Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
File: xIzPWOSy4trdSoSDPAZ87iuXRek.mft (raw, json)
Hash identifier: poX7Ao5zHW4H0SITNU/eGCye67pCtexlekepno7I3Rk=
Subject key identifier: 74:8A:8A:73:A6:9D:78:8A:0D:E1:46:46:D5:D1:43:17:FA:52:42:11
Authority key identifier: C4:8C:CF:58:E4:B2:E2:DA:DD:4A:84:83:3C:06:7C:EE:2B:97:45:E9
Certificate issuer: /CN=c48ccf58e4b2e2dadd4a84833c067cee2b9745e9
Certificate serial: 01967D21258E7F3758CB82E83E687B0B1C26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xIzPWOSy4trdSoSDPAZ87iuXRek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
Manifest number: 0742
Signing time: Mon 28 Apr 2025 16:00:46 +0000
Manifest this update: Mon 28 Apr 2025 16:00:46 +0000
Manifest next update: Tue 29 Apr 2025 16:00:46 +0000
Files and hashes: 1: xIzPWOSy4trdSoSDPAZ87iuXRek.crl (hash: bP+mVdvZ86MWoNvb2UY+EtVxpm59uOhzTdxvwc/XLeE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
rsync://rpki.ripe.net/repository/DEFAULT/xIzPWOSy4trdSoSDPAZ87iuXRek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:21:25:8e:7f:37:58:cb:82:e8:3e:68:7b:0b:1c:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c48ccf58e4b2e2dadd4a84833c067cee2b9745e9
Validity
Not Before: Apr 28 16:00:46 2025 GMT
Not After : Apr 29 16:00:46 2025 GMT
Subject: CN=748a8a73a69d788a0de14646d5d14317fa524211
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:3f:f1:ad:2c:d7:7b:a8:59:14:98:7a:f0:c3:
8e:3b:e4:1e:26:ce:24:25:fa:31:9d:e2:63:90:52:
6f:c6:7e:a2:2b:a0:73:d7:91:01:f2:8b:b5:63:e7:
f4:72:5c:8f:94:15:ac:1a:eb:42:29:d1:83:aa:70:
04:02:4b:7b:65:ac:f3:62:b3:76:ee:b9:06:c3:f5:
c5:ba:bc:4e:9f:e7:18:f9:0f:f9:bf:09:07:67:a7:
60:96:4b:95:3f:6b:22:a2:e8:be:d7:0a:40:62:5c:
1a:b5:b9:c2:fe:ab:10:33:1b:d4:90:23:d1:56:2f:
89:75:7f:ae:e6:13:42:91:dd:17:3a:dd:24:21:27:
e1:97:d3:a9:3d:46:6f:7c:5c:c9:76:9b:59:8e:30:
09:59:b8:b2:29:8e:46:87:0c:46:cf:65:0c:fe:f3:
d7:57:d7:ea:a3:5d:db:4d:55:36:49:c3:59:80:6e:
9c:fc:2e:f4:81:74:c6:23:74:ef:86:a1:78:f1:09:
c1:0a:85:31:ab:ea:30:54:52:c5:db:10:0b:5e:80:
36:a6:83:50:eb:01:c0:5a:b7:42:e4:08:2a:e1:bd:
14:5f:04:ac:ed:9d:23:9a:70:14:f8:ab:8a:cb:40:
b0:ac:f5:2c:5c:ce:3f:2c:48:3e:ab:de:44:99:05:
b1:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:8A:8A:73:A6:9D:78:8A:0D:E1:46:46:D5:D1:43:17:FA:52:42:11
X509v3 Authority Key Identifier:
keyid:C4:8C:CF:58:E4:B2:E2:DA:DD:4A:84:83:3C:06:7C:EE:2B:97:45:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xIzPWOSy4trdSoSDPAZ87iuXRek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:3e:d1:92:f3:36:e3:4a:c8:5d:68:45:d9:be:c0:55:e1:07:
a5:d3:ee:8c:98:3e:fa:18:4c:2a:ff:ee:f0:92:39:47:b6:f4:
cf:4b:83:b9:79:a7:bf:6e:e8:80:17:32:64:38:4d:88:ec:2b:
29:ac:ed:da:d0:26:e6:21:36:74:f7:52:d2:63:80:25:79:c7:
6e:aa:f2:b7:75:6a:d9:d7:90:65:42:0c:8a:5c:d5:66:53:1c:
2f:4c:a8:c0:a3:15:f5:7c:bd:1c:7c:09:23:b0:df:87:9a:14:
69:78:d6:9f:8a:10:51:b3:ea:4f:79:80:aa:59:6b:28:2b:e2:
03:3a:74:61:52:0e:e1:79:5c:74:24:f4:1d:f8:ff:e6:2a:25:
11:6a:92:3f:a4:8d:a1:59:07:ac:e7:a3:ff:ae:6a:0b:da:00:
e7:dc:3a:13:36:87:ea:f5:f5:98:01:01:f1:04:88:f8:03:8f:
9f:47:03:c6:53:2d:0d:1b:e7:5a:d2:f7:33:2e:3f:b1:8b:bf:
72:26:dd:fe:08:1a:a9:60:9e:8e:33:6d:85:26:ee:ca:28:4b:
74:5f:c6:bc:91:53:f8:fa:67:cf:38:b8:e8:52:c2:50:7d:d1:
77:d0:75:82:7c:44:16:cf:aa:1b:d2:6f:48:77:f2:2f:63:62:
c1:d0:05:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 18:46:56 2025 by rpki-client