Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.mft
File: Mh6FAflfcDdNRXa5sM1VW68fNas.mft (raw, json)
Hash identifier: WpQw+9Tgp+BCn7enjz9DMLFMObzQ2BB3u/9nphNhdcc=
Subject key identifier: DE:61:6E:9E:B3:BC:2F:D8:F5:49:94:4A:FA:67:A2:F6:F8:83:A3:92
Authority key identifier: 32:1E:85:01:F9:5F:70:37:4D:45:76:B9:B0:CD:55:5B:AF:1F:35:AB
Certificate issuer: /CN=321e8501f95f70374d4576b9b0cd555baf1f35ab
Certificate serial: 0196C803DDDBF9B1DC589E15BC924603BD5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mh6FAflfcDdNRXa5sM1VW68fNas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.mft
Manifest number: 1537
Signing time: Tue 13 May 2025 05:00:18 +0000
Manifest this update: Tue 13 May 2025 05:00:18 +0000
Manifest next update: Wed 14 May 2025 05:00:18 +0000
Files and hashes: 1: Mh6FAflfcDdNRXa5sM1VW68fNas.crl (hash: AevgEGqnK5GX8kXtFuGGf3HP9RpTAiCkoxf01ej4XUU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mh6FAflfcDdNRXa5sM1VW68fNas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 05:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c8:03:dd:db:f9:b1:dc:58:9e:15:bc:92:46:03:bd:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=321e8501f95f70374d4576b9b0cd555baf1f35ab
Validity
Not Before: May 13 05:00:18 2025 GMT
Not After : May 14 05:00:18 2025 GMT
Subject: CN=de616e9eb3bc2fd8f549944afa67a2f6f883a392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:93:85:20:e4:b7:23:cd:20:4e:6f:14:71:fe:
10:06:69:b3:ff:26:ab:b0:3c:e0:7b:97:0b:be:01:
f6:b3:bb:bd:f2:7e:55:b5:1d:1e:8a:14:ab:e8:9c:
f4:76:27:b1:2e:f8:51:5b:23:b0:82:5a:c2:be:f5:
4b:ce:bd:33:31:a5:50:2f:ba:33:f8:0e:20:d4:64:
41:e8:d1:d8:1f:19:55:c9:ff:6d:ed:90:d6:96:13:
87:b7:7e:99:2a:10:9a:f2:1b:e2:0c:50:35:bb:ff:
c2:cf:63:66:39:8a:6e:4b:21:4d:42:28:8a:ef:3b:
6d:b0:87:95:e0:b2:1e:ba:a9:70:95:c0:7e:ca:16:
bc:5e:53:18:33:b0:42:31:7f:3b:c7:3a:fc:a6:a2:
32:52:15:38:3c:02:19:11:dd:10:bc:41:09:1c:74:
c1:56:a8:90:c3:e3:02:e5:f5:17:e0:22:28:57:9d:
ed:d8:31:62:c5:b4:8e:ac:0b:78:64:c0:85:2f:fe:
f6:26:a9:b9:ac:84:78:5f:c3:e4:e3:98:50:a3:ba:
37:cc:54:38:55:b4:a7:fa:7b:96:b7:d3:0c:87:ed:
76:0c:45:c8:1b:2e:db:30:fa:08:46:ca:78:ba:a0:
80:7d:97:92:0a:8b:09:eb:e7:9c:cc:f0:e7:ed:3e:
7d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:61:6E:9E:B3:BC:2F:D8:F5:49:94:4A:FA:67:A2:F6:F8:83:A3:92
X509v3 Authority Key Identifier:
keyid:32:1E:85:01:F9:5F:70:37:4D:45:76:B9:B0:CD:55:5B:AF:1F:35:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mh6FAflfcDdNRXa5sM1VW68fNas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/16bf28-842b-48fa-894d-fbf7575aace2/1/Mh6FAflfcDdNRXa5sM1VW68fNas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:0e:a8:69:63:13:fd:a8:02:23:4c:58:7d:95:31:8f:a6:cd:
3e:0c:ff:bd:e7:56:f7:5a:94:12:cd:cc:61:1b:b8:78:b9:53:
61:99:30:54:b7:d1:b4:73:8d:e2:33:f3:65:65:d0:7b:16:e7:
a3:69:af:2c:56:a1:ec:6e:4d:e0:56:1b:59:66:a1:a3:ad:85:
49:29:91:df:b8:d7:91:6e:9c:05:51:84:47:97:87:5c:41:50:
91:21:4f:7b:98:c7:cd:7d:f4:fe:27:99:f1:bd:3d:44:92:67:
29:a9:5d:6f:e8:c6:7b:3a:08:12:7f:ac:47:19:31:af:1b:3c:
ce:60:34:7d:47:ff:fc:a5:52:71:d4:bb:58:72:18:1f:1d:2f:
97:ae:b0:79:8f:03:0e:0a:e4:45:f2:0e:e8:49:10:98:79:b2:
ab:0a:37:84:e9:5f:bb:e0:7f:2f:0e:f3:12:07:78:dd:d0:f6:
66:b9:b6:f5:89:84:51:5b:7e:f6:f2:ed:7e:ce:38:d3:3d:18:
e3:c9:1a:b3:e8:99:2c:d3:14:8b:da:ee:60:c3:b4:b4:2c:da:
bf:f9:34:a7:cd:21:88:6c:17:08:73:b3:8f:f6:84:51:5e:25:
7e:85:18:20:41:5d:30:8b:b0:37:b4:14:32:74:ac:1c:b8:1e:
33:96:63:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 10:12:23 2025 by rpki-client