Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
File: aBHhJcs1cHby-jE4yT6aJoGxeJM.mft (raw, json)
Hash identifier: LS3gGI1MrQ/Edm1pQt3lwzkiD/WGFpIgVNbfKIi6jeQ=
Subject key identifier: 1C:DD:1E:5D:B0:7B:75:7C:9F:4B:B9:15:41:9B:11:FB:C5:68:1C:37
Authority key identifier: 68:11:E1:25:CB:35:70:76:F2:FA:31:38:C9:3E:9A:26:81:B1:78:93
Certificate issuer: /CN=6811e125cb357076f2fa3138c93e9a2681b17893
Certificate serial: 0196760D16ED733E49D6A604990CA46C8251
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aBHhJcs1cHby-jE4yT6aJoGxeJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
Manifest number: 150F
Signing time: Sun 27 Apr 2025 07:01:31 +0000
Manifest this update: Sun 27 Apr 2025 07:01:31 +0000
Manifest next update: Mon 28 Apr 2025 07:01:31 +0000
Files and hashes: 1: aBHhJcs1cHby-jE4yT6aJoGxeJM.crl (hash: gXX74Nqrfo6LMEvIkkhysD+PpgZKGvnlQZYRSgX+30E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aBHhJcs1cHby-jE4yT6aJoGxeJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0d:16:ed:73:3e:49:d6:a6:04:99:0c:a4:6c:82:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6811e125cb357076f2fa3138c93e9a2681b17893
Validity
Not Before: Apr 27 07:01:31 2025 GMT
Not After : Apr 28 07:01:31 2025 GMT
Subject: CN=1cdd1e5db07b757c9f4bb915419b11fbc5681c37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:32:34:18:10:a5:39:c7:9b:1e:0c:65:44:45:
67:41:7b:8a:3d:55:a1:8e:95:64:9e:92:04:02:d8:
f5:70:0e:78:02:14:55:a6:7a:43:e9:31:20:0e:80:
89:d0:34:6d:53:87:e5:c1:af:9c:1a:d5:06:42:06:
f4:5a:cc:90:85:06:b4:bf:db:f1:79:12:ed:6a:60:
e2:1f:ff:27:86:9c:52:a8:64:8a:58:cf:b6:44:67:
82:4e:f0:9f:fa:f2:eb:98:7f:cd:6a:12:8f:a3:18:
d4:62:f7:dc:19:0e:30:7f:b3:b2:45:59:dc:77:2a:
33:ba:e8:38:42:9c:fc:5c:0a:d5:56:74:f5:46:6f:
80:01:df:e1:b7:31:3c:bc:69:ea:6a:5a:ad:61:e4:
0c:fe:03:32:c7:f1:a2:00:e8:bd:1a:f6:22:77:65:
18:a4:11:1c:f8:b6:4c:a1:f7:2a:52:ca:c0:04:44:
ee:bd:db:c2:7a:9c:47:3c:3c:29:c5:42:30:88:1d:
cd:9e:47:4f:73:fb:a0:e4:02:46:4b:8a:02:4e:fb:
38:ee:0e:4e:03:bb:55:c4:61:56:d4:ff:90:27:49:
5b:63:a9:29:fe:0e:bc:ad:57:00:2b:83:86:34:46:
b6:99:07:70:46:bf:50:fd:82:8f:c5:46:14:98:f4:
5c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:DD:1E:5D:B0:7B:75:7C:9F:4B:B9:15:41:9B:11:FB:C5:68:1C:37
X509v3 Authority Key Identifier:
keyid:68:11:E1:25:CB:35:70:76:F2:FA:31:38:C9:3E:9A:26:81:B1:78:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aBHhJcs1cHby-jE4yT6aJoGxeJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:34:10:5d:5a:be:a8:31:f9:e8:f7:4b:a2:b1:53:9a:45:e9:
db:e1:ae:ea:db:1e:31:64:71:89:a8:da:c1:32:dd:39:4d:39:
4b:a5:92:bd:d3:4a:63:58:44:87:ae:b4:df:56:71:23:ca:cf:
a0:6a:cb:c6:67:97:72:70:9b:1a:5f:8f:83:4e:b0:31:cb:f7:
b1:3c:19:80:17:4a:ba:b2:d3:09:52:fe:8a:9f:9f:3d:fe:62:
8c:48:7c:ba:57:2c:49:c4:61:44:2e:b3:8d:13:b3:60:d1:76:
a1:78:0b:dd:29:b0:22:63:65:bb:ff:e4:3c:0b:13:c5:6a:a7:
b6:a3:5c:39:68:cc:fb:7f:1c:98:fc:d4:00:6e:c9:5c:52:da:
70:f6:19:39:4d:e5:23:c3:9f:58:89:4d:2c:c7:d4:87:5a:07:
4d:d0:2e:4a:3b:2d:b4:aa:dc:f6:13:56:42:e0:18:2a:f6:88:
c5:8c:25:b0:4d:83:07:0e:25:b1:af:70:5a:8e:27:3e:11:94:
04:00:68:69:d0:94:7e:b3:b9:75:fd:23:ac:df:1f:55:7b:7e:
94:2a:3c:ee:1c:ba:ab:01:6d:6e:b7:b2:05:4d:c3:a2:25:e2:
5e:6e:a5:00:fd:a9:c9:11:75:65:6a:0b:3b:c9:53:aa:cc:dd:
31:e8:84:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 13:07:45 2025 by rpki-client