Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
File: dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft (raw, json)
Hash identifier: PBUNoQn3NcRJrNmDO77CgHDn9G4GpUR//Wpf+z08jfk=
Subject key identifier: 0E:45:67:DC:B8:AD:54:66:3C:29:3D:2A:4D:AB:7E:4E:6A:E2:A5:B4
Authority key identifier: 76:07:F6:9D:EE:43:AC:01:D7:DF:EA:CA:9B:76:A2:40:EA:6E:F3:66
Certificate issuer: /CN=7607f69dee43ac01d7dfeaca9b76a240ea6ef366
Certificate serial: 0196CEE1DE57AF4341403BBCB8DCC6A6EB01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
Manifest number: 0368
Signing time: Wed 14 May 2025 13:00:31 +0000
Manifest this update: Wed 14 May 2025 13:00:31 +0000
Manifest next update: Thu 15 May 2025 13:00:31 +0000
Files and hashes: 1: dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl (hash: jEcY1gseN3XzbQRRHig1x8BFXqtUxF1n9H99Ius7QO8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 13:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ce:e1:de:57:af:43:41:40:3b:bc:b8:dc:c6:a6:eb:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7607f69dee43ac01d7dfeaca9b76a240ea6ef366
Validity
Not Before: May 14 13:00:31 2025 GMT
Not After : May 15 13:00:31 2025 GMT
Subject: CN=0e4567dcb8ad54663c293d2a4dab7e4e6ae2a5b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d9:6e:63:52:71:7e:9a:e3:f2:e7:96:35:9d:
f5:8e:24:88:8f:60:e5:ad:4b:a8:73:7e:0a:28:cd:
86:b4:99:ef:ed:e0:16:6c:ac:85:99:43:16:e4:64:
4c:c6:7c:d3:90:9b:27:14:bb:e4:36:ed:30:8f:15:
f5:a7:92:69:de:6a:33:04:8b:db:d3:1b:b2:10:63:
57:33:f1:c2:8a:1c:20:69:f4:88:d7:9a:bf:a7:29:
6a:e9:58:97:2a:c9:38:94:22:1a:56:e4:03:fe:48:
61:e8:3e:d3:fe:e4:ac:c7:cd:23:81:fb:4d:ce:b4:
a2:24:04:3a:39:81:22:7a:a3:dc:30:be:49:0f:c9:
b4:3b:73:fd:aa:9a:5f:b2:27:57:6c:af:da:84:38:
35:5f:18:7b:ee:0f:83:5b:eb:09:87:0e:dd:76:5c:
0c:c5:e6:51:97:aa:bb:be:df:5d:36:3c:5f:f4:eb:
47:0f:f3:d7:dd:e8:4a:b5:9f:69:c6:12:66:df:02:
df:d8:e4:a3:b1:3a:89:aa:d2:db:4a:de:b9:b0:d9:
d8:25:69:4d:b7:ad:29:a9:85:16:24:5d:af:63:b8:
e6:13:f3:ed:f0:3b:c6:6c:55:20:2f:5c:0c:af:10:
e7:b2:3e:b7:fa:6d:1c:7b:03:1f:77:a9:12:4a:b7:
2c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:45:67:DC:B8:AD:54:66:3C:29:3D:2A:4D:AB:7E:4E:6A:E2:A5:B4
X509v3 Authority Key Identifier:
keyid:76:07:F6:9D:EE:43:AC:01:D7:DF:EA:CA:9B:76:A2:40:EA:6E:F3:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:bb:6a:32:65:d4:68:fc:b8:c0:11:01:41:a3:64:14:0a:19:
e0:7e:12:3d:52:83:96:c6:43:9e:e1:f6:60:a9:0d:6d:2e:07:
4a:c2:91:d0:78:2c:4f:2f:70:94:9c:7c:1b:e4:ae:57:49:f3:
9d:cb:71:98:8a:30:68:63:c3:fc:0f:3d:41:41:54:f9:e0:87:
ab:bc:0f:ff:62:2c:cf:85:fe:4e:7d:a7:a5:29:e8:39:d0:30:
1a:44:d9:c9:5d:9f:7d:26:69:a8:bb:69:33:90:60:37:8a:be:
8f:66:34:af:4e:48:32:25:3a:f2:0a:17:68:e1:ed:6a:b4:0b:
42:bc:d9:88:c6:38:42:0c:bb:32:d1:99:cd:41:83:59:a2:4f:
81:fd:44:76:e4:2f:dd:0f:e9:22:00:68:14:a8:41:88:99:9e:
28:6e:86:e5:2e:28:b2:f9:0e:a9:49:71:ea:1f:4e:67:fc:ee:
7e:dd:5f:8f:39:4c:5c:a2:8a:8e:dc:09:b5:77:1e:ad:21:1e:
55:bb:72:05:ab:ee:cc:5a:7b:c8:fc:a1:e9:aa:16:b1:39:d3:
8a:71:1b:8a:2b:91:e3:50:9c:06:13:0f:a9:98:a8:7d:74:32:
d1:e5:91:14:16:7a:4c:d7:86:25:64:49:6a:de:f3:84:43:b3:
f8:05:4d:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 17:34:15 2025 by rpki-client