Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
File: 1MiI65YKABkAwnleiq-iaPYC2EI.mft (raw, json)
Hash identifier: g5f+PZJa46BaBDqxl9fQKUWX674gDw+RTivGf3f9pOs=
Subject key identifier: 6C:D3:24:86:EC:E9:A8:01:AB:4E:EC:6F:9D:29:34:C5:BB:42:35:28
Authority key identifier: D4:C8:88:EB:96:0A:00:19:00:C2:79:5E:8A:AF:A2:68:F6:02:D8:42
Certificate issuer: /CN=d4c888eb960a001900c2795e8aafa268f602d842
Certificate serial: 019681A30A30AEDE3335294C72CF3F7F84B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
Manifest number: 0A21
Signing time: Tue 29 Apr 2025 13:01:07 +0000
Manifest this update: Tue 29 Apr 2025 13:01:07 +0000
Manifest next update: Wed 30 Apr 2025 13:01:07 +0000
Files and hashes: 1: 1MiI65YKABkAwnleiq-iaPYC2EI.crl (hash: ipzwWSxFCyjUGz50sl0j22driVodIPMN7U1r9vM+eGw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 13:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:a3:0a:30:ae:de:33:35:29:4c:72:cf:3f:7f:84:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4c888eb960a001900c2795e8aafa268f602d842
Validity
Not Before: Apr 29 13:01:07 2025 GMT
Not After : Apr 30 13:01:07 2025 GMT
Subject: CN=6cd32486ece9a801ab4eec6f9d2934c5bb423528
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0d:24:bc:60:0d:7a:f1:8f:c8:68:e4:90:c6:
63:f6:6a:d8:fb:ea:d9:e3:7e:38:6f:90:f1:17:62:
e7:3f:d9:c6:0b:52:6b:b5:db:b5:dc:2d:58:74:63:
b1:0a:57:eb:be:53:de:e5:b1:79:e4:b5:37:2e:5b:
86:bb:ab:3b:ad:93:87:95:19:3a:08:0c:fb:ac:a8:
09:34:29:be:43:65:f6:95:93:31:22:ad:70:3f:c0:
c1:6f:a3:25:b2:30:59:b1:9e:f4:19:b8:c4:f3:85:
ad:0b:2b:e0:79:99:53:af:96:3d:e9:b1:b2:85:f9:
81:21:a2:ab:5c:e5:ca:91:dd:70:e1:42:dc:bb:56:
67:58:b9:70:29:4a:92:a9:6e:79:ca:4f:72:45:c6:
58:d9:37:77:22:62:a4:f8:fb:67:e7:4f:5e:d6:0e:
77:24:e4:05:fa:c5:c9:dd:6f:ca:b5:97:db:80:5e:
ca:1b:b6:b7:13:30:13:40:10:68:c8:3f:e7:da:90:
50:7b:06:db:9b:a1:d2:10:3f:9d:3f:18:04:6c:fb:
c0:87:db:2c:06:02:fb:36:e5:83:7f:77:00:3e:ec:
c8:26:a6:8a:cd:50:42:77:72:cc:bf:d2:6e:6f:6e:
46:7d:ac:c3:18:81:a5:60:55:fc:66:d9:16:47:01:
e1:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:D3:24:86:EC:E9:A8:01:AB:4E:EC:6F:9D:29:34:C5:BB:42:35:28
X509v3 Authority Key Identifier:
keyid:D4:C8:88:EB:96:0A:00:19:00:C2:79:5E:8A:AF:A2:68:F6:02:D8:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:47:5b:2a:17:8d:57:25:ff:a8:52:7a:3b:b5:06:2d:a3:ca:
9b:95:e2:c7:a4:60:4c:17:ba:82:b0:fb:cf:1b:5c:48:e0:b9:
20:41:6a:de:30:64:6e:3d:a1:d2:87:72:67:79:5d:3d:46:99:
84:c5:62:49:b5:6e:a1:0b:8a:28:85:a4:a1:28:17:29:b1:c8:
82:58:01:87:4b:1f:23:72:2e:53:ff:c3:ce:f3:50:e5:25:64:
01:ed:eb:34:96:e4:21:51:83:19:c7:ce:1b:1c:27:24:c2:90:
56:7b:dd:27:41:b5:e2:0c:ac:87:62:ae:7a:44:0f:ca:0a:76:
3a:2c:da:0e:9e:f7:d1:65:3e:46:cb:be:4b:fe:a2:6a:72:aa:
1b:29:e0:41:7f:10:d5:c9:bd:1e:1b:9f:9d:67:50:4e:e9:4a:
0c:1b:60:0e:b0:9a:14:9f:31:e3:50:8b:7d:f7:18:78:bb:45:
8c:82:ca:6a:68:b9:a4:9d:d9:51:e7:0d:f7:1b:cb:d1:0d:45:
22:f6:a3:5a:c3:98:a9:2b:01:0d:72:59:e2:ff:61:d2:07:4e:
8f:25:6f:65:eb:3a:d6:22:43:43:f1:a9:17:9c:02:72:3e:e8:
dd:f1:9e:5a:f0:88:8e:45:c4:6e:3a:17:7b:7a:03:91:31:61:
6e:1b:fa:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 16:22:17 2025 by rpki-client