Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
File: 0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft (raw, json)
Hash identifier: UqB58sRygx1IxlLjVuOKWXBGLWgr0ttblSPzfKMwuc8=
Subject key identifier: 35:4A:CF:63:0C:88:60:10:3C:05:C6:A2:F2:7D:FB:E7:67:DB:84:A3
Authority key identifier: D1:B0:E8:68:6F:7D:AB:1F:64:C8:0D:43:82:C3:C5:94:9F:F1:1D:BF
Certificate issuer: /CN=d1b0e8686f7dab1f64c80d4382c3c5949ff11dbf
Certificate serial: 01969F0823ED4E8C697705F8CE7BE6408D31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
Manifest number: 037A
Signing time: Mon 05 May 2025 06:00:32 +0000
Manifest this update: Mon 05 May 2025 06:00:32 +0000
Manifest next update: Tue 06 May 2025 06:00:32 +0000
Files and hashes: 1: 0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl (hash: LQNsZnhgFAE7yFpZKxNpJ5ubCnnn9nWs8em+mnsGz4c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 06:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9f:08:23:ed:4e:8c:69:77:05:f8:ce:7b:e6:40:8d:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1b0e8686f7dab1f64c80d4382c3c5949ff11dbf
Validity
Not Before: May 5 06:00:32 2025 GMT
Not After : May 6 06:00:32 2025 GMT
Subject: CN=354acf630c8860103c05c6a2f27dfbe767db84a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:84:69:69:b0:59:9e:e5:23:c5:87:92:88:cf:
62:88:99:6e:82:cc:79:61:f3:0a:04:9d:01:fd:be:
63:6c:2b:0f:8d:85:3d:9a:34:26:a6:c3:d2:b0:f7:
d4:03:6b:08:3d:5d:35:0f:15:9c:23:25:99:4a:88:
0e:f2:68:46:ae:71:ba:96:76:7b:63:0d:64:4e:14:
67:85:3b:b8:f7:4b:33:57:d2:52:8a:40:f8:02:c8:
40:87:97:c6:18:4e:c9:ab:83:56:94:46:fc:72:2f:
89:53:e7:57:39:0e:e3:df:03:80:89:0e:c2:2a:8e:
65:80:d3:18:01:e6:4d:8c:d8:31:de:56:82:ba:cc:
e0:1e:b5:39:d4:93:a9:32:9a:b8:59:50:f4:8c:d7:
52:2a:ae:0c:d3:c0:e7:49:f7:b1:81:25:74:cf:44:
c2:5a:3a:fc:ce:7b:07:97:e4:cc:2c:59:94:62:7a:
5b:25:da:a2:a9:12:7d:da:03:13:f3:9d:04:05:60:
2a:79:04:51:83:51:ec:cc:15:03:c5:10:05:18:a6:
1f:31:92:b5:d1:ff:46:a9:bf:39:e5:ed:2b:11:3d:
b2:d1:b8:61:4c:8e:c0:33:55:fb:ac:33:ba:9c:49:
95:ba:15:2c:f1:5f:70:73:be:c5:79:de:f4:b5:35:
53:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:4A:CF:63:0C:88:60:10:3C:05:C6:A2:F2:7D:FB:E7:67:DB:84:A3
X509v3 Authority Key Identifier:
keyid:D1:B0:E8:68:6F:7D:AB:1F:64:C8:0D:43:82:C3:C5:94:9F:F1:1D:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:1e:e5:df:f1:48:80:ce:66:8c:de:49:d8:f4:73:96:07:f5:
e8:53:a1:76:e4:6c:8b:d3:d3:8a:58:96:29:ea:f9:c9:7c:de:
d5:4d:ca:f1:6f:33:0c:9f:95:f1:53:8c:da:ca:4f:f6:dc:39:
4c:73:e7:37:94:37:a3:2b:21:5f:f7:c3:db:50:f0:d6:16:68:
c4:65:d2:a6:1e:5c:4c:7f:ce:fe:d1:01:27:b3:2a:1d:99:bc:
63:f1:c1:d0:75:08:81:ff:32:f5:d5:34:87:08:33:a3:49:97:
c9:16:c5:f5:42:dc:20:61:c5:c2:ac:27:a1:84:95:9d:9e:b9:
d0:08:2a:b1:8f:e5:e1:7c:54:e5:8e:c0:d1:eb:c4:83:8d:b0:
21:1a:d7:58:75:31:6d:9a:5f:d8:11:96:39:bc:36:5f:b1:7c:
c7:a3:d1:d2:47:b5:ac:00:e4:36:99:1b:1d:11:9b:c5:2c:36:
65:7d:b2:c1:7a:cf:6b:06:5c:66:88:34:f8:2c:9e:f5:23:31:
84:1f:1e:a2:27:56:5b:e2:fd:1c:4b:b7:d3:27:ba:55:af:3a:
d8:88:aa:09:f4:fd:97:71:19:a1:9d:17:d5:dd:e9:0e:ef:bb:
33:53:5f:b2:36:70:24:69:2f:d1:43:c8:3c:56:aa:a1:53:0d:
91:af:63:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 16:07:25 2025 by rpki-client