Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
File: GeBhVfweN2UrK3nJpTbS5hRNBPc.mft (raw, json)
Hash identifier: ldiEcC2+x3+yx7JBqJTk0m6qebt7XwPI6JHy9pHiGlY=
Subject key identifier: 45:C6:AB:B9:A2:8A:60:1E:14:84:0E:4B:26:AA:DB:65:E7:56:81:22
Authority key identifier: 19:E0:61:55:FC:1E:37:65:2B:2B:79:C9:A5:36:D2:E6:14:4D:04:F7
Certificate issuer: /CN=19e06155fc1e37652b2b79c9a536d2e6144d04f7
Certificate serial: 01969E9A051129C082152837AA50BBC776A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
Manifest number: 0D8C
Signing time: Mon 05 May 2025 04:00:15 +0000
Manifest this update: Mon 05 May 2025 04:00:15 +0000
Manifest next update: Tue 06 May 2025 04:00:15 +0000
Files and hashes: 1: GeBhVfweN2UrK3nJpTbS5hRNBPc.crl (hash: WvNOwqfGL4atyQkEnxC8V8VHMBd+1LC0Hq2pKxWUALI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:9a:05:11:29:c0:82:15:28:37:aa:50:bb:c7:76:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19e06155fc1e37652b2b79c9a536d2e6144d04f7
Validity
Not Before: May 5 04:00:15 2025 GMT
Not After : May 6 04:00:15 2025 GMT
Subject: CN=45c6abb9a28a601e14840e4b26aadb65e7568122
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:06:90:09:2e:96:78:8e:1a:98:61:02:0a:42:
78:7e:7c:6d:b1:00:e6:04:c8:b0:e5:7b:8e:a1:8c:
81:cd:0e:44:75:a1:79:25:7b:f5:4a:c2:f1:ff:d9:
88:89:82:b1:27:d1:9d:e8:be:e1:71:2e:a9:a2:02:
72:46:39:55:b4:f4:68:3f:7a:ec:85:7f:c5:85:53:
e6:eb:e5:36:70:fe:b1:fa:7b:60:0d:0d:8c:5a:51:
05:9d:0f:59:c9:36:c8:74:fc:c8:ed:3e:26:0c:9d:
7c:93:d8:39:38:49:c7:70:d5:0b:10:9c:f1:fd:85:
d4:df:60:a8:cf:3c:e8:0d:02:a8:5b:21:1d:94:7b:
3f:90:e9:7b:e1:81:be:57:e6:9d:ab:cb:ca:12:d2:
69:58:68:38:e3:99:a3:b8:58:52:93:41:26:bf:3f:
da:bf:50:6e:8b:4f:ad:ae:03:2a:51:61:84:c9:17:
17:45:3d:a9:68:d5:c9:b5:04:78:28:ac:30:6e:c2:
10:50:1b:5e:3a:fd:9f:0a:b5:94:f7:7a:01:05:8c:
35:d4:7f:82:af:da:7e:32:90:45:29:a0:5d:41:ba:
1b:96:eb:b8:9e:13:f7:ea:b0:d5:1e:2f:4c:01:ac:
2b:43:35:3c:5a:bd:d4:f1:43:8f:4e:ec:e9:36:b3:
42:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:C6:AB:B9:A2:8A:60:1E:14:84:0E:4B:26:AA:DB:65:E7:56:81:22
X509v3 Authority Key Identifier:
keyid:19:E0:61:55:FC:1E:37:65:2B:2B:79:C9:A5:36:D2:E6:14:4D:04:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:e4:91:b0:d0:ff:49:d5:a6:ff:b1:80:4f:0e:b2:9d:03:cc:
aa:7c:01:4d:fe:2d:cf:9b:50:f4:72:f2:4f:51:24:7f:1e:75:
6b:74:be:b8:e3:5a:da:5e:8c:b4:76:d2:97:d4:d5:24:4d:29:
02:64:58:2b:2c:c2:38:6b:f6:25:4d:b2:73:86:aa:3e:4f:b6:
75:aa:12:50:57:6b:6c:93:9f:cc:d9:aa:51:6a:95:be:50:ee:
49:d9:f7:d4:cd:95:f2:6e:21:67:64:1c:ec:6a:21:87:e9:e5:
bc:7f:43:77:c8:f7:20:d7:04:b9:d8:f6:2e:3d:c1:77:e8:8d:
6c:7a:8a:08:e0:fa:63:90:d7:21:40:76:27:be:19:ad:fe:e1:
19:fb:e7:14:11:7a:04:09:43:b2:ed:c8:cf:9a:77:6c:f7:14:
25:f3:e3:ea:92:ec:4b:f9:de:ec:63:c9:7d:84:bd:18:35:c0:
c1:22:e7:08:03:80:fe:ec:26:31:a6:fb:01:8e:5b:a8:99:ad:
79:14:06:87:2b:62:51:ed:bd:e1:de:75:8b:67:2b:9f:a2:b3:
3e:48:61:f0:8c:fe:05:06:d2:6e:b4:41:cd:75:37:7c:06:c5:
36:07:ae:9b:2a:69:da:fa:ea:9e:c5:ad:18:bc:76:1f:ef:e9:
c1:73:4d:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 10:45:49 2025 by rpki-client