Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.mft
File: h3OqvdPia0S3mDfBRwq44XQV6o4.mft (raw, json)
Hash identifier: u9VNVrbbweaLkiW7oVeOH6kEgwse1+rbet/LdI3KiS8=
Subject key identifier: 77:C3:C4:63:88:04:F5:9D:1D:F9:5A:7A:D9:8F:DE:C7:30:E2:D7:B7
Authority key identifier: 87:73:AA:BD:D3:E2:6B:44:B7:98:37:C1:47:0A:B8:E1:74:15:EA:8E
Certificate issuer: /CN=8773aabdd3e26b44b79837c1470ab8e17415ea8e
Certificate serial: 0196767A3380B914FC3A27249F5C51EC3F12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3OqvdPia0S3mDfBRwq44XQV6o4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.mft
Manifest number: FB
Signing time: Sun 27 Apr 2025 09:00:42 +0000
Manifest this update: Sun 27 Apr 2025 09:00:42 +0000
Manifest next update: Mon 28 Apr 2025 09:00:42 +0000
Files and hashes: 1: h3OqvdPia0S3mDfBRwq44XQV6o4.crl (hash: LjGhN6kFYPBljOD5Phl4yecB3ofXiA/hQkiNYQdqdws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3OqvdPia0S3mDfBRwq44XQV6o4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:7a:33:80:b9:14:fc:3a:27:24:9f:5c:51:ec:3f:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8773aabdd3e26b44b79837c1470ab8e17415ea8e
Validity
Not Before: Apr 27 09:00:42 2025 GMT
Not After : Apr 28 09:00:42 2025 GMT
Subject: CN=77c3c4638804f59d1df95a7ad98fdec730e2d7b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:53:d2:fa:f6:3d:5d:a2:b9:7e:14:19:c2:be:
aa:6d:99:93:e0:40:ad:86:3f:06:75:38:e6:79:20:
73:a1:82:d1:c9:f5:e9:64:ac:37:85:f2:6f:23:ec:
6b:3b:62:c6:3c:24:53:6e:50:7b:f2:65:33:27:9a:
7e:9c:7e:dc:68:64:47:2e:cc:1a:be:7b:59:9c:f7:
d9:df:3a:4f:87:80:fd:78:98:88:42:af:12:fb:08:
50:89:91:99:92:09:85:43:5a:da:33:08:cb:df:0e:
3e:8a:04:f7:1b:4e:d3:5e:2e:4e:bf:eb:0c:37:f4:
bf:d6:4b:62:00:83:ee:ae:59:bb:05:3c:c7:3e:25:
e7:9a:05:17:a7:69:32:33:5a:5d:b8:7f:55:8c:6e:
35:10:5d:80:20:7d:46:c7:df:db:8b:dc:e1:24:74:
15:81:d0:1f:63:c8:1f:8c:65:d0:26:c4:fe:a6:28:
7d:91:b2:c6:98:a0:c4:9b:8a:4c:f7:af:9a:c3:b1:
bb:cb:ee:f8:0b:eb:cf:63:bf:86:10:43:c7:7f:d7:
3d:24:7a:fe:e6:e5:4a:16:88:05:b1:a6:8d:6b:8d:
93:61:db:78:02:6c:7e:1b:a2:fb:ca:d1:c3:d8:31:
f1:01:c8:49:d1:5b:97:5a:72:6b:5e:d1:e4:ee:98:
77:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:C3:C4:63:88:04:F5:9D:1D:F9:5A:7A:D9:8F:DE:C7:30:E2:D7:B7
X509v3 Authority Key Identifier:
keyid:87:73:AA:BD:D3:E2:6B:44:B7:98:37:C1:47:0A:B8:E1:74:15:EA:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3OqvdPia0S3mDfBRwq44XQV6o4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/e4b3f6-040b-406e-b438-6ab8a879a17b/1/h3OqvdPia0S3mDfBRwq44XQV6o4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:a3:ac:6f:e4:96:35:f0:8e:b6:17:6a:b4:fd:6b:d0:3b:91:
67:5e:80:17:dd:eb:81:48:8d:db:71:09:fb:fd:8d:6c:70:d5:
c6:0e:6c:f6:c0:ea:76:d2:e3:8f:47:60:1d:32:86:29:dd:02:
f3:0a:d4:2e:b3:13:94:2a:80:0a:20:90:53:c6:42:50:db:81:
3c:20:72:d3:d1:9a:d8:86:0e:e9:a0:29:89:b6:90:60:82:a0:
85:37:75:ae:53:cb:1c:ea:d6:f6:f6:e8:ab:27:57:51:8e:b6:
1e:5e:db:ae:7a:87:cc:4d:62:7c:ea:9d:56:e3:10:fd:83:0e:
11:1b:95:7f:8f:c8:b0:ba:f9:ef:98:51:95:ec:d0:66:36:0d:
b7:15:08:89:f5:29:8a:e2:d6:b5:58:25:a2:c0:fc:0a:41:e2:
e2:88:ea:d7:cc:66:51:55:14:fd:5a:1c:de:3d:89:0a:cc:b0:
1c:7f:17:c8:9f:b2:60:61:5e:c8:4c:db:56:68:8f:f3:d7:57:
3e:3e:4a:4c:fd:9f:3b:a9:64:7c:b7:ea:3b:e0:f4:de:b6:f2:
47:47:70:e2:cd:2a:f3:20:93:56:e1:fe:78:c2:6a:a3:cd:23:
ff:a1:f0:af:21:1f:20:12:37:e8:d7:8b:49:7a:91:b7:bc:f6:
fb:0d:ae:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:40:14 2025 by rpki-client