Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.mft
File: 21LN5wkMV9jpwx1Rh0jfkiueBM4.mft (raw, json)
Hash identifier: JkKA/nvhuxoWVV1aWU7fMg4kjKUwok0yWhM13jKMkl4=
Subject key identifier: 3B:22:4E:2F:9C:A2:C1:95:06:2D:56:42:34:11:AE:14:28:29:75:0B
Authority key identifier: DB:52:CD:E7:09:0C:57:D8:E9:C3:1D:51:87:48:DF:92:2B:9E:04:CE
Certificate issuer: /CN=db52cde7090c57d8e9c31d518748df922b9e04ce
Certificate serial: 0196DBC2227496564449CF7F3CA18D31CE79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/21LN5wkMV9jpwx1Rh0jfkiueBM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.mft
Manifest number: 13B7
Signing time: Sat 17 May 2025 01:00:55 +0000
Manifest this update: Sat 17 May 2025 01:00:55 +0000
Manifest next update: Sun 18 May 2025 01:00:55 +0000
Files and hashes: 1: 21LN5wkMV9jpwx1Rh0jfkiueBM4.crl (hash: o1eK2SE5WDCo86H39YaIHMijI6xXxVRt7eeqz2ulfZA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.mft
rsync://rpki.ripe.net/repository/DEFAULT/21LN5wkMV9jpwx1Rh0jfkiueBM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 18 May 2025 01:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:db:c2:22:74:96:56:44:49:cf:7f:3c:a1:8d:31:ce:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db52cde7090c57d8e9c31d518748df922b9e04ce
Validity
Not Before: May 17 01:00:55 2025 GMT
Not After : May 18 01:00:55 2025 GMT
Subject: CN=3b224e2f9ca2c195062d56423411ae142829750b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:68:46:04:79:dd:a1:72:91:90:f5:98:47:e5:
82:01:46:48:ce:e6:cf:47:52:81:b5:85:95:08:8a:
4b:fd:74:06:39:ba:4b:77:a0:3d:c6:8b:d2:30:54:
81:8b:de:4c:02:27:66:eb:48:b8:d5:57:a4:8a:e5:
67:72:ca:ba:02:37:b1:6b:38:df:1e:4b:7d:46:a2:
15:a4:ae:de:29:18:5d:52:8f:7f:55:d5:e8:4f:ea:
d7:d0:ca:74:28:25:60:67:81:c3:5c:02:2d:27:fb:
4a:02:e2:cb:62:4d:1e:80:3b:b3:ac:1c:24:b6:4f:
76:7b:7b:97:8a:b2:bb:0f:08:6d:d4:c7:9f:2e:2f:
3f:3f:98:ba:4c:9e:60:e8:04:d9:1c:ea:a2:de:04:
93:3b:40:f0:a0:c9:66:cf:d0:06:45:fd:1e:c0:5f:
08:52:b2:7a:1c:40:64:b7:cc:64:f4:4c:66:db:e3:
f3:b9:ef:76:74:20:ae:d3:b4:53:18:54:71:7a:8d:
a1:f9:2e:79:89:c4:06:7f:d7:39:24:4c:0e:1c:d9:
9f:46:ad:24:d0:ad:9e:65:6b:55:f3:ff:d4:ec:31:
b4:45:d9:38:50:e0:96:50:75:9f:22:62:90:ff:f7:
a4:ac:34:37:ec:c6:ca:ef:c6:ad:3a:da:16:24:4c:
b5:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:22:4E:2F:9C:A2:C1:95:06:2D:56:42:34:11:AE:14:28:29:75:0B
X509v3 Authority Key Identifier:
keyid:DB:52:CD:E7:09:0C:57:D8:E9:C3:1D:51:87:48:DF:92:2B:9E:04:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/21LN5wkMV9jpwx1Rh0jfkiueBM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:43:34:17:0b:8f:dc:46:34:73:1e:69:bd:7f:da:36:d0:3c:
74:04:f8:53:3b:f0:8b:f1:50:e5:16:86:28:ee:45:a2:a7:6a:
17:d5:38:28:b6:79:85:35:ac:29:12:4d:a3:d8:3e:60:fc:ea:
17:6e:08:3a:84:9e:de:1d:b0:6a:9f:43:89:a5:32:46:68:3d:
b8:08:d4:51:44:c2:6e:c3:6b:51:11:45:88:a5:c0:87:35:83:
d7:3f:91:7b:bd:fa:03:34:3c:67:80:95:59:9c:1f:1b:26:ce:
78:a3:b7:3b:78:3c:c1:8b:90:d2:47:03:32:db:aa:14:26:07:
ce:d9:c0:65:14:75:dd:47:3d:e3:d8:89:a2:ea:de:1f:da:09:
02:99:77:c8:d8:0a:3e:a0:16:8f:55:a7:e2:38:68:38:fd:c5:
b7:9a:90:2b:00:23:32:3d:92:bb:11:fa:3b:f3:54:a9:37:c5:
a7:7c:c9:6a:f2:3a:82:9b:84:2d:36:d9:6f:05:0c:14:18:99:
fc:74:a1:f0:da:c8:77:6f:6e:89:0a:f6:61:77:0d:42:32:ec:
30:80:f2:2f:eb:fc:ac:7a:49:b3:c9:7c:d9:d5:7d:d8:ef:eb:
da:6f:2c:b6:4e:fc:41:e2:cb:05:88:45:7f:63:9f:0b:82:06:
e6:04:44:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 08:14:03 2025 by rpki-client