Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft
File: s_sdIFBvVM-5oflFH6EKiP87L2Q.mft (raw, json)
Hash identifier: iQOIsq0mRoK4McLBMJqJb5w0QdigRxHB9Olb7wqXreE=
Subject key identifier: AF:45:20:1A:0A:98:12:B6:0F:54:BB:C4:32:07:31:27:4D:80:44:07
Authority key identifier: B3:FB:1D:20:50:6F:54:CF:B9:A1:F9:45:1F:A1:0A:88:FF:3B:2F:64
Certificate issuer: /CN=b3fb1d20506f54cfb9a1f9451fa10a88ff3b2f64
Certificate serial: 01967A56B55FFD993ADD0A7F81E9E45E2F89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s_sdIFBvVM-5oflFH6EKiP87L2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft
Manifest number: 0BB6
Signing time: Mon 28 Apr 2025 03:00:24 +0000
Manifest this update: Mon 28 Apr 2025 03:00:24 +0000
Manifest next update: Tue 29 Apr 2025 03:00:24 +0000
Files and hashes: 1: s_sdIFBvVM-5oflFH6EKiP87L2Q.crl (hash: iy7OkK+Lv9X4FDYqa8nEhg8Y+SFaEVOXI0jCT4NSOvU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/s_sdIFBvVM-5oflFH6EKiP87L2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 03:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7a:56:b5:5f:fd:99:3a:dd:0a:7f:81:e9:e4:5e:2f:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3fb1d20506f54cfb9a1f9451fa10a88ff3b2f64
Validity
Not Before: Apr 28 03:00:24 2025 GMT
Not After : Apr 29 03:00:24 2025 GMT
Subject: CN=af45201a0a9812b60f54bbc4320731274d804407
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d8:11:f0:41:66:5a:77:6e:10:3c:22:03:12:
70:56:e4:15:cd:2b:cc:50:3a:e1:21:06:a6:0a:ad:
ac:35:6c:98:fa:c2:4a:a9:b3:12:5d:48:bd:c8:1f:
9f:2c:5a:1f:f2:0c:46:64:18:d2:e1:18:65:fb:a4:
c9:c3:f4:7b:36:56:7e:33:8c:05:e8:b7:74:ac:45:
77:bf:f6:6f:ef:36:59:e1:04:97:b0:cd:c0:fb:d7:
91:53:31:ed:65:b3:ec:70:bf:97:65:cc:2a:7f:61:
d4:f8:f8:ba:43:97:f1:f9:a0:99:47:ec:ef:00:5f:
70:f0:54:a0:24:ab:a8:e5:62:19:ea:c7:fc:23:10:
be:97:2a:92:52:e2:bb:60:d5:8f:ab:b0:4b:01:26:
cb:2e:7d:ed:a5:81:42:17:80:7f:b1:60:80:31:0c:
85:64:bb:fa:2f:ea:8e:0e:a8:34:5a:32:0d:ba:3d:
e3:13:74:67:d2:3f:81:f7:7d:97:8d:43:76:6f:3b:
54:57:f8:da:53:de:e2:b2:3e:17:78:9b:ab:69:24:
a7:90:58:89:d1:b7:e3:26:0a:93:4b:08:87:08:a7:
ef:fd:b9:ab:d8:ea:0f:c5:e2:29:4b:f1:26:63:ab:
52:5d:c0:d9:10:05:1f:2d:0d:0b:46:22:df:43:f3:
d1:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:45:20:1A:0A:98:12:B6:0F:54:BB:C4:32:07:31:27:4D:80:44:07
X509v3 Authority Key Identifier:
keyid:B3:FB:1D:20:50:6F:54:CF:B9:A1:F9:45:1F:A1:0A:88:FF:3B:2F:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s_sdIFBvVM-5oflFH6EKiP87L2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c42df5-4f92-447d-bd25-86d6e2f46642/1/s_sdIFBvVM-5oflFH6EKiP87L2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:d9:36:7d:a9:6a:97:5f:1d:da:c4:b3:74:b8:94:3e:e4:db:
85:f8:32:09:df:e6:29:66:2b:a8:f1:c5:18:3e:9c:ad:ec:49:
f7:62:91:a3:72:b7:b9:be:07:95:51:c7:80:ad:b2:cc:8b:c2:
0c:60:6d:5b:a9:3b:0b:74:a1:cb:ae:6e:54:69:9b:f4:05:d4:
be:1c:14:38:a6:dc:0e:f6:08:9f:a3:48:75:4e:03:ca:2e:ff:
51:2a:00:a5:86:ea:7a:1e:9f:a0:4a:a7:fe:6b:09:b1:2a:51:
69:68:63:4d:19:1a:d1:5b:24:93:a8:b9:7f:64:e0:4f:cf:a3:
59:26:84:a5:ef:3e:38:82:e2:85:df:a9:ea:ff:ae:6e:88:52:
6d:83:0f:e8:9a:7a:68:46:86:d4:fd:bc:d8:68:01:17:98:f1:
0a:9d:6e:d5:36:41:fd:8e:4e:bd:66:7f:79:9a:8d:1e:19:64:
27:c4:41:e4:cb:df:0c:54:2b:17:90:f7:85:e7:0a:a3:41:02:
99:13:a7:5a:b1:1d:6a:4f:f6:9a:f0:4b:4c:90:6c:bc:49:62:
b0:ff:41:a7:4a:15:3f:20:94:9f:5d:18:85:ba:70:ad:cc:54:
9a:7d:16:a3:3d:c3:5f:07:47:09:59:a5:3a:62:b6:7f:52:78:
96:c7:15:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 10:41:31 2025 by rpki-client