Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
File: vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft (raw, json)
Hash identifier: ADWZ32aeoyYlh+/67mY9D7QPREupCZ/HZvuXXmX+Ybw=
Subject key identifier: D4:2C:E2:F9:1F:D8:92:99:03:2E:B1:8B:64:B3:85:60:1F:E9:00:52
Authority key identifier: BE:55:39:AF:E9:25:DB:80:B4:15:EF:B1:4C:63:1B:2D:82:C8:CE:DD
Certificate issuer: /CN=be5539afe925db80b415efb14c631b2d82c8cedd
Certificate serial: 0196B66BBD43BD2C48F792F52E8135B91093
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
Manifest number: 010D
Signing time: Fri 09 May 2025 19:00:36 +0000
Manifest this update: Fri 09 May 2025 19:00:36 +0000
Manifest next update: Sat 10 May 2025 19:00:36 +0000
Files and hashes: 1: vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl (hash: zvJduJXTbeYLtnAvGf3rJlpELDUT09e7sslwhMzDTaM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 17:53:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b6:6b:bd:43:bd:2c:48:f7:92:f5:2e:81:35:b9:10:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be5539afe925db80b415efb14c631b2d82c8cedd
Validity
Not Before: May 9 19:00:36 2025 GMT
Not After : May 10 19:00:36 2025 GMT
Subject: CN=d42ce2f91fd89299032eb18b64b385601fe90052
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:54:a8:0d:57:39:05:60:46:83:be:e5:fb:dd:
1a:8a:60:79:0f:0d:29:9d:c0:97:06:67:bb:94:63:
6d:0a:35:c5:7e:51:10:55:7d:0d:bc:91:52:f3:83:
c0:7e:63:a1:a9:6e:52:da:d3:84:84:0a:36:7a:5e:
68:d3:c1:28:20:51:ea:25:5e:14:ef:25:e7:ac:f7:
3b:50:ed:2e:18:74:54:1c:0c:6f:b5:bb:8f:2a:d2:
e4:07:0f:28:b9:87:69:f6:e3:d4:cc:41:d1:54:f4:
63:eb:5e:7e:37:55:78:46:cc:25:f4:15:dc:64:2c:
6b:ee:40:27:00:17:f1:50:80:80:5a:e7:fb:dc:f6:
49:15:02:66:af:1c:76:17:b1:dc:7a:0b:f9:e3:bc:
55:ae:ea:bd:d4:6d:86:e7:a9:85:48:3f:a6:b8:3d:
73:f5:b4:32:ff:9c:d5:4b:75:2d:47:17:3d:43:35:
a9:8c:80:4a:f8:85:80:3d:ed:b0:bb:1f:f0:a9:c9:
4e:bb:3b:2a:47:16:e7:e5:07:f0:89:8d:97:55:f6:
91:ac:e5:0e:1a:bb:d8:4c:d4:5a:4f:a3:08:a5:76:
d4:b2:4c:e5:16:0d:c2:3c:7e:ab:bf:38:a0:cf:3b:
83:a5:e6:b8:f8:44:ea:a4:c6:6d:a6:71:6d:62:19:
3e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:2C:E2:F9:1F:D8:92:99:03:2E:B1:8B:64:B3:85:60:1F:E9:00:52
X509v3 Authority Key Identifier:
keyid:BE:55:39:AF:E9:25:DB:80:B4:15:EF:B1:4C:63:1B:2D:82:C8:CE:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:ea:de:3e:17:87:c2:36:07:a9:6e:0b:6b:26:f3:8a:c8:10:
23:14:81:98:d9:19:c6:2f:48:9e:13:8e:85:71:cb:9c:9e:f6:
90:b8:a2:e2:78:59:fb:b2:39:9e:d5:6e:b3:5b:3f:0f:68:05:
d8:74:14:f8:7b:ea:7c:02:d8:99:55:af:9a:2f:6e:ea:96:4f:
20:1a:4b:45:71:d8:5c:22:18:ce:f4:9c:d9:de:b0:1c:b3:f9:
1f:79:14:0e:6b:af:1a:d8:63:5a:92:a8:bf:35:4e:8c:a7:80:
ce:ab:e2:02:79:de:f9:8d:eb:79:2c:bf:e6:dd:17:f6:32:bc:
69:d5:a7:df:ec:cd:ed:9a:b2:cb:c1:9f:df:0b:6c:7c:f9:7d:
19:41:6e:0d:46:0b:d9:3d:0a:52:ca:70:b3:d9:44:3e:a4:41:
da:7a:d2:63:b8:02:46:1f:f2:0a:84:cc:cd:b6:cf:4d:db:b0:
df:14:a4:b9:0f:60:bf:d1:37:b9:eb:8c:7e:9f:64:85:99:c6:
88:b1:52:9b:f6:71:81:a5:1d:d7:b3:04:9b:f9:d8:ba:2a:c1:
f6:c2:05:c1:27:10:6d:1d:d2:27:84:81:13:7f:a6:91:25:2c:
df:39:e5:d4:bb:ef:c4:3d:38:3a:2b:93:ef:cb:73:9a:ab:93:
3b:ae:f6:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 20:51:31 2025 by rpki-client