53:5f:d2:c1:b8:21:
a1:1a:f6:d6:73:40:80:cb:4e:e2:2a:69:26:23:ec:96:9e:eb:
03:02:e6:a5:25:de:58:be:46:f0:86:e7:de:54:6e:b8:ec:21:
41:51:f9:a8:30:35:85:73:5a:88:26:ff:c3:ae:60:c5:cc:2e:
04:71:e1:74:9a:af:aa:38:ed:29:b6:0f:33:ca:3e:9a:20:2a:
11:0f:ef:48:98:cd:8e:62:6f:79:9b:24:d6:04:40:ce:0b:97:
3e:05:6e:d5:dd:c7:3a:71:af:fc:4d:1b:47:c1:b8:72:f0:58:
47:23:56:ae:26:b3:94:46:5c:85:f5:27:11:6c:8c:3a:75:68:
c1:0f:1d:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:07:57 2025 by rpki-client