Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.mft
File: OQlq7uS6fDS4EkCtSRrEba90wx0.mft (raw, json)
Hash identifier: cWcCVabugPjJLKbTFDTvFzHEFP7yOx41ejDemg7zbbM=
Subject key identifier: 1E:35:77:62:97:DF:A2:88:2E:BE:8F:A3:95:E0:5E:99:D6:F4:90:86
Authority key identifier: 39:09:6A:EE:E4:BA:7C:34:B8:12:40:AD:49:1A:C4:6D:AF:74:C3:1D
Certificate issuer: /CN=39096aeee4ba7c34b81240ad491ac46daf74c31d
Certificate serial: 0196C013AD08F71210E87C42ACEF98269D15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQlq7uS6fDS4EkCtSRrEba90wx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.mft
Manifest number: 1533
Signing time: Sun 11 May 2025 16:00:36 +0000
Manifest this update: Sun 11 May 2025 16:00:36 +0000
Manifest next update: Mon 12 May 2025 16:00:36 +0000
Files and hashes: 1: OQlq7uS6fDS4EkCtSRrEba90wx0.crl (hash: QXBA3MqUVsk1AfxrpZTQo84VOvT9+MKyPXllsdpxseA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.mft
rsync://rpki.ripe.net/repository/DEFAULT/OQlq7uS6fDS4EkCtSRrEba90wx0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:13:ad:08:f7:12:10:e8:7c:42:ac:ef:98:26:9d:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39096aeee4ba7c34b81240ad491ac46daf74c31d
Validity
Not Before: May 11 16:00:36 2025 GMT
Not After : May 12 16:00:36 2025 GMT
Subject: CN=1e35776297dfa2882ebe8fa395e05e99d6f49086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9b:d5:1b:b4:4e:0a:fa:ec:ab:52:5b:e6:12:
54:15:d3:58:c4:16:d9:4f:ec:95:44:0e:ec:03:32:
b0:22:b9:05:a3:a2:2d:6e:dc:50:2e:f4:e3:48:29:
dd:bd:19:3d:0a:07:4e:f3:fd:2f:1e:c2:e9:f2:d9:
9a:f9:c2:f5:9a:17:86:96:cd:f4:9e:28:6d:bb:99:
f8:78:a1:c2:d6:cd:44:3e:e2:2b:da:83:e2:cf:66:
62:60:07:5b:97:0f:40:1a:59:c2:e3:7e:15:b8:7e:
46:81:40:9e:85:c2:50:5a:d6:56:db:c6:1b:81:8f:
20:e2:38:f4:2a:d9:3c:36:48:cc:10:73:fa:cb:46:
be:47:f1:f8:1d:87:ac:23:1d:e9:cc:d4:8d:85:01:
bd:c4:88:af:15:0a:e1:27:11:38:a2:e6:50:01:78:
31:3e:a5:0e:44:cb:09:63:85:ce:9d:dd:5b:41:ed:
9c:98:e0:12:e3:65:2c:1b:68:a5:b7:f4:81:67:21:
88:b9:8d:f5:34:0f:5f:e0:55:6e:e5:98:40:ca:7e:
a4:ff:14:8d:b2:06:b4:d9:c5:1d:2b:0d:54:61:0b:
c8:00:97:43:34:8f:90:fe:12:a1:08:ca:38:53:7f:
36:09:bf:c7:d5:ea:c0:7c:a4:2f:d7:7e:83:74:a7:
b3:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:35:77:62:97:DF:A2:88:2E:BE:8F:A3:95:E0:5E:99:D6:F4:90:86
X509v3 Authority Key Identifier:
keyid:39:09:6A:EE:E4:BA:7C:34:B8:12:40:AD:49:1A:C4:6D:AF:74:C3:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQlq7uS6fDS4EkCtSRrEba90wx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/bb1aa7-7455-4d2d-82da-105617638726/1/OQlq7uS6fDS4EkCtSRrEba90wx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:37:7d:21:1a:11:04:af:45:a9:25:f8:3f:f0:78:77:cb:18:
e3:37:75:37:fa:ab:50:1e:0e:06:a1:7d:72:04:61:67:c9:8e:
a5:fa:56:28:d5:ed:1a:e7:0b:8b:b3:a5:3c:a2:bf:c3:1e:e6:
2d:c1:3a:79:8e:e9:c4:fa:8c:94:cb:49:b9:f9:e9:75:1f:c3:
b6:3b:69:5e:9c:2c:8b:60:09:b8:8d:08:f4:42:6c:a2:a9:4e:
95:a3:53:7d:62:fe:d8:92:f8:db:61:74:44:c6:d9:61:4e:be:
8a:fa:7c:f3:27:cc:d9:08:6d:e4:6b:a4:00:86:4f:04:b6:65:
c1:ec:a5:6d:9c:91:46:e5:7f:56:39:a2:b0:35:f8:72:07:b0:
50:7f:56:75:4c:57:df:5e:3a:6a:c9:10:f5:71:8b:e9:cc:a8:
c4:6b:e4:73:49:39:90:fa:28:80:de:bf:d2:7c:b4:84:09:4b:
db:3c:de:b1:cc:34:b1:67:14:76:ab:3b:b0:84:19:4c:0d:2b:
6c:d5:eb:89:37:2a:c5:ee:42:a9:8a:6a:93:e6:c7:e8:29:e5:
0c:f8:c8:54:d5:22:8a:b8:1b:6f:94:f5:83:4a:f5:c2:05:63:
67:b1:01:54:6e:2b:c9:2b:5d:58:18:17:cc:e9:c7:89:8c:e6:
ff:18:69:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 22:57:28 2025 by rpki-client