Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
File: bZYBl_5YkhTCJZ9q6olsThAH6YY.mft (raw, json)
Hash identifier: VLAmW4oBXcGvX5QiC0nL9wn1Ie3sqD5f61AvOLJqREU=
Subject key identifier: 15:46:B5:91:AA:1C:AB:75:EC:1F:25:19:41:54:C0:EE:09:2D:41:37
Authority key identifier: 6D:96:01:97:FE:58:92:14:C2:25:9F:6A:EA:89:6C:4E:10:07:E9:86
Certificate issuer: /CN=6d960197fe589214c2259f6aea896c4e1007e986
Certificate serial: 0196C15E149368F0CFC92D7B1BA16B4CF1BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
Manifest number: 07D3
Signing time: Sun 11 May 2025 22:01:30 +0000
Manifest this update: Sun 11 May 2025 22:01:30 +0000
Manifest next update: Mon 12 May 2025 22:01:30 +0000
Files and hashes: 1: bZYBl_5YkhTCJZ9q6olsThAH6YY.crl (hash: 3O1vbyuPrdU+Ut6C+gLA52/URE8Mzl5jo3ZI7ktFEfA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 22:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:5e:14:93:68:f0:cf:c9:2d:7b:1b:a1:6b:4c:f1:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d960197fe589214c2259f6aea896c4e1007e986
Validity
Not Before: May 11 22:01:30 2025 GMT
Not After : May 12 22:01:30 2025 GMT
Subject: CN=1546b591aa1cab75ec1f25194154c0ee092d4137
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:23:7b:06:5c:d7:99:43:07:36:7a:83:7b:60:
72:c6:6c:3d:9f:9a:74:55:be:44:d7:24:60:f0:26:
cf:9d:8d:0b:64:e1:9f:ee:2d:a8:8a:b8:ad:26:58:
28:f0:21:a6:06:cf:13:cd:57:1f:49:c5:fa:2d:5a:
6c:58:05:c8:4a:6c:45:c4:66:b6:55:0c:9c:b9:8c:
63:5c:e5:76:eb:b8:25:32:7d:21:8e:99:85:ca:c2:
84:42:a6:a5:f2:54:ef:9d:d1:27:d0:66:da:c5:76:
7d:50:49:93:09:74:88:7f:59:10:39:19:eb:78:72:
37:16:81:a5:2e:46:0a:2e:11:59:e5:a8:e6:61:c9:
57:b3:f7:f7:f0:e0:46:cc:f6:a4:04:21:32:4c:f3:
de:f4:c6:8e:22:44:ec:fa:4e:d1:94:e9:c9:ad:2c:
09:9c:22:fc:96:21:0b:16:58:f0:af:b9:e6:3c:b2:
e4:9b:d9:66:0f:25:ea:c5:86:4f:0a:b9:17:42:d4:
a1:fa:24:6a:4c:bf:d5:66:c6:5f:be:6d:fd:94:7d:
e2:43:2d:44:85:29:90:16:2c:80:96:a0:d8:cb:0c:
a4:10:55:d1:c1:56:75:2d:4a:94:fc:de:99:7f:2c:
92:25:53:79:32:0d:65:7e:12:54:40:84:34:b9:2d:
ed:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:46:B5:91:AA:1C:AB:75:EC:1F:25:19:41:54:C0:EE:09:2D:41:37
X509v3 Authority Key Identifier:
keyid:6D:96:01:97:FE:58:92:14:C2:25:9F:6A:EA:89:6C:4E:10:07:E9:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bZYBl_5YkhTCJZ9q6olsThAH6YY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/879c02-dbf4-4e40-a4ed-313754e64e13/1/bZYBl_5YkhTCJZ9q6olsThAH6YY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:74:a4:18:20:3a:b3:48:8a:2b:d9:e2:e8:b5:87:fd:69:3d:
aa:9b:e1:4e:59:a2:11:28:0d:2f:d1:fb:bb:29:8c:25:cd:7b:
95:4c:bf:79:ec:69:a9:52:27:53:98:50:28:f4:48:c3:61:cc:
88:76:df:52:ba:96:0d:15:1c:83:50:41:47:a4:5a:01:68:7b:
25:2c:78:4d:69:dd:43:e4:af:cb:69:40:2a:06:11:ef:02:ab:
e0:e9:36:50:c4:c8:5f:a8:16:eb:74:c1:80:9e:78:8b:51:96:
32:51:a7:5b:51:76:86:e1:28:e7:fe:7a:a8:f1:84:cf:dc:1d:
d7:bb:a4:e4:f6:44:9d:e4:0a:d2:20:10:81:50:bc:ea:c2:5f:
34:fd:fd:05:85:b2:b0:00:e4:fb:d1:7b:50:8c:3d:34:58:bb:
4b:16:8f:7a:f7:cb:5b:2f:95:6a:e8:c8:31:b0:52:d6:a0:69:
21:bd:6c:94:c5:c6:7d:00:f2:eb:aa:ae:58:8e:48:89:05:8a:
5b:30:37:8c:52:21:1d:5c:f4:c2:89:49:ad:86:3a:02:db:29:
ee:82:42:b1:d4:b4:fe:4c:6f:37:21:98:e8:2a:1c:91:e6:73:
6d:e4:57:99:8f:c6:36:f4:34:0d:48:9b:6f:60:06:b2:27:d1:
de:e7:0f:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 07:44:59 2025 by rpki-client