Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft
File: 2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft (raw, json)
Hash identifier: UbO6T8BxJx2EdN1Con6H6wyuxXaZgfNRSlRhzbxEYps=
Subject key identifier: 1B:3E:B2:6B:DE:E5:5B:37:5C:66:29:02:FB:01:26:83:9C:23:8D:E6
Authority key identifier: DB:FE:F0:D0:E3:F3:A1:13:43:BB:91:7F:CB:79:33:F4:E9:DA:E4:AD
Certificate issuer: /CN=dbfef0d0e3f3a11343bb917fcb7933f4e9dae4ad
Certificate serial: 0196AC1EA8AA33686782E104E8539DADBF33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2_7w0OPzoRNDu5F_y3kz9Ona5K0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft
Manifest number: 080C
Signing time: Wed 07 May 2025 19:00:12 +0000
Manifest this update: Wed 07 May 2025 19:00:12 +0000
Manifest next update: Thu 08 May 2025 19:00:12 +0000
Files and hashes: 1: 2_7w0OPzoRNDu5F_y3kz9Ona5K0.crl (hash: UwvWPBuAwV0pv/44SV9HSPrl7zJfXC2zuEOCS9Uh/io=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft
rsync://rpki.ripe.net/repository/DEFAULT/2_7w0OPzoRNDu5F_y3kz9Ona5K0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 19:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ac:1e:a8:aa:33:68:67:82:e1:04:e8:53:9d:ad:bf:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbfef0d0e3f3a11343bb917fcb7933f4e9dae4ad
Validity
Not Before: May 7 19:00:12 2025 GMT
Not After : May 8 19:00:12 2025 GMT
Subject: CN=1b3eb26bdee55b375c662902fb0126839c238de6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:21:b7:0d:bd:fd:7d:a5:a1:54:78:db:87:85:
f3:4a:5a:24:1e:25:82:75:58:db:50:99:d1:ff:41:
7d:4f:f1:81:a0:5e:ff:11:da:f0:aa:d0:c5:53:64:
19:24:b0:70:3b:ea:6a:b7:b1:cf:7c:f3:d1:b3:92:
e8:63:0b:33:f9:07:79:43:e0:25:aa:d0:99:4b:c6:
03:59:e2:31:b1:c9:f1:d1:d9:ec:18:02:74:24:6c:
95:f7:3f:e8:ff:4c:03:95:6b:ac:99:f1:54:8c:9a:
4c:ea:52:89:fa:7f:b2:0a:b7:6c:72:ef:4a:47:a3:
77:94:23:47:56:25:46:44:5a:6a:e0:55:9a:c9:26:
26:69:a4:61:77:27:b4:49:2c:33:b6:22:7b:e9:2a:
39:ff:fc:d8:f3:88:e0:1c:d8:5a:42:47:41:31:fc:
69:67:07:ae:6b:0e:91:fd:65:0c:14:10:15:11:71:
43:3b:3d:18:d2:a0:a5:02:6e:2f:73:e4:55:5e:65:
25:33:a3:e8:36:55:ba:fd:d3:16:b0:21:21:04:1d:
3a:d6:93:c1:27:69:f4:d7:27:51:0f:66:3e:2d:18:
a2:9f:9d:31:26:a3:5d:cb:f2:d4:1c:06:ea:ab:d1:
24:0b:be:9d:83:57:96:0d:cd:0a:98:13:d6:b2:e1:
c8:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:3E:B2:6B:DE:E5:5B:37:5C:66:29:02:FB:01:26:83:9C:23:8D:E6
X509v3 Authority Key Identifier:
keyid:DB:FE:F0:D0:E3:F3:A1:13:43:BB:91:7F:CB:79:33:F4:E9:DA:E4:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2_7w0OPzoRNDu5F_y3kz9Ona5K0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:6c:f6:47:de:86:67:eb:e7:bb:98:14:a5:9b:e0:52:15:87:
a9:ba:23:19:13:52:39:b2:09:a7:57:7c:9f:37:9e:d9:7c:92:
50:71:42:35:94:b6:73:8e:0a:e9:49:1e:30:f9:11:c4:e5:a0:
99:02:c0:72:67:0a:e2:0c:bb:94:80:4f:bb:ff:0e:26:bf:7e:
44:da:0f:4a:b3:e8:47:7c:c5:cb:d0:08:c7:1e:0e:52:36:f5:
39:a3:b1:58:26:85:c9:06:b1:34:a1:38:b7:a3:45:25:2d:40:
37:16:78:ba:5b:c8:70:e7:70:9f:20:f1:83:1d:31:5e:e9:54:
8c:5a:c8:c1:7f:3d:33:8c:38:68:8d:c5:99:4c:90:37:de:68:
f7:ff:61:91:48:47:2d:92:be:04:58:29:9c:19:84:c3:b2:fa:
11:24:91:51:1f:35:5c:3b:88:16:26:84:1d:31:62:8e:56:48:
f9:33:1f:cb:c5:34:b7:c2:04:cc:69:b1:e6:d6:44:eb:0d:ba:
8a:66:6f:d6:22:f9:25:d8:0b:45:90:f6:54:cb:6c:f0:f0:59:
73:b4:7f:09:b9:fc:93:e8:7b:14:c5:5f:5b:d5:86:35:1f:1e:
e7:19:8d:c7:8f:46:6a:b7:16:ee:80:ab:00:85:d0:86:b2:05:
6e:80:c3:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 8 00:56:33 2025 by rpki-client