Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
File: r4poziKkwZ8XcA9izPi7bC2vUeE.mft (raw, json)
Hash identifier: TgfuJmLib3H/Ael85sHtvDd+XDYKfTXBqLtX2bTSM50=
Subject key identifier: B7:56:1C:11:04:06:74:67:BF:3D:27:A8:87:8C:84:C4:FC:E7:2A:A5
Authority key identifier: AF:8A:68:CE:22:A4:C1:9F:17:70:0F:62:CC:F8:BB:6C:2D:AF:51:E1
Certificate issuer: /CN=af8a68ce22a4c19f17700f62ccf8bb6c2daf51e1
Certificate serial: 019674FA352A88406DC2599A1972226A88A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4poziKkwZ8XcA9izPi7bC2vUeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
Manifest number: 0E8A
Signing time: Sun 27 Apr 2025 02:01:16 +0000
Manifest this update: Sun 27 Apr 2025 02:01:16 +0000
Manifest next update: Mon 28 Apr 2025 02:01:16 +0000
Files and hashes: 1: r4poziKkwZ8XcA9izPi7bC2vUeE.crl (hash: RyU6WGRV2BOxGp3E4ebwLUvTh8PsIt18O5FSVRo1lGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/r4poziKkwZ8XcA9izPi7bC2vUeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:fa:35:2a:88:40:6d:c2:59:9a:19:72:22:6a:88:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af8a68ce22a4c19f17700f62ccf8bb6c2daf51e1
Validity
Not Before: Apr 27 02:01:16 2025 GMT
Not After : Apr 28 02:01:16 2025 GMT
Subject: CN=b7561c1104067467bf3d27a8878c84c4fce72aa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:1a:03:cd:c3:1a:cd:c4:11:5c:e7:f5:0e:2b:
e7:fd:92:55:46:34:8c:c4:99:91:92:58:ee:96:6b:
08:22:47:95:50:8d:6f:7c:50:e6:35:5b:25:64:bc:
68:6b:40:1e:32:e1:7f:39:b8:c0:63:52:c1:c6:28:
58:e4:c5:52:de:12:e1:7d:50:a3:57:e2:42:8c:e2:
80:8d:5d:11:e2:d0:4d:a2:1a:fb:6e:86:58:66:a6:
ce:11:2f:dc:aa:63:27:60:23:eb:c3:8a:69:68:9d:
e2:06:d2:a8:01:ac:de:c8:d0:6e:1e:11:61:9a:db:
d8:64:92:23:c2:a3:b3:1a:95:4d:ff:a9:fd:dc:ea:
02:44:e1:ff:87:03:a9:10:13:fb:a7:33:14:16:dd:
48:76:55:b1:84:e4:d4:d5:4c:9d:6a:ff:87:f0:9b:
05:d8:81:fd:bd:cb:e7:8e:96:9b:74:f1:2a:30:66:
ce:4a:80:d8:41:d6:5a:a9:95:01:f3:48:cf:52:5a:
c4:3a:d3:34:2e:ef:6d:15:ca:ca:38:57:91:e2:1b:
9f:66:be:81:da:aa:be:78:20:71:14:34:74:82:14:
16:35:48:b8:3e:57:a0:89:8a:ee:e9:f5:77:98:de:
f7:8a:65:8c:7a:15:6e:8c:fe:27:b5:09:3e:f1:df:
ac:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:56:1C:11:04:06:74:67:BF:3D:27:A8:87:8C:84:C4:FC:E7:2A:A5
X509v3 Authority Key Identifier:
keyid:AF:8A:68:CE:22:A4:C1:9F:17:70:0F:62:CC:F8:BB:6C:2D:AF:51:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4poziKkwZ8XcA9izPi7bC2vUeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
fa:34:a6:0c:c0:0e:88:6a:97:c8:99:42:4a:03:17:e8:a5:2e:
74:78:94:eb:05:ed:eb:82:ef:cb:c4:f8:62:90:69:e4:26:e0:
96:90:af:c7:b1:63:e0:3a:b0:ec:34:9a:88:f7:cd:b2:4a:64:
bd:28:8d:27:de:69:5d:52:05:8e:f6:fc:fd:22:6d:e0:a4:3e:
ac:aa:b8:8b:e2:e0:59:f5:3e:69:c1:e9:73:ab:f5:b6:6b:86:
bd:58:02:64:b1:7f:41:b4:80:00:56:54:03:46:a7:9e:83:12:
16:69:15:5e:0f:84:4e:3e:b9:40:ce:8b:1c:0b:5a:2b:2b:6f:
f8:96:84:a9:fa:a7:e0:f9:37:c7:46:fb:19:ec:4c:2d:6d:e2:
20:69:ac:73:68:9b:f4:b6:89:aa:e2:7d:b7:c6:1a:5a:3c:cd:
75:5a:d4:3d:77:23:e6:4a:1e:d7:88:9f:55:8e:56:83:fe:b1:
c9:d6:42:30:76:80:fd:e8:c0:d7:23:bb:44:b6:62:e0:a8:61:
52:3d:3f:4f:b6:bd:f8:f5:0c:5e:f5:57:9d:bf:ee:9d:bd:87:
5f:d0:20:b4:ba:35:1f:88:08:a9:54:d6:87:04:d2:6c:b4:88:
e1:eb:e6:33:e1:a5:55:75:88:af:ec:b7:6b:99:8a:fa:f2:73:
1c:d5:3e:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 06:04:03 2025 by rpki-client