Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
File: 97FD9k1RC6MSl8uuVoL9QbLIEZY.mft (raw, json)
Hash identifier: rJIWMsjVLp6ZHIWHbKhpP2FpLoV+Jq3VnDrdqLxZnR0=
Subject key identifier: EA:1F:A6:71:DF:1B:9C:55:84:03:E4:49:EC:AB:13:CD:1A:62:1A:D8
Authority key identifier: F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96
Certificate issuer: /CN=f7b143f64d510ba31297cbae5682fd41b2c81196
Certificate serial: 0196C15DBE6541F4CA67D2F4B311CFB12BF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
Manifest number: 08D2
Signing time: Sun 11 May 2025 22:01:08 +0000
Manifest this update: Sun 11 May 2025 22:01:08 +0000
Manifest next update: Mon 12 May 2025 22:01:08 +0000
Files and hashes: 1: 97FD9k1RC6MSl8uuVoL9QbLIEZY.crl (hash: EPCLn9O8x+lARvTYSKyZWaPqP9oDiYGgNNm1nhTdsh8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:5d:be:65:41:f4:ca:67:d2:f4:b3:11:cf:b1:2b:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7b143f64d510ba31297cbae5682fd41b2c81196
Validity
Not Before: May 11 22:01:08 2025 GMT
Not After : May 12 22:01:08 2025 GMT
Subject: CN=ea1fa671df1b9c558403e449ecab13cd1a621ad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:4a:b1:73:e1:ab:c1:99:ab:c1:4c:fa:2d:2e:
fa:73:35:f8:5f:f2:2d:87:fc:da:f4:02:2e:30:2c:
44:f4:45:51:65:38:b2:eb:de:d0:59:43:00:6e:0f:
be:e8:2e:c6:d3:74:98:6b:fe:f2:03:3b:28:80:37:
a0:25:86:0a:21:9f:a1:0a:91:11:a9:8e:b2:9d:e6:
f1:b3:e4:0a:be:7c:95:89:26:95:12:8c:98:5b:99:
63:50:34:3e:e6:a4:0e:69:b1:c0:ca:8e:24:82:bb:
d6:cb:a3:cc:0d:ad:b9:fd:c0:5a:49:e0:fe:d1:ca:
b8:17:59:b9:b0:bb:dd:9e:1d:2a:c1:bd:c5:8c:5f:
a5:71:72:7d:a1:60:d4:2c:e8:81:ce:8a:8e:27:39:
b8:61:2d:96:be:88:fc:67:85:6f:bd:1d:da:2d:60:
73:1d:6e:7c:07:9e:a0:b9:c1:62:a1:74:36:5f:e8:
4d:15:4f:8b:74:fc:84:2e:38:c8:7f:7a:54:78:36:
8d:9f:b8:44:cf:16:5b:df:be:3c:19:ee:b3:f0:14:
8e:fd:ad:79:e2:de:e6:4c:a1:be:f6:48:1d:f9:20:
35:95:8e:bd:da:8f:d4:89:76:4a:06:fd:08:c6:85:
11:93:c9:95:d0:80:8c:6b:95:da:6e:17:36:dd:68:
c8:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:1F:A6:71:DF:1B:9C:55:84:03:E4:49:EC:AB:13:CD:1A:62:1A:D8
X509v3 Authority Key Identifier:
keyid:F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:70:00:eb:37:07:74:39:17:3d:e6:d9:97:a8:7c:56:ca:fd:
f3:14:ee:75:76:78:23:99:e4:cc:49:96:4b:39:d5:c1:c4:b4:
43:86:13:0e:e7:78:c4:84:35:cb:1b:e0:75:06:7c:6d:0a:59:
db:e8:c7:f4:33:b3:25:ae:f0:df:79:54:51:21:4b:50:df:61:
83:d5:4f:96:31:1e:61:6c:79:22:ea:89:a5:d3:23:64:d5:45:
a5:31:e7:6d:2f:93:74:79:36:40:21:22:3a:44:cb:df:9e:b7:
1e:82:54:73:22:c9:a3:c6:5e:c9:1f:af:1d:5c:f2:cb:15:b0:
ae:f5:4d:9e:44:cd:04:f0:9d:27:9f:05:cc:98:6e:df:60:b4:
8b:e6:b4:ec:79:7e:e9:f7:c8:f6:0d:59:4e:52:64:24:63:40:
7f:8d:61:08:6e:49:c0:fb:34:20:50:8f:1b:d7:6e:39:36:d2:
f0:71:69:78:ee:61:8d:c2:8a:cd:25:45:fd:9e:dc:d9:d0:96:
b0:97:b8:6f:5a:79:d2:92:17:63:10:e8:63:ca:ca:c1:5a:7a:
18:12:e6:39:16:0f:6d:37:96:f6:0d:f1:70:c5:69:40:e3:a1:
26:a3:d7:33:78:0d:16:58:c9:56:7c:47:3c:c7:0c:d0:f9:5f:
a6:9c:a9:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 00:00:00 2025 by rpki-client