Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft
File: 0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft (raw, json)
Hash identifier: /QQoKmbauBzgeTYG8smUtZ9u9myKUyaxg2Ei5iZ4WEg=
Subject key identifier: 32:83:FC:49:BB:65:DA:E0:6A:25:E8:B4:83:B9:3F:CF:5D:7F:FE:98
Authority key identifier: D1:3B:BC:92:A2:FA:90:A0:A1:12:2B:83:30:34:6F:9A:61:71:D9:76
Certificate issuer: /CN=d13bbc92a2fa90a0a1122b8330346f9a6171d976
Certificate serial: 0196BB91FBF8BB81F8B23AF757052D91BF00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Tu8kqL6kKChEiuDMDRvmmFx2XY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft
Manifest number: 1031
Signing time: Sat 10 May 2025 19:00:28 +0000
Manifest this update: Sat 10 May 2025 19:00:28 +0000
Manifest next update: Sun 11 May 2025 19:00:28 +0000
Files and hashes: 1: 0Tu8kqL6kKChEiuDMDRvmmFx2XY.crl (hash: wBrPRdkweqT01cjNG9ueMeHfzbHR5SemSGtozlbmIj8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Tu8kqL6kKChEiuDMDRvmmFx2XY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 19:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:91:fb:f8:bb:81:f8:b2:3a:f7:57:05:2d:91:bf:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d13bbc92a2fa90a0a1122b8330346f9a6171d976
Validity
Not Before: May 10 19:00:28 2025 GMT
Not After : May 11 19:00:28 2025 GMT
Subject: CN=3283fc49bb65dae06a25e8b483b93fcf5d7ffe98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:fe:a2:ae:2b:0e:5a:9d:d1:d3:af:07:a9:bd:
1a:a6:67:c0:a1:d7:a6:f7:f5:5a:f3:2e:96:5f:55:
4b:7b:e1:49:7c:50:72:75:19:f1:0b:6e:c8:4a:26:
4d:10:c2:56:92:78:f9:b1:07:11:18:d3:d6:1d:ee:
19:e5:f2:ab:98:69:32:ca:04:b6:1f:52:18:ec:46:
ec:40:36:e9:66:b2:4b:19:ef:e8:05:c7:66:2c:ae:
db:21:85:12:77:71:8c:bb:23:0d:7e:8e:2b:a6:33:
79:29:7e:86:01:60:48:ac:dd:a0:d2:bd:53:19:59:
fa:9c:cc:61:9a:ba:d8:92:6a:58:31:dd:42:d7:ca:
82:11:d0:c5:04:2c:9a:1d:e0:96:14:30:9e:8e:d7:
5a:b8:8b:2b:4b:7e:cc:6e:41:5d:91:45:ac:12:ff:
7e:95:85:fd:80:ba:aa:9a:4f:fc:5d:dd:5c:44:a7:
d2:f3:96:b8:ca:d1:79:88:ed:47:bf:7c:f7:03:a6:
d6:83:61:29:7a:12:d2:c0:8b:62:c2:d1:af:d8:8f:
e1:75:7d:f5:08:63:82:bb:a6:a5:4c:40:33:71:75:
0f:c8:23:67:e5:a4:d4:52:69:e3:50:f2:13:ab:82:
03:a3:28:15:da:65:bc:57:ae:0f:6e:26:14:a7:85:
4a:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:83:FC:49:BB:65:DA:E0:6A:25:E8:B4:83:B9:3F:CF:5D:7F:FE:98
X509v3 Authority Key Identifier:
keyid:D1:3B:BC:92:A2:FA:90:A0:A1:12:2B:83:30:34:6F:9A:61:71:D9:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Tu8kqL6kKChEiuDMDRvmmFx2XY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/2566c2-be52-4b42-a84c-cc3384ad81a1/1/0Tu8kqL6kKChEiuDMDRvmmFx2XY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:9a:e4:f4:c8:f1:62:bd:7d:da:f6:04:6d:66:26:ca:8b:dd:
a5:fa:ff:9c:b4:c0:50:49:bb:44:3e:b7:23:bc:62:af:df:c2:
02:d4:75:e6:d7:49:02:4f:74:70:75:13:cc:36:14:23:50:0a:
6f:ae:97:9f:a2:76:bf:82:f6:4f:68:16:d5:b1:5c:a8:3a:9b:
06:30:73:05:04:8f:c2:c5:9e:2f:70:15:d0:32:89:44:01:c1:
1b:55:2a:18:05:cc:b1:1b:33:35:b9:18:f6:4b:16:82:30:f4:
60:16:d0:2e:3b:4a:52:ad:43:9a:40:57:85:ce:44:04:19:53:
ce:f5:26:62:8b:ed:93:58:af:5c:36:2f:da:67:6d:6f:67:82:
80:20:dd:d2:01:80:e3:0a:26:41:19:79:4d:55:3a:d3:2d:2a:
01:3f:7a:a1:72:c7:70:4a:d2:97:25:c8:1b:0e:a4:82:0b:27:
eb:bd:1e:1b:dd:1f:1b:53:65:89:85:94:e2:ca:c6:a8:25:f6:
d9:82:4e:52:20:92:23:4e:0d:ad:d5:21:0b:b4:00:96:79:c9:
b6:b6:a9:53:3f:58:89:e0:10:3a:ac:5d:8f:17:14:13:8d:24:
b6:75:ea:a5:c9:88:67:3d:fa:c7:96:70:aa:89:65:ec:47:df:
19:5a:18:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 02:27:27 2025 by rpki-client