Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft
File: tRm7YH6Ot267nMsgIsxkbDzOC2A.mft (raw, json)
Hash identifier: XOPnWYfjs8vAUxYBnNUhuk35tKJHgYLz4tf75rQuQmI=
Subject key identifier: 68:6A:6A:4E:1E:70:AB:74:5E:4F:C6:DF:E1:7F:D2:F2:9B:85:5C:27
Authority key identifier: B5:19:BB:60:7E:8E:B7:6E:BB:9C:CB:20:22:CC:64:6C:3C:CE:0B:60
Certificate issuer: /CN=b519bb607e8eb76ebb9ccb2022cc646c3cce0b60
Certificate serial: 01967DC5C7839B12D7967B8509FB4CCF25E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tRm7YH6Ot267nMsgIsxkbDzOC2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft
Manifest number: 150F
Signing time: Mon 28 Apr 2025 19:00:35 +0000
Manifest this update: Mon 28 Apr 2025 19:00:35 +0000
Manifest next update: Tue 29 Apr 2025 19:00:35 +0000
Files and hashes: 1: tRm7YH6Ot267nMsgIsxkbDzOC2A.crl (hash: lapc38FO0lqXoeE4dFHBvCOJKkH6d4NzepAOyWFP8+o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft
rsync://rpki.ripe.net/repository/DEFAULT/tRm7YH6Ot267nMsgIsxkbDzOC2A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:c5:c7:83:9b:12:d7:96:7b:85:09:fb:4c:cf:25:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b519bb607e8eb76ebb9ccb2022cc646c3cce0b60
Validity
Not Before: Apr 28 19:00:35 2025 GMT
Not After : Apr 29 19:00:35 2025 GMT
Subject: CN=686a6a4e1e70ab745e4fc6dfe17fd2f29b855c27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:27:64:90:97:ee:75:e3:00:f2:4d:bd:e4:3e:
64:2f:0a:da:e4:b5:d9:0c:b5:4c:03:e5:e1:b6:e4:
63:06:11:86:80:e7:e4:2a:fa:35:a2:2c:f9:d4:97:
2b:52:ca:1e:09:75:a5:14:3a:fe:e7:7f:43:44:d9:
e2:96:a6:59:d8:5d:c2:f0:57:30:cc:4b:ac:0d:8a:
06:f1:3c:55:ec:46:d4:ed:56:ad:b8:ab:74:27:b4:
95:a0:73:10:97:a8:f4:0b:ea:91:f0:9f:90:01:da:
52:a2:f8:57:65:8f:82:79:ac:e2:4e:d4:12:c4:1e:
ac:0f:b2:86:ba:0f:bb:33:fc:c0:06:ac:86:ff:4a:
97:f1:03:2a:cc:9c:1a:45:19:f1:0a:53:f4:f0:3b:
98:9f:26:5e:3b:24:8c:ff:50:cf:e6:cc:26:19:f4:
1c:49:48:27:c3:5d:56:18:3d:23:a6:10:a8:e6:2b:
10:c4:4a:ba:e7:5f:60:f7:71:2f:fa:c1:d5:72:0e:
4b:50:7b:c1:e6:e0:02:97:42:52:8a:3b:33:0b:6f:
69:dc:34:77:f0:a8:c1:b2:d6:88:c8:a3:b4:ff:1b:
fc:bd:ab:b9:ad:5a:b3:ff:48:6d:b6:0b:15:3b:8f:
e3:b9:58:e3:07:7c:b1:c8:1e:49:95:44:85:7e:31:
a5:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:6A:6A:4E:1E:70:AB:74:5E:4F:C6:DF:E1:7F:D2:F2:9B:85:5C:27
X509v3 Authority Key Identifier:
keyid:B5:19:BB:60:7E:8E:B7:6E:BB:9C:CB:20:22:CC:64:6C:3C:CE:0B:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRm7YH6Ot267nMsgIsxkbDzOC2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:2d:e1:f8:d4:eb:e3:d2:f6:bd:00:27:46:ad:92:c2:40:81:
1c:79:54:f2:ee:b2:67:b5:de:df:82:73:41:ea:63:c8:d9:49:
63:7c:87:be:23:a0:ae:83:49:64:fa:f4:c7:1d:c9:60:65:37:
71:50:8c:7e:69:41:38:d6:d0:9a:d2:f1:72:98:d7:f9:ca:ae:
15:6c:d1:c0:ff:1c:24:70:3d:c9:03:2a:08:fa:aa:0f:81:c8:
97:c8:4f:3e:b1:96:aa:18:49:2c:34:38:91:fa:2b:0f:20:e0:
34:83:cd:d9:c3:e8:82:9a:4e:c8:6c:bb:1e:a3:d7:46:80:3e:
ab:99:af:62:7c:83:12:a4:fa:58:6c:70:d9:29:af:2e:fb:80:
ed:96:af:de:c7:f3:a5:34:1a:28:7f:4b:43:9e:8f:d2:77:27:
5c:c2:57:4a:a1:32:ae:45:e4:d2:c3:5e:d5:41:b6:20:94:1c:
a8:6b:4c:24:a2:32:ab:6d:a8:1c:aa:18:e6:79:54:f2:3b:45:
64:50:e8:35:2a:44:1a:e7:65:97:e1:33:eb:4e:3b:b5:ab:bf:
e8:5c:cd:33:c0:c2:ad:b0:11:db:e9:c3:2b:25:d7:23:e4:45:
50:77:2b:58:a3:e5:58:4d:04:7b:f0:a6:e5:dc:23:e6:e7:d0:
8c:22:e6:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 21:30:13 2025 by rpki-client