Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.mft
File: 8QMX8k1xpRbXUEO-kPWr4_ocklk.mft (raw, json)
Hash identifier: ngbvxadf/ydepZdutso1ctCtDxfMXoIIj+vTipCbxXE=
Subject key identifier: 4B:4B:8C:65:8B:B4:E9:58:D3:3F:5F:1A:08:A3:16:12:8A:8A:02:1C
Authority key identifier: F1:03:17:F2:4D:71:A5:16:D7:50:43:BE:90:F5:AB:E3:FA:1C:92:59
Certificate issuer: /CN=f10317f24d71a516d75043be90f5abe3fa1c9259
Certificate serial: 01968F952A2642A5964DA8F7C02110BD1E22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8QMX8k1xpRbXUEO-kPWr4_ocklk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.mft
Manifest number: 10D0
Signing time: Fri 02 May 2025 06:00:39 +0000
Manifest this update: Fri 02 May 2025 06:00:39 +0000
Manifest next update: Sat 03 May 2025 06:00:39 +0000
Files and hashes: 1: 8QMX8k1xpRbXUEO-kPWr4_ocklk.crl (hash: A6pjnB6sjL/vvZtGG6IqMmhbJ1uYao1TrEPvHqx0IfI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.mft
rsync://rpki.ripe.net/repository/DEFAULT/8QMX8k1xpRbXUEO-kPWr4_ocklk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8f:95:2a:26:42:a5:96:4d:a8:f7:c0:21:10:bd:1e:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f10317f24d71a516d75043be90f5abe3fa1c9259
Validity
Not Before: May 2 06:00:39 2025 GMT
Not After : May 3 06:00:39 2025 GMT
Subject: CN=4b4b8c658bb4e958d33f5f1a08a316128a8a021c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:79:2c:71:20:21:f6:5d:d9:fa:b1:cc:0b:bc:
ff:16:fa:30:e6:24:d4:08:03:86:80:06:18:26:64:
ab:0a:12:64:43:9c:75:82:79:ca:ad:c8:53:90:1f:
84:73:94:6e:0e:cb:3e:81:67:87:e4:ab:22:73:b9:
02:96:9c:f9:fc:d5:49:45:03:01:69:a7:e8:a3:f0:
82:c8:5f:1c:84:b6:b1:95:b0:1c:62:09:6c:a8:bf:
82:f2:4d:ab:d2:d3:37:43:05:09:d0:6f:17:d2:53:
8e:54:80:f7:b5:63:52:17:49:d4:6b:c7:2f:ed:2b:
cd:88:6b:78:2f:5e:ef:e1:1b:11:a5:8a:aa:ac:96:
8a:b6:b9:1b:da:45:ee:5c:fc:30:de:f2:b6:85:3a:
d7:74:f2:28:54:b1:44:2c:11:db:44:18:ef:a4:ee:
e8:5a:b5:6b:5a:22:36:9a:d6:0f:51:0f:fd:70:e2:
74:bd:08:06:f7:5d:02:da:dd:73:67:45:60:3a:58:
83:7b:91:d2:d8:87:c1:ea:54:65:70:5f:80:1f:19:
c6:24:f2:f5:f1:c7:79:62:aa:e2:e3:5a:f0:53:fc:
12:8c:bd:0c:cc:ee:c8:eb:5d:85:a9:54:ad:ec:1b:
4a:e9:f0:ed:db:f6:7d:13:ef:37:bb:68:a5:53:d1:
83:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:4B:8C:65:8B:B4:E9:58:D3:3F:5F:1A:08:A3:16:12:8A:8A:02:1C
X509v3 Authority Key Identifier:
keyid:F1:03:17:F2:4D:71:A5:16:D7:50:43:BE:90:F5:AB:E3:FA:1C:92:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8QMX8k1xpRbXUEO-kPWr4_ocklk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/135a03-e11a-470a-846c-66d49df53ef1/1/8QMX8k1xpRbXUEO-kPWr4_ocklk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:40:ab:19:60:40:ad:49:1c:bc:51:aa:f5:43:2e:6e:59:9f:
cf:b9:31:36:f3:80:5c:69:38:a3:e2:3d:26:e0:ee:d5:5c:74:
3c:18:02:03:88:c0:76:7a:37:c4:ed:c4:e9:4f:f7:99:c2:16:
06:e6:a7:10:d3:18:3c:e1:b4:e5:ac:87:34:46:a7:91:23:c6:
71:12:0d:d7:74:44:df:59:ae:50:24:0e:0d:2d:f0:bb:99:36:
03:12:78:0c:97:96:14:5e:34:50:fe:6c:35:a6:81:24:59:68:
e2:e2:5b:ed:77:6a:10:8b:45:24:bf:63:3f:bc:e9:07:ba:b4:
91:9f:c9:23:0e:20:2f:48:97:fc:c5:6e:17:3a:af:39:a6:dc:
b7:50:50:e6:08:7e:dd:14:66:a9:27:54:a8:ec:31:82:e5:8f:
db:ee:d1:80:9a:7f:51:ed:bf:ee:3c:0f:fd:87:10:16:bb:68:
8c:1c:1d:17:31:25:89:6c:bc:5c:c3:98:58:8e:e4:e9:cc:22:
d3:d1:fc:09:1a:e5:8d:98:9c:84:9f:60:a0:60:d5:ce:75:5b:
7e:1f:39:d5:36:ac:40:94:89:64:35:36:42:02:11:b9:fa:c3:
b6:11:39:a3:92:61:0e:d4:61:ed:9d:cd:78:9d:7b:30:6c:7c:
11:b4:e7:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 12:05:27 2025 by rpki-client