Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/ccf63f-de5b-48ca-af15-dc0fe9d9e099/1/4yaBz9l8FkTv91Hg8eCqBTwFwA8.mft
File: 4yaBz9l8FkTv91Hg8eCqBTwFwA8.mft (raw, json)
Hash identifier: LWIwkkeqTc0yZflL6F1778wE3sU6x/8YA4E9DdJV/VE=
Subject key identifier: 32:7A:88:BF:E6:0C:EF:F5:F1:2C:A3:32:35:59:4C:15:75:D3:81:67
Authority key identifier: E3:26:81:CF:D9:7C:16:44:EF:F7:51:E0:F1:E0:AA:05:3C:05:C0:0F
Certificate issuer: /CN=e32681cfd97c1644eff751e0f1e0aa053c05c00f
Certificate serial: 0196816BC811537C8CD64B14470605B4ED15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4yaBz9l8FkTv91Hg8eCqBTwFwA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/ccf63f-de5b-48ca-af15-dc0fe9d9e099/1/4yaBz9l8FkTv91Hg8eCqBTwFwA8.mft
Manifest number: 0276
Signing time: Tue 29 Apr 2025 12:00:46 +0000
Manifest this update: Tue 29 Apr 2025 12:00:46 +0000
Manifest next update: Wed 30 Apr 2025 12:00:46 +0000
Files and hashes: 1: 4yaBz9l8FkTv91Hg8eCqBTwFwA8.crl (hash: pQfQml91fOVuyDbhMFh/F6gNzLtkut2lb78Jdxd9Pco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/ccf63f-de5b-48ca-af15-dc0fe9d9e099/1/4yaBz9l8FkTv91Hg8eCqBTwFwA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/ccf63f-de5b-48ca-af15-dc0fe9d9e099/1/4yaBz9l8FkTv91Hg8eCqBTwFwA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/4yaBz9l8FkTv91Hg8eCqBTwFwA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 12:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:6b:c8:11:53:7c:8c:d6:4b:14:47:06:05:b4:ed:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e32681cfd97c1644eff751e0f1e0aa053c05c00f
Validity
Not Before: Apr 29 12:00:46 2025 GMT
Not After : Apr 30 12:00:46 2025 GMT
Subject: CN=327a88bfe60ceff5f12ca33235594c1575d38167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:22:ec:bc:df:52:5b:ba:fc:6b:cc:73:09:ad:
ad:52:e1:e6:47:87:02:f7:d7:16:00:f8:29:8f:54:
38:22:c4:eb:d6:4f:7e:ec:3d:eb:d5:2e:92:26:18:
ba:26:65:61:e7:81:7c:4c:d3:6e:a4:97:d1:33:7c:
07:0c:1c:15:f4:95:06:54:f7:84:f7:5a:e2:ad:81:
c1:4e:3f:98:9b:ab:6f:e8:61:ea:c4:f7:d7:4e:6c:
66:31:c3:53:2a:2f:1f:82:c7:cc:4d:24:17:17:90:
25:63:ea:3a:7a:93:9b:d8:75:76:37:0d:88:83:e1:
38:7c:af:29:12:31:5f:5b:fa:7f:a5:ab:59:7c:d8:
b8:87:b2:86:32:92:ef:81:94:d2:9c:f8:bf:a8:af:
e5:1d:93:4c:76:b2:bd:40:28:d2:c7:87:9a:97:dc:
9c:d6:4a:16:83:de:f9:7d:53:47:c6:89:e3:bf:3f:
09:3e:21:47:c9:b6:75:83:f6:6b:7a:35:c6:f8:22:
7e:e5:fe:a3:25:19:de:95:ac:86:a7:32:c9:29:0f:
c0:b0:c6:75:fd:1d:ed:95:c5:ad:ba:eb:75:3a:77:
07:a8:57:8a:46:df:a0:5f:62:14:d1:52:b0:23:8a:
60:35:30:a6:73:b1:00:f0:df:ef:34:c8:81:f2:c8:
6d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:7A:88:BF:E6:0C:EF:F5:F1:2C:A3:32:35:59:4C:15:75:D3:81:67
X509v3 Authority Key Identifier:
keyid:E3:26:81:CF:D9:7C:16:44:EF:F7:51:E0:F1:E0:AA:05:3C:05:C0:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4yaBz9l8FkTv91Hg8eCqBTwFwA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/ccf63f-de5b-48ca-af15-dc0fe9d9e099/1/4yaBz9l8FkTv91Hg8eCqBTwFwA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/ccf63f-de5b-48ca-af15-dc0fe9d9e099/1/4yaBz9l8FkTv91Hg8eCqBTwFwA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:84:6c:b9:44:5a:00:3f:3c:a1:d3:89:5d:96:75:d4:8a:d5:
b1:7e:3b:4c:11:48:4d:61:e6:b3:62:cd:c9:7d:4a:67:a7:6e:
2e:02:d8:85:a8:1b:f1:7d:2a:6f:22:2a:fb:52:68:bc:05:ca:
24:3a:3a:6b:4b:9c:ff:9f:be:c3:d9:58:c2:7a:1f:06:19:08:
f3:e3:16:64:1e:66:d6:ba:e4:7e:51:dc:72:37:03:25:c1:de:
a7:24:f1:56:93:b1:6c:fd:9b:78:d1:d6:08:30:de:19:33:92:
07:b5:85:ba:8e:74:27:66:2e:c7:f1:58:13:e1:89:0e:f4:39:
2f:85:92:73:18:05:23:1c:d8:de:13:db:25:72:3b:df:fe:89:
24:ec:aa:e4:a7:d5:8b:62:86:ee:fa:ea:48:44:4d:35:79:2d:
02:93:10:c9:50:e1:5f:15:31:59:ae:c0:15:40:ac:9a:45:30:
bf:9b:5e:48:49:53:42:3f:5c:ba:2f:f4:12:17:21:c0:2d:4d:
8e:90:1a:9a:06:d2:bd:fb:8e:3c:09:f4:88:7d:ac:f6:2d:d7:
5e:f3:2d:79:85:45:aa:13:77:9e:08:4d:fb:12:8a:52:31:71:
3c:59:b4:40:aa:cd:82:aa:9f:df:4c:a3:23:f8:1f:1e:13:41:
a6:45:96:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 19:22:29 2025 by rpki-client