Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
File: cub9InHd4QiG2X_xRwPlgaIEtl4.mft (raw, json)
Hash identifier: GqWI3W18yBrGXhz561h9968fpuHm1JjU4v+O6Jm8goE=
Subject key identifier: 00:B6:70:99:42:43:3D:CC:2C:25:31:2F:9B:F7:86:D1:AF:73:23:2B
Authority key identifier: 72:E6:FD:22:71:DD:E1:08:86:D9:7F:F1:47:03:E5:81:A2:04:B6:5E
Certificate issuer: /CN=72e6fd2271dde10886d97ff14703e581a204b65e
Certificate serial: 0196B258BF68B5788A5055B7E47E5F868778
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
Manifest number: 0502
Signing time: Fri 09 May 2025 00:01:22 +0000
Manifest this update: Fri 09 May 2025 00:01:22 +0000
Manifest next update: Sat 10 May 2025 00:01:22 +0000
Files and hashes: 1: cub9InHd4QiG2X_xRwPlgaIEtl4.crl (hash: yk2bqRlitXf1tvPPdv37l8ZgdXv2A6H5/O7OpFhevEc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b2:58:bf:68:b5:78:8a:50:55:b7:e4:7e:5f:86:87:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e6fd2271dde10886d97ff14703e581a204b65e
Validity
Not Before: May 9 00:01:22 2025 GMT
Not After : May 10 00:01:22 2025 GMT
Subject: CN=00b6709942433dcc2c25312f9bf786d1af73232b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:bb:b5:ac:05:ab:43:64:4d:9e:eb:cd:8c:4a:
04:2c:cd:eb:7e:38:64:af:c4:66:81:1c:53:57:bc:
06:78:8c:fe:6e:34:c4:6b:7d:7c:f6:53:53:e2:6e:
22:55:78:e3:88:78:e9:63:60:d1:22:82:ea:6d:3c:
3a:f8:45:6c:76:0a:94:79:e2:f2:82:f4:2a:20:a7:
0c:da:4f:db:13:73:14:b4:63:d6:06:9e:a6:8e:e0:
6b:ce:96:c0:8c:5b:24:68:c9:f3:16:0f:c1:17:d8:
9e:8f:59:2f:17:a2:aa:d1:12:6c:6d:30:19:54:b8:
4a:b8:4d:07:13:c3:c9:91:85:6b:99:3b:8e:22:87:
de:f5:a5:18:48:3b:a0:55:b6:4f:ea:58:61:ea:52:
d5:eb:3f:a2:17:ca:f4:e8:cb:63:e3:9e:24:47:a3:
15:2c:86:1d:22:4b:51:5f:e5:19:ce:58:4c:f9:10:
b9:09:6f:1e:d1:76:29:41:f7:5a:4b:52:56:f8:06:
7a:9c:70:94:e3:c7:cb:a6:af:ed:93:7e:8d:04:59:
c1:a4:b9:e1:40:4c:32:ce:6c:2e:df:ec:fa:13:ad:
4f:92:bf:19:8f:f7:dc:11:c1:6e:58:49:09:51:e0:
92:d8:e1:c6:53:d0:6b:ce:c2:d1:21:cf:c3:a6:af:
c7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:B6:70:99:42:43:3D:CC:2C:25:31:2F:9B:F7:86:D1:AF:73:23:2B
X509v3 Authority Key Identifier:
keyid:72:E6:FD:22:71:DD:E1:08:86:D9:7F:F1:47:03:E5:81:A2:04:B6:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:41:15:a3:20:25:35:2b:7e:25:fb:1f:40:3e:f5:9c:47:5d:
e6:f1:40:10:46:83:fa:4e:80:d9:09:a0:df:9d:7a:e1:da:0c:
fd:76:67:94:4b:1f:25:f1:f9:a9:18:d7:d6:9c:7a:67:99:b6:
f2:12:a9:90:0b:a5:4f:9c:83:62:f9:af:23:df:9b:6a:04:d7:
27:12:79:16:fd:ed:4f:2c:0b:b1:52:2d:af:67:32:0e:12:4c:
7e:16:5c:49:52:05:bc:8f:4f:c0:d4:b1:b6:f1:e5:03:38:47:
e4:35:a0:90:af:b6:db:a9:4f:e3:47:74:3c:db:cb:f7:e3:31:
e4:24:43:d1:f7:12:60:65:7f:96:4d:17:d2:a5:d7:ca:34:8a:
e7:ca:69:5d:c0:0f:aa:a4:42:aa:a7:3e:b3:7b:e7:af:02:81:
10:40:67:07:87:7e:a4:1d:0b:f4:44:dd:71:b0:11:10:45:b7:
34:ab:90:a9:94:44:c4:35:c3:4f:e3:6d:1a:10:07:cb:d2:b7:
94:ad:0f:65:6e:2d:f8:1e:ca:35:e1:9f:c2:00:f8:a8:3c:51:
9b:cd:f4:24:aa:f9:7f:c1:d3:f9:80:51:20:0d:c6:45:99:8c:
38:2f:fe:00:52:ec:b2:b2:d8:85:6d:0a:4f:ef:f7:3b:f1:7e:
56:ce:2b:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 02:53:28 2025 by rpki-client