Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.mft
File: GyceKuYih3VSuJ28R016EwWEpI4.mft (raw, json)
Hash identifier: 1TqhFm658Y71TqMiomr1FCW6jCuRcaTUeWFjMHHdCNg=
Subject key identifier: 8D:95:4E:AF:49:CF:45:DB:DC:4C:3F:95:CA:CE:08:31:5C:75:C5:70
Authority key identifier: 1B:27:1E:2A:E6:22:87:75:52:B8:9D:BC:47:4D:7A:13:05:84:A4:8E
Certificate issuer: /CN=1b271e2ae622877552b89dbc474d7a130584a48e
Certificate serial: 019674FA41CB67AC45B4D6C89C0815A5C909
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GyceKuYih3VSuJ28R016EwWEpI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.mft
Manifest number: 091B
Signing time: Sun 27 Apr 2025 02:01:20 +0000
Manifest this update: Sun 27 Apr 2025 02:01:20 +0000
Manifest next update: Mon 28 Apr 2025 02:01:20 +0000
Files and hashes: 1: GyceKuYih3VSuJ28R016EwWEpI4.crl (hash: IXINCdgO6RCpvjPh8SJeIuXWab/tdoSq006YeZqWMFk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.mft
rsync://rpki.ripe.net/repository/DEFAULT/GyceKuYih3VSuJ28R016EwWEpI4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:fa:41:cb:67:ac:45:b4:d6:c8:9c:08:15:a5:c9:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b271e2ae622877552b89dbc474d7a130584a48e
Validity
Not Before: Apr 27 02:01:20 2025 GMT
Not After : Apr 28 02:01:20 2025 GMT
Subject: CN=8d954eaf49cf45dbdc4c3f95cace08315c75c570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a0:1b:1c:b1:b9:6a:4c:60:42:89:d7:eb:2c:
48:bf:8d:1f:93:89:ea:0a:b1:89:62:6c:5b:ef:74:
09:ab:25:56:fb:cf:45:47:5a:50:18:ee:a9:76:20:
60:f9:4d:d9:7d:8b:2b:0d:36:d9:75:9c:19:5f:ce:
8a:15:25:7c:48:04:9a:4b:69:8f:1c:06:42:ed:97:
88:8e:0c:ca:8e:06:26:82:86:54:3e:2e:a8:41:36:
0d:b6:5b:df:a3:59:bc:9c:6a:f8:ee:cd:f9:c1:07:
eb:f5:8c:c5:8c:2f:98:87:b7:10:c8:cd:2a:f7:73:
86:2e:e6:92:63:90:87:47:9c:7a:9d:44:30:f8:4e:
18:64:81:df:b7:8a:69:60:40:6d:3d:5c:c4:fb:d5:
ee:8c:22:5d:da:88:cf:11:95:fd:8d:22:5b:e7:76:
cb:ea:8f:a5:50:2d:4f:32:0b:23:47:50:6f:ac:4c:
06:a5:56:aa:d3:b0:9f:96:19:86:5b:12:3a:bd:2f:
a5:dc:40:cf:1e:f6:18:f4:fb:5e:3c:fb:0c:77:56:
63:08:c9:ba:80:81:bd:6f:53:b6:7b:51:85:b9:68:
8c:cf:a4:ff:df:97:be:e0:95:d6:3e:34:0c:ad:fa:
3e:d9:c2:27:17:06:a3:38:c4:1c:56:d5:c5:e5:6f:
c7:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:95:4E:AF:49:CF:45:DB:DC:4C:3F:95:CA:CE:08:31:5C:75:C5:70
X509v3 Authority Key Identifier:
keyid:1B:27:1E:2A:E6:22:87:75:52:B8:9D:BC:47:4D:7A:13:05:84:A4:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GyceKuYih3VSuJ28R016EwWEpI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:75:d7:fb:62:82:8a:3d:e6:05:b0:e9:49:bb:49:fa:b5:79:
5b:1d:c2:56:0c:9f:fb:cc:02:6a:c5:eb:95:9e:c0:0a:ad:c6:
f3:c8:84:75:1a:bb:fa:c7:ea:f3:a8:9f:c8:7a:14:a5:5d:e5:
8c:31:ad:b5:b7:fc:62:0a:12:d3:94:1c:b5:6a:2b:89:a0:db:
d0:00:d6:a8:cf:3b:2d:5f:3c:98:cd:ac:c1:0e:53:94:23:2f:
d5:09:f8:c0:8f:e7:fb:8c:6e:f3:db:a2:b5:79:3b:75:bd:44:
ae:d9:f7:1f:b7:04:d8:8c:f6:ed:8c:b7:bb:ce:bc:dc:70:3f:
4b:cd:25:58:36:72:fb:97:56:44:ac:9f:de:25:bc:bf:c7:0a:
7d:cb:c5:cd:25:45:1d:ea:a2:85:b2:3b:f1:25:59:9a:50:b7:
0d:54:cb:f9:61:01:89:54:72:14:29:4b:ff:59:84:70:66:e6:
98:d9:2a:01:59:25:ff:7c:31:98:88:6a:8d:1d:e0:eb:1d:37:
92:4e:59:42:ec:e8:df:85:42:4c:74:31:85:a9:49:e5:43:10:
18:dd:24:c1:33:46:67:ba:d8:b0:fc:36:ea:83:dd:a1:fd:a6:
9a:39:b7:6c:fd:3d:31:0d:e0:47:bf:5b:2f:ec:11:5c:ce:54:
8e:6e:04:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 07:46:59 2025 by rpki-client