Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
File: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft (raw, json)
Hash identifier: 5InYFvj7+RTlOkk6vjtkdD6Qwh6qfRj+o6cJw3ds2KA=
Subject key identifier: 3E:DB:45:DB:46:60:9C:48:5F:E1:83:38:7B:95:7E:8A:06:70:2C:F7
Authority key identifier: 53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6
Certificate issuer: /CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6
Certificate serial: 01967C7C202C6B6BD7B7FC2A3D9FD4D7B1F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
Manifest number: 1235
Signing time: Mon 28 Apr 2025 13:00:31 +0000
Manifest this update: Mon 28 Apr 2025 13:00:31 +0000
Manifest next update: Tue 29 Apr 2025 13:00:31 +0000
Files and hashes: 1: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl (hash: ySj/9w6L3R7OqxLR/0F16URqAr+tza/lU86p1xCO0xo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:7c:20:2c:6b:6b:d7:b7:fc:2a:3d:9f:d4:d7:b1:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6
Validity
Not Before: Apr 28 13:00:31 2025 GMT
Not After : Apr 29 13:00:31 2025 GMT
Subject: CN=3edb45db46609c485fe183387b957e8a06702cf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:6e:84:19:a6:40:ec:a5:4b:cb:3b:93:2e:a0:
8f:11:c1:2d:f3:a3:c2:e0:31:82:ab:ca:30:d8:a4:
5e:d6:44:c0:25:8b:76:bc:c6:e3:c4:8a:7c:d5:e0:
8f:a7:4b:fd:ac:b9:c5:08:d4:9d:3f:2e:61:74:12:
5b:4a:e6:ac:5e:0b:09:46:a6:da:02:9c:5a:fc:81:
5a:08:9d:48:73:c5:7a:7c:f0:65:5f:35:bd:97:e9:
77:f9:60:9d:eb:55:54:23:8f:68:ba:d1:0d:d6:0f:
78:16:07:70:38:27:4b:84:f3:44:09:b2:14:0d:c6:
ec:45:39:52:94:f8:b3:9d:43:9a:31:e5:e3:1b:35:
85:5c:65:07:82:97:c6:f5:03:47:a4:04:2c:22:ad:
08:86:83:21:a4:3c:51:ce:83:da:7a:c1:bd:f5:35:
77:2f:65:1f:dd:3b:36:b5:04:5d:25:ce:56:a6:0b:
ab:1a:9c:87:4f:86:46:94:5f:32:ab:32:ea:c2:f1:
5e:b6:9b:02:42:4b:09:58:a9:8d:30:ba:c4:cc:51:
d3:8d:71:be:7f:28:45:c6:55:d0:65:a1:17:15:90:
fd:67:a0:34:b6:15:79:a1:4b:b3:e1:06:f1:2b:af:
29:7e:53:4d:87:7a:df:f3:29:1e:59:ed:21:92:75:
52:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:DB:45:DB:46:60:9C:48:5F:E1:83:38:7B:95:7E:8A:06:70:2C:F7
X509v3 Authority Key Identifier:
keyid:53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:9e:a1:35:3d:b3:05:49:5f:dd:4a:05:22:b4:a3:d8:75:8b:
6d:51:a3:b9:ff:91:31:e9:cb:93:ce:97:d3:83:2c:91:67:c1:
6d:3f:2d:b7:ad:28:c9:7f:ae:fe:48:c9:a3:0d:da:67:54:8e:
58:cd:2b:2f:14:fa:93:10:0b:ee:b5:65:c8:e9:52:a1:10:53:
5d:d8:75:1d:fc:8f:77:12:03:1e:f7:8f:3a:03:fe:89:67:e1:
99:f9:93:f7:0b:c0:71:8c:a9:87:ad:f9:00:ed:2e:86:2d:3c:
9d:d9:6d:30:31:5a:86:8e:65:f1:45:87:ab:56:25:70:6f:0e:
4a:ee:44:83:7e:47:d6:e3:c2:74:50:89:38:55:37:41:7f:dc:
c3:36:55:18:2c:8b:16:41:69:dc:60:86:9e:cd:1f:2d:5e:5f:
38:15:50:3a:32:74:e2:95:7e:6e:34:23:c9:af:6c:1a:0b:b2:
a1:a6:70:9e:10:54:c7:d1:6e:d3:7d:5c:3b:16:16:43:81:72:
62:0c:c3:38:bc:96:e5:18:71:f1:ee:58:66:e9:ba:b1:2f:62:
91:52:48:66:ed:6d:50:7a:ee:b2:1d:bc:27:9c:15:59:f8:6c:
3c:c1:5f:f2:3e:5d:f2:14:ee:1f:7d:89:9c:27:d9:95:90:b9:
1b:23:57:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 14:58:39 2025 by rpki-client