Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.mft
File: 8CDLT5tfebnaa0gnutnFSiqAxTE.mft (raw, json)
Hash identifier: DclUDY0iAPYmu68JEUpCyUva/xK9fZLqIm4ISwDcsFE=
Subject key identifier: CF:58:42:02:40:5C:50:FC:37:3B:50:11:A3:79:B3:27:9E:DD:A0:37
Authority key identifier: F0:20:CB:4F:9B:5F:79:B9:DA:6B:48:27:BA:D9:C5:4A:2A:80:C5:31
Certificate issuer: /CN=f020cb4f9b5f79b9da6b4827bad9c54a2a80c531
Certificate serial: 019676E7FC35E06D859753D44447DB64F46E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8CDLT5tfebnaa0gnutnFSiqAxTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.mft
Manifest number: 0DA6
Signing time: Sun 27 Apr 2025 11:00:36 +0000
Manifest this update: Sun 27 Apr 2025 11:00:36 +0000
Manifest next update: Mon 28 Apr 2025 11:00:36 +0000
Files and hashes: 1: 8CDLT5tfebnaa0gnutnFSiqAxTE.crl (hash: ddcWWmeL1MFk1qurtCcMNs6lAZsr8hD7Az5lgD+R5VE=)
2: amkS5SoIvujCi9yce4d8VftUldc.roa (hash: +cELHuiQeJpKMXecyPF27q6ZAbek7zvwZNYTMIlI2SU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8CDLT5tfebnaa0gnutnFSiqAxTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:e7:fc:35:e0:6d:85:97:53:d4:44:47:db:64:f4:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f020cb4f9b5f79b9da6b4827bad9c54a2a80c531
Validity
Not Before: Apr 27 11:00:36 2025 GMT
Not After : Apr 28 11:00:36 2025 GMT
Subject: CN=cf584202405c50fc373b5011a379b3279edda037
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9d:0d:5d:57:20:a5:11:17:17:c6:e5:3f:b3:
88:ab:c3:16:0d:09:10:f8:7e:97:65:48:44:1c:db:
18:f8:1e:c4:cd:81:23:06:68:66:57:cc:04:4b:f1:
b5:da:14:d7:d5:b5:0c:8f:46:0c:de:11:27:d7:4e:
98:fa:ef:07:97:cf:cc:02:93:b6:22:f9:c3:0b:48:
f1:75:6a:24:db:28:dc:44:92:53:b4:ee:3e:80:f7:
7e:2b:4f:d7:83:73:b3:12:48:69:f5:d8:77:31:3c:
f3:d1:32:ee:42:8c:99:17:0d:70:42:f5:aa:38:4d:
4d:da:37:75:93:4b:55:27:87:b4:65:0e:2b:8a:eb:
f1:fe:c6:1c:2c:aa:1c:31:eb:01:c8:72:1c:8a:74:
fc:cc:f5:ae:30:82:7e:3c:72:61:d3:ca:1a:44:cd:
8e:02:06:58:ad:7a:99:1a:18:a0:6f:3b:cc:d6:23:
0c:d7:61:0e:fd:a1:2f:10:34:9f:ec:56:07:55:ed:
0d:72:e8:e3:c6:7c:45:eb:13:78:ec:20:5f:5e:d3:
aa:5e:3f:8e:d6:11:b8:fc:25:19:ab:4d:c6:5d:f7:
56:eb:37:a7:79:20:2e:69:8f:bb:00:5b:78:b4:e3:
60:fa:2a:e7:21:20:3d:f7:2e:cf:87:c6:b3:05:dc:
09:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:58:42:02:40:5C:50:FC:37:3B:50:11:A3:79:B3:27:9E:DD:A0:37
X509v3 Authority Key Identifier:
keyid:F0:20:CB:4F:9B:5F:79:B9:DA:6B:48:27:BA:D9:C5:4A:2A:80:C5:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8CDLT5tfebnaa0gnutnFSiqAxTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:73:d8:39:cf:e9:e3:44:ff:6a:81:15:31:a2:2a:2d:87:b7:
c5:56:e5:26:70:48:a8:88:98:41:37:5d:f5:64:26:5f:93:b7:
c2:ae:2e:e2:65:f2:8f:dd:6f:70:35:65:23:04:d4:ca:a5:a7:
af:f6:e0:45:0f:32:79:71:64:aa:5b:91:8a:e9:f0:3c:16:0b:
ca:05:03:f1:7f:9d:60:d6:a2:66:5f:78:2b:fe:fe:34:f6:e9:
55:e2:b1:26:0e:13:c4:3d:bf:68:2b:e3:70:28:98:23:fb:51:
73:37:81:df:bf:02:66:8e:76:0a:7c:2f:03:9b:02:cf:46:96:
a8:a4:ef:56:93:48:d0:06:7c:c1:f0:68:6a:64:4d:fc:4d:27:
48:77:9c:89:36:bd:63:ff:4d:61:7a:cf:c0:a1:f6:7b:03:ec:
95:3b:86:e8:52:5d:7c:a8:c6:7c:6a:63:a4:f6:c1:1f:80:36:
b5:e5:08:11:04:e5:2f:ff:43:e7:b6:3b:6f:d0:af:dc:29:98:
d0:37:3a:0f:f0:57:49:08:6a:25:8b:38:73:94:56:9b:1f:a0:
d5:48:cf:82:15:3c:76:7b:78:76:62:27:84:94:66:f2:55:68:
3b:a4:07:94:82:e0:e8:9e:6f:8c:ab:97:6e:e4:95:7a:9c:14:
62:02:de:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 15:39:25 2025 by rpki-client