Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/71f422-e092-4189-8d3c-8e258efedffa/1/ckWEKSHz0CDU2AReUrsQ_PV-r28.mft
File: ckWEKSHz0CDU2AReUrsQ_PV-r28.mft (raw, json)
Hash identifier: +CFgDYZR9oxxlxKGYgFvILgjhTlj+Emb+bfW+mz07Tw=
Subject key identifier: 7B:17:27:69:A4:F5:8F:56:EC:CD:93:81:35:B0:27:92:7C:C5:88:2B
Authority key identifier: 72:45:84:29:21:F3:D0:20:D4:D8:04:5E:52:BB:10:FC:F5:7E:AF:6F
Certificate issuer: /CN=7245842921f3d020d4d8045e52bb10fcf57eaf6f
Certificate serial: 019678684985124BD258E62975E02351164E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckWEKSHz0CDU2AReUrsQ_PV-r28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/71f422-e092-4189-8d3c-8e258efedffa/1/ckWEKSHz0CDU2AReUrsQ_PV-r28.mft
Manifest number: 0E8C
Signing time: Sun 27 Apr 2025 18:00:22 +0000
Manifest this update: Sun 27 Apr 2025 18:00:22 +0000
Manifest next update: Mon 28 Apr 2025 18:00:22 +0000
Files and hashes: 1: ckWEKSHz0CDU2AReUrsQ_PV-r28.crl (hash: fcxjtX414XsO7jL+/g4YMSTERYl0nMyVUeCHlo9yH3M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/71f422-e092-4189-8d3c-8e258efedffa/1/ckWEKSHz0CDU2AReUrsQ_PV-r28.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/71f422-e092-4189-8d3c-8e258efedffa/1/ckWEKSHz0CDU2AReUrsQ_PV-r28.mft
rsync://rpki.ripe.net/repository/DEFAULT/ckWEKSHz0CDU2AReUrsQ_PV-r28.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:68:49:85:12:4b:d2:58:e6:29:75:e0:23:51:16:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7245842921f3d020d4d8045e52bb10fcf57eaf6f
Validity
Not Before: Apr 27 18:00:22 2025 GMT
Not After : Apr 28 18:00:22 2025 GMT
Subject: CN=7b172769a4f58f56eccd938135b027927cc5882b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:72:bd:cd:74:0c:3d:e6:57:c4:78:35:16:94:
e6:13:22:ec:8b:77:2d:72:16:36:3a:3e:d6:a3:e3:
95:39:b0:fb:58:24:72:50:0c:66:92:20:9b:b0:84:
02:78:18:e2:1e:09:5a:02:d9:5d:22:2d:7b:b6:3d:
41:1e:6a:6f:c4:9f:40:60:1a:47:07:95:6c:79:2c:
9d:b7:e0:56:10:db:7b:85:74:f6:80:b3:b8:ea:11:
f2:d3:a3:81:ae:73:e9:30:6e:28:6c:fa:8e:0f:ca:
6e:ca:08:a7:ec:5d:10:24:cf:f1:07:97:b4:f4:15:
6c:1e:1d:07:7c:44:4a:78:d3:94:a0:3d:87:b6:12:
4c:d9:a5:7c:42:ee:a1:69:1e:3c:38:4f:91:41:1f:
80:34:34:7f:6b:93:ae:d4:37:86:05:d3:9f:bf:05:
3d:76:52:7f:2b:bc:40:78:b9:79:29:04:1b:d1:00:
88:5d:d0:aa:c5:24:dd:1b:49:d2:a0:1a:6c:a9:da:
72:fc:ae:ab:93:28:2f:89:10:a0:c4:0b:45:1d:bb:
46:58:f8:f3:5b:f4:1d:0e:60:e7:f7:12:d9:05:1d:
4d:5b:1f:3c:4e:8f:c4:a9:99:78:82:ab:2a:be:d8:
16:18:c8:4b:11:4d:19:52:57:ea:43:82:50:56:1f:
9b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:17:27:69:A4:F5:8F:56:EC:CD:93:81:35:B0:27:92:7C:C5:88:2B
X509v3 Authority Key Identifier:
keyid:72:45:84:29:21:F3:D0:20:D4:D8:04:5E:52:BB:10:FC:F5:7E:AF:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckWEKSHz0CDU2AReUrsQ_PV-r28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/71f422-e092-4189-8d3c-8e258efedffa/1/ckWEKSHz0CDU2AReUrsQ_PV-r28.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/71f422-e092-4189-8d3c-8e258efedffa/1/ckWEKSHz0CDU2AReUrsQ_PV-r28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:8c:12:67:82:14:4c:04:af:f1:09:76:57:3b:2e:3f:8c:09:
3f:1e:65:e8:ec:97:c6:5b:98:db:51:84:06:16:05:2e:d4:33:
0a:5a:8e:b1:82:3f:90:39:ac:ca:3c:1a:64:a7:66:5f:65:e6:
d7:7f:69:03:5e:b3:84:e1:3f:6e:ae:15:64:47:2e:de:31:14:
43:eb:62:4f:95:31:71:d8:37:46:08:80:b5:de:9b:c6:fe:26:
a4:b6:85:bb:63:00:bb:64:f4:d4:35:3c:db:ea:b9:fe:e1:bc:
08:0a:82:41:d6:98:15:a0:22:3c:d5:fc:38:b1:e0:52:86:02:
b2:70:f1:d2:5f:0e:41:ad:6b:30:47:89:2a:b9:f2:40:75:1a:
0e:46:28:df:22:43:c0:8f:27:17:ef:10:48:40:ad:3d:c6:90:
8e:46:90:e4:31:59:c9:d9:bc:eb:6e:ec:99:ea:de:fd:9c:1d:
a9:aa:80:91:0c:8c:3a:c3:e5:e6:76:49:77:3f:63:e0:1c:fb:
75:14:63:83:cd:98:68:12:fe:02:65:51:27:b8:87:37:3b:80:
a8:f3:df:37:68:e9:e5:55:3b:3c:a7:ff:4c:53:75:8d:bf:a4:
17:82:1a:bd:e4:56:56:f0:30:82:c2:a7:13:15:fb:61:11:97:
9e:5d:13:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 23:02:47 2025 by rpki-client