Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
File: 0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft (raw, json)
Hash identifier: ye4Bcbz1vwHc2aA43mOj8zyY01uyEzFR7gvLqS2AR8M=
Subject key identifier: 76:FF:33:A5:D4:53:7B:2D:C5:44:EE:DE:B7:E3:02:35:2C:F0:AD:15
Authority key identifier: D3:09:8E:5E:20:D7:8F:94:E6:96:C1:37:2B:56:23:FF:A7:1D:94:D0
Certificate issuer: /CN=d3098e5e20d78f94e696c1372b5623ffa71d94d0
Certificate serial: 0196A72FAC09555FC97E6357A7613367D88C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
Manifest number: 0AAB
Signing time: Tue 06 May 2025 20:00:41 +0000
Manifest this update: Tue 06 May 2025 20:00:41 +0000
Manifest next update: Wed 07 May 2025 20:00:41 +0000
Files and hashes: 1: 0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl (hash: BTg6v5QcgaZDDDSiPgc4vMabcLxUi4FKMwE3C+sjD0c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 20:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a7:2f:ac:09:55:5f:c9:7e:63:57:a7:61:33:67:d8:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3098e5e20d78f94e696c1372b5623ffa71d94d0
Validity
Not Before: May 6 20:00:41 2025 GMT
Not After : May 7 20:00:41 2025 GMT
Subject: CN=76ff33a5d4537b2dc544eedeb7e302352cf0ad15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:5e:34:b9:90:b1:b0:21:d7:84:b0:7b:f4:fd:
71:eb:4d:a9:cd:15:ef:e1:fb:ed:2f:2d:f2:d8:af:
af:45:8b:06:70:c0:63:93:9a:3e:bf:5e:61:ad:ff:
e1:62:b0:17:05:ca:bd:0c:89:38:5b:1e:e1:27:e7:
70:45:a2:84:64:97:90:59:4f:ec:cd:74:de:a9:5e:
13:a4:79:34:fb:e3:0e:f1:d5:ca:ce:ee:49:10:89:
1e:36:68:bd:a9:6c:9f:49:e3:73:98:1b:23:e2:7d:
81:e0:15:40:10:62:ea:2e:0c:58:ab:9a:4c:76:1d:
69:6e:ec:9e:63:2d:99:84:66:00:cb:a3:a3:cf:e3:
19:a2:c8:fb:46:a7:7c:fa:2c:18:36:c2:2b:33:f5:
e7:d2:ad:43:4b:2f:b0:ce:bc:a2:82:d6:81:bf:b7:
39:5c:a5:b9:c1:45:53:9f:f5:ee:b6:49:d8:7b:df:
f0:55:dc:10:5a:da:f3:a5:85:e2:7e:c1:9e:86:ea:
76:42:65:61:15:bd:0b:81:46:67:1f:ca:32:b3:57:
d7:40:54:df:dd:bd:da:a4:b2:80:35:a9:b4:20:da:
2c:54:79:8f:9b:77:a7:90:dc:05:36:ae:d1:9c:86:
5c:0a:0a:54:11:28:b1:9c:f5:e5:d7:3e:59:13:8c:
51:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:FF:33:A5:D4:53:7B:2D:C5:44:EE:DE:B7:E3:02:35:2C:F0:AD:15
X509v3 Authority Key Identifier:
keyid:D3:09:8E:5E:20:D7:8F:94:E6:96:C1:37:2B:56:23:FF:A7:1D:94:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:0d:e1:28:b6:48:ec:51:6d:ae:54:74:3b:56:aa:32:d9:cf:
6c:dd:5e:d7:3b:a2:e7:b7:24:24:df:41:e5:8a:a9:14:ee:8c:
fd:b0:70:12:d2:5b:de:13:8b:2e:46:18:3d:20:6c:5a:de:7b:
f6:99:a5:69:7b:ec:8a:9a:db:cf:3a:58:dc:47:fc:1f:5a:c3:
66:2b:c3:6b:ce:32:74:6f:04:ad:6e:7f:6a:9d:ca:f5:66:5b:
8e:81:c2:5d:e2:ce:da:e0:e1:7b:08:16:02:0b:e0:88:6f:92:
3f:6b:85:6d:3c:d8:bb:fd:ad:84:a4:a8:3a:35:12:c8:cd:8b:
61:f0:20:c9:d1:ec:e8:9a:dc:9b:1c:e2:20:61:85:38:15:29:
dd:4c:b5:08:21:85:28:06:77:7e:c1:4d:3d:21:0f:b1:36:c3:
67:a5:25:47:e6:46:6e:68:99:d7:93:82:0e:54:8f:a4:8a:a2:
3b:e4:96:01:68:15:48:9b:63:cb:6d:be:a9:38:87:3d:00:dd:
bd:5a:38:fe:9a:02:1b:a1:af:9f:ce:27:ed:f3:29:7d:da:93:
68:e9:a2:7c:51:d1:f5:91:d7:4e:ce:32:0f:ce:39:4e:ea:3f:
c5:a8:ee:42:bf:93:43:c2:c6:3e:d0:22:43:11:ec:61:1f:a9:
36:0b:04:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 04:18:09 2025 by rpki-client