Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/e736fa-81c8-475f-a73e-2bb0e1c0e3ef/1/Sbp0yMvh4n-spcZ-idP2I8Hwml4.mft
File: Sbp0yMvh4n-spcZ-idP2I8Hwml4.mft (raw, json)
Hash identifier: C8fQBDTBnc5Tgq+NPx1jtZrjMz72IWpG98mTtCMZHno=
Subject key identifier: 9A:3E:5E:93:25:D2:9A:47:D6:C8:7B:9C:17:7C:B8:5C:43:AC:E3:D9
Authority key identifier: 49:BA:74:C8:CB:E1:E2:7F:AC:A5:C6:7E:89:D3:F6:23:C1:F0:9A:5E
Certificate issuer: /CN=49ba74c8cbe1e27faca5c67e89d3f623c1f09a5e
Certificate serial: 01967B3264C34B9A428B41425F08F1F2F234
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sbp0yMvh4n-spcZ-idP2I8Hwml4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/e736fa-81c8-475f-a73e-2bb0e1c0e3ef/1/Sbp0yMvh4n-spcZ-idP2I8Hwml4.mft
Manifest number: 0FA7
Signing time: Mon 28 Apr 2025 07:00:22 +0000
Manifest this update: Mon 28 Apr 2025 07:00:22 +0000
Manifest next update: Tue 29 Apr 2025 07:00:22 +0000
Files and hashes: 1: Sbp0yMvh4n-spcZ-idP2I8Hwml4.crl (hash: Hgat2JZEPTpCJ8k9ZPMKjAWHg70/X6Nr9vklerDE5Y4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/e736fa-81c8-475f-a73e-2bb0e1c0e3ef/1/Sbp0yMvh4n-spcZ-idP2I8Hwml4.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/e736fa-81c8-475f-a73e-2bb0e1c0e3ef/1/Sbp0yMvh4n-spcZ-idP2I8Hwml4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sbp0yMvh4n-spcZ-idP2I8Hwml4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 07:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7b:32:64:c3:4b:9a:42:8b:41:42:5f:08:f1:f2:f2:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49ba74c8cbe1e27faca5c67e89d3f623c1f09a5e
Validity
Not Before: Apr 28 07:00:22 2025 GMT
Not After : Apr 29 07:00:22 2025 GMT
Subject: CN=9a3e5e9325d29a47d6c87b9c177cb85c43ace3d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d8:ca:27:57:b3:17:59:76:a1:62:b4:28:f1:
58:e1:97:06:5c:48:6d:67:2a:56:f8:0e:3f:96:f1:
68:1a:12:76:68:a4:8f:44:00:bd:e0:a5:25:0c:1e:
21:df:a8:7f:ba:93:2c:35:e2:78:6a:b1:82:0a:9a:
29:3f:8a:b4:df:96:b5:10:b1:cc:ee:5c:25:a4:35:
a9:d2:47:cc:1f:f9:a7:77:a0:40:c5:05:a3:81:d3:
bc:eb:b6:1c:32:4d:2b:43:3e:57:91:a1:d1:5e:a2:
cc:20:b2:cf:24:92:18:ee:0f:40:d2:68:d7:30:d5:
a4:17:ec:bb:07:b5:44:df:cf:21:2c:52:cc:d8:9b:
91:88:ca:94:fe:3d:d5:57:60:b2:9c:11:12:c6:5e:
f2:51:80:49:6c:78:51:af:c4:2c:8f:cf:a6:eb:11:
10:21:37:d1:43:91:9d:20:05:92:e3:de:67:25:48:
54:10:ea:39:b5:8e:3c:99:a0:20:e6:58:36:6b:12:
76:34:fe:41:1c:4a:52:44:c5:2d:7d:5d:9e:30:f2:
35:69:d7:7f:7f:75:be:0f:27:d0:03:56:0d:85:08:
76:c4:5d:e5:db:25:fe:a4:4f:7d:eb:7a:3e:61:9e:
f1:c7:62:7a:d6:ff:e1:26:74:ee:b3:a0:45:c6:99:
8b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:3E:5E:93:25:D2:9A:47:D6:C8:7B:9C:17:7C:B8:5C:43:AC:E3:D9
X509v3 Authority Key Identifier:
keyid:49:BA:74:C8:CB:E1:E2:7F:AC:A5:C6:7E:89:D3:F6:23:C1:F0:9A:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sbp0yMvh4n-spcZ-idP2I8Hwml4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/e736fa-81c8-475f-a73e-2bb0e1c0e3ef/1/Sbp0yMvh4n-spcZ-idP2I8Hwml4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/e736fa-81c8-475f-a73e-2bb0e1c0e3ef/1/Sbp0yMvh4n-spcZ-idP2I8Hwml4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:a4:7b:95:6d:4d:1a:be:7f:c8:30:6a:86:aa:07:5b:1b:2b:
9e:aa:f1:88:45:fe:31:e0:cf:bf:ce:78:55:87:1c:e7:d7:88:
05:f3:f9:94:da:6d:a3:0b:0b:2b:40:06:ec:1f:b7:70:e7:da:
bf:d3:5f:00:32:b6:6d:ee:23:46:32:8f:6e:97:12:b0:b8:c4:
7a:03:46:53:22:0e:fc:e3:d9:b1:1c:cc:75:6a:44:66:87:11:
74:0a:1e:42:8f:00:33:e3:1c:0e:ba:b5:6f:65:23:45:e9:41:
69:62:f1:43:52:67:d1:ae:02:5b:1a:b9:d3:8e:15:ad:f7:3b:
50:de:89:e4:ee:b7:d6:d5:13:7d:30:fd:93:99:27:cd:65:a2:
c0:5f:4d:f3:5b:b1:03:a0:54:e1:ff:49:5d:cb:64:43:00:1a:
33:52:27:5b:ec:28:e4:8a:bf:e1:c5:00:57:f6:4d:f9:8f:55:
06:ee:fa:dc:fa:05:f1:84:b4:6f:e2:0e:a7:12:24:de:0e:1b:
2f:dd:de:53:db:f8:ad:fa:19:1e:ad:8a:47:cc:7b:22:4c:c0:
b6:5f:c1:f0:9c:5b:68:42:a9:e3:c9:8a:d3:5a:db:37:b1:85:
70:d3:35:ba:d8:de:77:5f:46:8c:ab:f4:bc:76:63:bb:04:d5:
5f:78:18:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 13:18:12 2025 by rpki-client