Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.mft
File: su7525PeEaAlPVqoxT7Mrg-cPTM.mft (raw, json)
Hash identifier: KeGdoRLDvfI8lxGdqc9tiELPqtanAqH0kAOFMh0vICI=
Subject key identifier: C1:24:66:17:BD:82:7D:77:2E:B5:2E:E7:6F:FA:DA:09:3A:03:5D:A4
Authority key identifier: B2:EE:F9:DB:93:DE:11:A0:25:3D:5A:A8:C5:3E:CC:AE:0F:9C:3D:33
Certificate issuer: /CN=b2eef9db93de11a0253d5aa8c53eccae0f9c3d33
Certificate serial: 0196745493B4D13D9EC78CD12EBF402EC9EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/su7525PeEaAlPVqoxT7Mrg-cPTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.mft
Manifest number: 0880
Signing time: Sat 26 Apr 2025 23:00:21 +0000
Manifest this update: Sat 26 Apr 2025 23:00:21 +0000
Manifest next update: Sun 27 Apr 2025 23:00:21 +0000
Files and hashes: 1: HmEXSyMzNsE6ZXWyBUFqSz_-J_I.roa (hash: QHoycNdEbZMja0gAvjEgeC3E4wx2OI9vc9S4Y873m1w=)
2: su7525PeEaAlPVqoxT7Mrg-cPTM.crl (hash: fmI3hLGk1ea9Rzt/JHzkoXL1CrZ8k3qe+3+//pFMKDY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.mft
rsync://rpki.ripe.net/repository/DEFAULT/su7525PeEaAlPVqoxT7Mrg-cPTM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 23:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:54:93:b4:d1:3d:9e:c7:8c:d1:2e:bf:40:2e:c9:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2eef9db93de11a0253d5aa8c53eccae0f9c3d33
Validity
Not Before: Apr 26 23:00:21 2025 GMT
Not After : Apr 27 23:00:21 2025 GMT
Subject: CN=c1246617bd827d772eb52ee76ffada093a035da4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:da:c2:a1:f4:87:fe:32:b4:25:73:ff:6e:0d:
35:36:0b:93:5e:98:ab:eb:82:a7:6f:b7:db:cf:52:
29:f5:3e:1c:12:17:59:3e:a5:2f:2f:a1:56:bb:de:
46:c5:34:ac:48:6e:a7:07:e0:86:a9:c8:7d:98:31:
dd:53:1d:7e:f6:9d:ae:d4:56:74:88:fa:3b:7f:49:
e9:76:e2:56:e8:bd:fb:f3:0d:49:91:1d:e8:88:f4:
1e:82:94:4b:f8:7a:ff:29:51:30:6e:07:1a:dc:0c:
39:ba:91:8e:2d:b3:8c:ee:1b:da:64:77:ce:86:5f:
67:62:a0:47:56:d7:6a:2a:aa:85:b4:93:54:04:db:
00:af:e4:0d:05:ab:99:ec:74:ca:9b:e8:20:52:02:
5e:25:ea:d3:ff:a7:c5:ca:78:92:2c:84:32:08:1b:
4b:bd:99:37:20:c0:0a:cb:0a:15:0b:1c:fd:44:65:
75:ab:78:2a:46:66:bf:a8:58:f3:be:ee:f3:84:08:
75:a3:37:a5:21:f1:67:a2:fe:bd:ca:d0:4f:e7:61:
25:11:50:79:9f:97:6f:79:dc:8a:cd:9b:5b:8e:55:
c4:5f:a0:b4:8a:b7:49:c2:14:6a:62:71:61:06:a1:
3b:65:91:4b:49:a5:e2:e6:6c:ca:13:78:da:c9:e8:
27:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:24:66:17:BD:82:7D:77:2E:B5:2E:E7:6F:FA:DA:09:3A:03:5D:A4
X509v3 Authority Key Identifier:
keyid:B2:EE:F9:DB:93:DE:11:A0:25:3D:5A:A8:C5:3E:CC:AE:0F:9C:3D:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/su7525PeEaAlPVqoxT7Mrg-cPTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/73e90d-0553-4fe6-96de-deef8d154950/1/su7525PeEaAlPVqoxT7Mrg-cPTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:59:d6:02:a0:03:40:70:dc:28:8c:aa:e9:17:7d:25:51:e5:
72:f2:05:d5:a7:0d:b4:c9:26:29:08:f5:4c:47:2d:60:cd:8d:
1c:97:2e:bb:24:46:f1:0c:1f:80:a7:e1:27:da:63:e0:08:f3:
40:91:dd:02:0d:1a:18:fb:a1:54:c9:58:e2:b5:af:40:0d:65:
c3:f5:83:7a:8d:7a:95:ee:78:d9:a7:3e:87:46:86:6f:b7:f8:
91:9d:0d:33:92:c8:84:44:4e:c3:6d:26:e6:14:65:f8:d0:f1:
fa:e0:80:c6:b7:e8:85:86:be:89:38:2f:e7:78:3f:2a:af:a1:
1b:d7:e0:6a:b1:62:f5:30:c0:79:5f:5f:b0:9c:3d:51:44:93:
84:2e:f2:0c:95:4b:e9:7c:2b:67:0a:95:30:9a:42:70:e3:6e:
52:1a:97:44:42:76:bc:e4:0d:e0:b1:c9:d1:4a:76:52:06:be:
5c:ad:92:ae:10:46:f1:57:d0:f8:1f:ba:33:99:ed:23:e1:85:
09:74:78:63:d8:7e:af:55:ab:3e:f6:8b:49:aa:85:57:ff:fb:
dd:6c:28:4e:58:d4:4e:57:69:7f:1f:e9:98:12:02:ed:c9:44:
ae:40:1e:a2:f7:7a:46:2a:b0:97:4e:c3:5b:96:dd:6c:a7:79:
e6:08:3f:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 09:15:20 2025 by rpki-client