Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
File: v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft (raw, json)
Hash identifier: MuChX6d8w+1r/oYQBM7HxpakNhKbqKeLUe4nz/+yg/Y=
Subject key identifier: E2:37:2D:FB:9F:40:1C:CB:89:32:E0:44:A1:B9:A7:7A:2B:B6:AE:6B
Authority key identifier: BF:BC:8A:86:68:F5:0F:DA:F4:94:F5:28:A2:CA:AF:D0:2B:7C:31:AD
Certificate issuer: /CN=bfbc8a8668f50fdaf494f528a2caafd02b7c31ad
Certificate serial: 0196BC6E85A6706E6AC203B4E2D343D1DF1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
Manifest number: 01FC
Signing time: Sat 10 May 2025 23:01:21 +0000
Manifest this update: Sat 10 May 2025 23:01:21 +0000
Manifest next update: Sun 11 May 2025 23:01:21 +0000
Files and hashes: 1: v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl (hash: V8hGYHZkjM7u6lw+CwLPN4jk4Zvbg/t+9RJEH/zMwco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:6e:85:a6:70:6e:6a:c2:03:b4:e2:d3:43:d1:df:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfbc8a8668f50fdaf494f528a2caafd02b7c31ad
Validity
Not Before: May 10 23:01:21 2025 GMT
Not After : May 11 23:01:21 2025 GMT
Subject: CN=e2372dfb9f401ccb8932e044a1b9a77a2bb6ae6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:31:64:b4:06:9c:04:6e:ed:76:d5:22:44:41:
47:68:9d:1e:5e:4e:25:05:4a:b2:b0:53:df:df:6f:
ee:c4:30:6e:c7:49:c8:8a:d2:1a:15:ee:3d:14:6c:
c5:8c:fc:30:c7:ed:d6:92:20:6a:96:20:fc:c0:9c:
9c:d9:c8:56:85:60:9a:7d:d5:0c:0c:8b:fb:80:e0:
a3:ca:2a:2b:4d:59:a4:89:b5:e9:93:a5:fc:13:fe:
5a:dc:71:5b:40:f9:3f:be:0d:26:f4:65:c9:23:56:
39:82:ac:e6:18:84:e3:a1:d5:1b:f9:5f:07:83:56:
f9:01:6f:4c:a2:e6:29:a5:55:b8:f8:1c:22:2f:9b:
fe:94:8a:22:24:88:f5:94:58:86:5b:f9:27:c6:e8:
04:78:d6:78:02:95:21:5f:9e:d3:69:0d:76:3b:62:
f9:14:60:93:1d:87:d9:bc:a2:2a:8b:ea:8f:4b:f0:
bb:bc:8d:f6:89:90:fe:7d:57:a6:d5:e4:30:90:9f:
e8:ab:9e:bd:b9:9e:28:52:e1:90:53:d5:5a:2d:fe:
bd:20:72:a8:95:aa:fd:bd:81:6f:c9:ef:49:7f:88:
2f:40:99:c2:8c:a3:d6:8f:eb:4d:b8:59:18:d9:5c:
bd:bb:7a:9d:67:30:5d:de:4e:ca:d1:7d:73:ce:fa:
54:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:37:2D:FB:9F:40:1C:CB:89:32:E0:44:A1:B9:A7:7A:2B:B6:AE:6B
X509v3 Authority Key Identifier:
keyid:BF:BC:8A:86:68:F5:0F:DA:F4:94:F5:28:A2:CA:AF:D0:2B:7C:31:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:18:a9:dc:37:d3:0b:3b:00:fe:6e:ac:5f:0f:bb:c4:48:80:
30:4d:71:ea:17:14:53:bb:8d:7c:a9:a5:d0:95:6a:30:34:41:
29:e4:e1:a3:8c:92:74:79:b2:39:bb:e4:83:a2:76:ea:a3:3a:
6d:86:e0:dc:4b:9d:2c:94:d1:d0:ab:28:f0:db:b2:9d:99:13:
4e:0f:74:6e:9a:c8:82:cc:3c:bd:90:95:45:32:61:56:d3:aa:
02:92:29:bc:55:a8:0a:97:e1:6d:24:ca:a0:58:6a:46:82:19:
ef:c7:43:5c:42:5d:ca:a7:22:6a:9e:50:7c:cf:61:d8:74:cc:
7c:f0:22:a3:16:e1:1d:c3:f9:83:fd:d1:25:7e:23:c4:01:f9:
69:c0:cf:74:ac:a9:0d:6f:cb:35:f9:d0:60:ea:b7:86:0d:cd:
ba:76:70:c6:50:f4:5f:eb:e9:3c:dd:a3:fd:6d:10:94:17:1b:
3b:48:e8:e2:58:04:63:1c:76:b9:2c:33:83:2e:fa:0b:03:30:
40:19:0f:d3:f3:0d:78:61:81:fe:d2:e6:89:a3:a9:18:a8:60:
e3:e6:49:07:98:2e:04:23:34:31:00:71:f5:4f:fe:68:b1:4a:
0e:5b:4e:57:08:6c:e0:a7:7b:97:d9:87:91:c1:45:51:1d:d5:
2b:c2:51:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 00:49:15 2025 by rpki-client