Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.mft
File: ofM7gYxgo6zGnzmgsuDuqrttk-A.mft (raw, json)
Hash identifier: L7+gJLhgDBiRrYNKkt4vI7sSL8042DN8P+Pq82MYoPQ=
Subject key identifier: F9:C8:E6:9B:16:50:51:CD:D8:07:17:6F:41:78:A8:99:0D:C0:21:DC
Authority key identifier: A1:F3:3B:81:8C:60:A3:AC:C6:9F:39:A0:B2:E0:EE:AA:BB:6D:93:E0
Certificate issuer: /CN=a1f33b818c60a3acc69f39a0b2e0eeaabb6d93e0
Certificate serial: 0196BEC9C66F8B11A148EADC1F83B663303B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ofM7gYxgo6zGnzmgsuDuqrttk-A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.mft
Manifest number: 117B
Signing time: Sun 11 May 2025 10:00:16 +0000
Manifest this update: Sun 11 May 2025 10:00:16 +0000
Manifest next update: Mon 12 May 2025 10:00:16 +0000
Files and hashes: 1: ofM7gYxgo6zGnzmgsuDuqrttk-A.crl (hash: a+RGqjKgnMf8cYEHQxKH20uI4bC6/FSKATFm4eszX1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.mft
rsync://rpki.ripe.net/repository/DEFAULT/ofM7gYxgo6zGnzmgsuDuqrttk-A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 10:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:c9:c6:6f:8b:11:a1:48:ea:dc:1f:83:b6:63:30:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1f33b818c60a3acc69f39a0b2e0eeaabb6d93e0
Validity
Not Before: May 11 10:00:16 2025 GMT
Not After : May 12 10:00:16 2025 GMT
Subject: CN=f9c8e69b165051cdd807176f4178a8990dc021dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c3:84:b9:9f:a7:d6:f1:b4:eb:ed:4f:3f:61:
fe:ea:6b:1e:47:7a:3b:09:50:35:1d:86:cf:06:89:
a8:51:c5:b3:df:d0:4b:36:ec:36:0d:d6:10:70:20:
f4:e0:33:bb:1a:f3:32:2d:2a:05:3f:04:90:88:2a:
03:32:09:cd:48:59:fb:5c:30:c5:bb:43:21:2f:61:
87:25:21:f0:95:b2:d8:fc:d2:78:67:98:9a:92:34:
de:69:e7:62:37:c9:b1:39:3e:c4:ed:d8:14:d5:8a:
2d:82:f5:c6:3c:8e:65:b3:7e:69:4f:c0:ec:30:aa:
dc:69:fa:67:fb:88:a5:73:f6:89:d3:c4:43:3b:fb:
b9:2c:e5:a4:9d:6c:30:85:b7:63:cf:9c:80:f6:ba:
af:7c:30:e5:3e:9b:76:6b:f4:83:3f:bd:bf:d8:3c:
17:68:60:25:8e:ca:c6:45:78:38:b6:a4:6a:9c:26:
13:03:33:40:f3:a0:8e:9b:aa:50:58:56:74:0b:31:
27:f8:b0:4d:00:e8:3a:38:7b:5b:c5:82:0c:93:79:
eb:1b:5b:1c:e4:42:bb:95:a1:85:92:e7:af:ed:b3:
ca:91:b1:56:20:b8:95:40:cc:90:9f:d9:44:f3:06:
4b:ca:bc:53:16:e9:82:b3:fb:0a:41:89:a3:78:db:
4a:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:C8:E6:9B:16:50:51:CD:D8:07:17:6F:41:78:A8:99:0D:C0:21:DC
X509v3 Authority Key Identifier:
keyid:A1:F3:3B:81:8C:60:A3:AC:C6:9F:39:A0:B2:E0:EE:AA:BB:6D:93:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ofM7gYxgo6zGnzmgsuDuqrttk-A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/72255a-109f-434a-a7dd-e152ddf5ab06/1/ofM7gYxgo6zGnzmgsuDuqrttk-A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:e1:c8:8a:75:2b:56:1d:a8:41:42:20:f5:a4:f1:7c:c0:0c:
6f:0c:66:48:52:52:ad:18:79:8f:f0:bb:78:fd:1e:90:ab:4e:
54:63:67:6b:95:32:4e:fb:34:77:06:1c:78:43:3f:60:28:84:
d6:c5:c9:99:d3:77:91:60:99:5c:99:88:a2:9c:6c:e3:ae:b2:
8c:6b:82:67:f3:96:19:8b:aa:d3:d7:98:2a:55:7d:7f:f3:d6:
e6:7b:9d:53:f9:0d:85:6f:f7:44:b3:29:f9:7c:78:2e:79:78:
00:2f:d3:91:a8:60:92:61:65:44:79:c0:e8:6e:9a:61:8c:f7:
c2:21:4d:c9:55:ce:55:ba:2c:1a:4a:ba:ec:bb:c4:8d:b5:8f:
3c:83:a1:92:bb:ba:4b:9d:de:05:07:75:ce:20:32:05:4d:94:
b4:7e:de:ac:13:8c:1b:98:bb:00:3b:25:e7:ba:fa:5f:16:f6:
e3:dc:f0:cb:36:fc:81:80:9f:2c:2f:ac:74:f5:0a:b1:c3:e6:
32:7a:04:d9:a6:a4:e3:25:47:4e:f6:c8:f2:25:7b:4e:d5:f7:
19:d4:34:3c:9c:95:d3:72:58:6b:f4:86:64:0a:48:d0:dc:d8:
27:53:f1:1f:33:c5:ce:b5:46:b7:c4:cb:14:c1:0c:55:8c:2c:
e5:5d:5e:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 19:00:30 2025 by rpki-client