Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.mft
File: cc2ljxUk2CM2224M8qKf-vLaifg.mft (raw, json)
Hash identifier: pTKgrcXDwWefkg0wTNbhnOn8V5ocmibvO/HOcWlCqPE=
Subject key identifier: 71:A8:D2:5A:3B:0E:55:02:CB:17:C0:B0:BA:9E:03:77:D3:9D:0E:7E
Authority key identifier: 71:CD:A5:8F:15:24:D8:23:36:DB:6E:0C:F2:A2:9F:FA:F2:DA:89:F8
Certificate issuer: /CN=71cda58f1524d82336db6e0cf2a29ffaf2da89f8
Certificate serial: 01968B4A25F7D35937E373B5A69BC38392F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cc2ljxUk2CM2224M8qKf-vLaifg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.mft
Manifest number: 0D35
Signing time: Thu 01 May 2025 10:00:14 +0000
Manifest this update: Thu 01 May 2025 10:00:14 +0000
Manifest next update: Fri 02 May 2025 10:00:14 +0000
Files and hashes: 1: cc2ljxUk2CM2224M8qKf-vLaifg.crl (hash: 2sfcfbtqfVePmKVdBV83Q3Yz3+YJkIonz+uaO98d028=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.mft
rsync://rpki.ripe.net/repository/DEFAULT/cc2ljxUk2CM2224M8qKf-vLaifg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8b:4a:25:f7:d3:59:37:e3:73:b5:a6:9b:c3:83:92:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71cda58f1524d82336db6e0cf2a29ffaf2da89f8
Validity
Not Before: May 1 10:00:14 2025 GMT
Not After : May 2 10:00:14 2025 GMT
Subject: CN=71a8d25a3b0e5502cb17c0b0ba9e0377d39d0e7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a8:73:0a:e6:ff:6c:c3:3b:69:d9:0a:22:5b:
05:e0:2d:18:d9:aa:b2:71:60:01:1e:8d:20:5c:88:
5d:36:21:2d:d5:1d:36:7f:09:48:a1:ec:e7:60:fa:
a2:8d:2c:d2:7f:24:5e:94:95:fb:b0:57:08:4b:bf:
50:2d:fe:d5:7e:06:1c:96:40:d8:5e:3a:6f:31:7d:
71:b7:b2:c7:02:8e:de:09:d2:1d:7c:55:dc:30:88:
f9:31:6e:d9:05:65:95:c5:ac:a1:a7:f5:fb:a7:d8:
b4:d6:8a:e5:01:c0:2a:f5:8b:08:fa:fb:31:57:98:
ff:46:1a:f6:e0:f9:0c:b0:90:af:e9:34:97:2a:05:
4a:33:46:44:ae:93:39:53:45:15:bb:19:03:b2:95:
da:9b:52:f0:bf:71:df:23:53:ab:e5:61:c6:b2:0f:
03:cb:9d:d1:95:60:0a:cc:f4:04:48:62:fa:c1:cf:
c5:17:f6:e9:00:c5:c4:0d:5e:37:fa:3f:f3:58:92:
0b:09:75:fe:e9:ef:1e:1a:22:db:f3:68:7e:53:72:
e2:d2:2b:9f:00:4d:2e:00:f3:e9:b0:1a:33:be:f3:
16:6f:b1:85:d4:8d:5f:d8:65:33:a9:3a:19:4c:e5:
fa:16:72:d8:cc:c8:ed:55:4c:7f:50:aa:89:2a:ff:
83:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:A8:D2:5A:3B:0E:55:02:CB:17:C0:B0:BA:9E:03:77:D3:9D:0E:7E
X509v3 Authority Key Identifier:
keyid:71:CD:A5:8F:15:24:D8:23:36:DB:6E:0C:F2:A2:9F:FA:F2:DA:89:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc2ljxUk2CM2224M8qKf-vLaifg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a35540-aa58-4a3c-ab45-bc2d17fe8beb/1/cc2ljxUk2CM2224M8qKf-vLaifg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:eb:72:e2:d1:d2:f2:d2:21:9b:dd:48:68:f0:37:42:55:8c:
7a:78:95:50:1a:8f:15:ec:dd:34:44:d0:69:a4:bb:81:aa:88:
3e:0d:d3:a0:64:77:86:55:fc:f8:22:57:88:90:ff:e2:3e:76:
0e:10:8a:f3:be:9e:e6:d7:52:51:80:db:55:e8:1b:ff:52:9b:
67:ab:c3:ea:63:2d:05:6d:8b:ed:ec:e2:75:fc:d2:e3:f3:2b:
ee:ff:de:74:5a:cb:3f:73:05:8f:1c:d1:3c:d5:63:72:22:f3:
b1:4c:bc:99:8b:3e:e2:bc:6c:3d:ca:8a:8f:e5:4d:46:fd:25:
39:5d:91:65:47:72:da:f8:98:7d:d0:a9:73:18:1b:03:6b:a8:
c2:8e:b5:62:19:50:fa:f5:bd:23:fc:aa:6a:fd:0d:c6:96:83:
4f:2a:97:8c:7a:e4:60:cc:dd:ff:ca:d8:9f:92:96:00:7e:a3:
16:79:fe:4e:fe:e3:68:29:c7:d1:6c:b0:27:42:1f:65:93:4b:
24:58:38:40:3b:d2:c8:bb:c5:fc:56:d3:98:92:18:67:eb:67:
16:b1:e4:53:93:52:24:8e:7e:76:7c:61:56:c1:03:bd:7a:5b:
8c:6e:58:1b:10:15:c8:77:13:07:b7:4e:f0:88:13:6d:52:37:
1e:fc:c6:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 16:53:56 2025 by rpki-client