Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.mft
File: 27s70rCfy7vfiVsOOpxaAGRW_aY.mft (raw, json)
Hash identifier: 3Tpt6lIq57Z6gnYV7wxGRHWGIcabChSUdLmHGosvYNY=
Subject key identifier: BC:2E:F3:57:8F:D4:7C:EE:7C:04:72:DE:41:B7:7B:0F:AB:1C:87:08
Authority key identifier: DB:BB:3B:D2:B0:9F:CB:BB:DF:89:5B:0E:3A:9C:5A:00:64:56:FD:A6
Certificate issuer: /CN=dbbb3bd2b09fcbbbdf895b0e3a9c5a006456fda6
Certificate serial: 019684DA7949A2590BC20251A7DF78695E0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/27s70rCfy7vfiVsOOpxaAGRW_aY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.mft
Manifest number: 0681
Signing time: Wed 30 Apr 2025 04:00:32 +0000
Manifest this update: Wed 30 Apr 2025 04:00:32 +0000
Manifest next update: Thu 01 May 2025 04:00:32 +0000
Files and hashes: 1: 27s70rCfy7vfiVsOOpxaAGRW_aY.crl (hash: tjy38Kv3EvQ9fgMFsFc1uPaAGl3dJBNg6sKkhcR/nCw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.mft
rsync://rpki.ripe.net/repository/DEFAULT/27s70rCfy7vfiVsOOpxaAGRW_aY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 04:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:84:da:79:49:a2:59:0b:c2:02:51:a7:df:78:69:5e:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbbb3bd2b09fcbbbdf895b0e3a9c5a006456fda6
Validity
Not Before: Apr 30 04:00:32 2025 GMT
Not After : May 1 04:00:32 2025 GMT
Subject: CN=bc2ef3578fd47cee7c0472de41b77b0fab1c8708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1e:2a:da:c1:bb:a0:dd:bf:50:cc:8e:89:78:
d0:31:8b:2d:3e:a6:a5:a8:0d:12:fc:f6:6b:08:47:
c7:e3:35:c4:32:db:7c:fe:1f:51:0e:e1:7f:27:78:
0e:a4:2d:4a:c7:d8:14:89:3c:79:7f:dc:a4:0d:31:
5d:5a:8d:44:b0:89:55:68:53:07:c6:2e:15:38:36:
55:38:08:04:80:92:7a:df:8c:2c:70:7c:03:5c:84:
98:83:de:1a:c9:39:da:f6:89:82:4d:a0:e8:db:70:
41:76:44:86:d7:c4:3a:1f:29:2c:a4:aa:73:b2:95:
c4:ef:0d:88:26:56:b0:bd:22:36:77:77:ce:a6:50:
e6:f1:1c:97:d9:0a:3d:cf:2a:16:83:bb:6d:61:b9:
d5:f3:71:50:44:0c:25:4f:b7:27:1d:ad:0d:59:c0:
d6:5b:88:9d:dc:df:b8:c2:11:6b:9b:e4:e5:a4:33:
cb:d8:ce:65:3a:49:09:e5:73:3a:01:99:7d:fd:97:
7b:92:46:d2:68:b6:a5:a2:d6:a7:55:fa:ee:de:6c:
59:21:7f:23:b4:98:c6:be:f2:f1:8c:2f:01:0f:13:
58:97:28:c2:30:68:a4:de:c9:0e:57:9f:3e:c2:70:
59:0b:fc:ca:21:d0:4d:57:a7:a8:30:2a:5a:a6:af:
5b:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:2E:F3:57:8F:D4:7C:EE:7C:04:72:DE:41:B7:7B:0F:AB:1C:87:08
X509v3 Authority Key Identifier:
keyid:DB:BB:3B:D2:B0:9F:CB:BB:DF:89:5B:0E:3A:9C:5A:00:64:56:FD:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/27s70rCfy7vfiVsOOpxaAGRW_aY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:9f:68:7f:b5:05:a0:e3:a2:bb:e9:98:f2:74:33:16:91:42:
a4:38:d1:52:8e:35:f5:c3:3f:2b:79:64:0b:6c:2f:bb:a1:b7:
ea:ee:e7:16:ce:21:35:a8:f6:54:95:94:d2:65:b8:73:e8:03:
06:d9:f9:74:4a:2b:cc:91:70:d6:ea:b4:be:f5:78:c2:fd:ef:
e7:bf:1b:25:58:13:82:57:f7:3a:0e:48:5b:8a:4d:ed:10:e8:
77:97:67:4e:a7:76:6e:a4:47:6b:aa:fb:7b:25:d0:eb:6f:2e:
2a:61:44:2f:0c:75:ed:41:92:54:e4:93:10:f9:1d:71:83:8c:
3b:0c:8d:40:f0:ea:0f:d1:17:2a:6d:5d:54:cb:23:f8:13:bb:
84:d7:3d:3b:e1:09:aa:3c:3d:be:a5:0f:36:dc:07:c7:7a:4a:
68:a7:07:ea:5b:00:04:1e:d1:95:b3:b5:82:45:86:c8:a4:50:
4d:7c:6b:89:ff:71:7b:26:ee:5c:4c:40:4e:20:32:37:e4:53:
aa:af:6e:be:08:06:f8:8f:33:a3:29:ea:5d:72:10:b5:6f:f7:
d4:15:08:4e:42:3f:5b:c3:64:e3:a7:c4:4e:b2:9f:46:59:4b:
e8:8f:e2:13:98:df:f3:ad:c4:5f:7b:65:09:67:23:ab:c6:b3:
78:e9:18:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 12:57:56 2025 by rpki-client