Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
File: 1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft (raw, json)
Hash identifier: 4HdgwLk53S0GWrKZa89vCWhvShYF08pg6/TjKjZLEU4=
Subject key identifier: 2B:E1:48:4D:54:70:20:12:A5:DF:8B:09:7C:7E:41:38:1C:C6:10:8A
Authority key identifier: D4:2C:C4:02:67:E3:59:2E:1B:52:F0:F0:09:6C:B1:F2:F0:AF:16:7D
Certificate issuer: /CN=d42cc40267e3592e1b52f0f0096cb1f2f0af167d
Certificate serial: 0196821105254E9FB0777C400E36FD6D900F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
Manifest number: 022D
Signing time: Tue 29 Apr 2025 15:01:15 +0000
Manifest this update: Tue 29 Apr 2025 15:01:15 +0000
Manifest next update: Wed 30 Apr 2025 15:01:15 +0000
Files and hashes: 1: 1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl (hash: rJoIeO5jc9MkoD/A7sf7qftACh4qn2hHGp8QT+yAnnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:11:05:25:4e:9f:b0:77:7c:40:0e:36:fd:6d:90:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d42cc40267e3592e1b52f0f0096cb1f2f0af167d
Validity
Not Before: Apr 29 15:01:15 2025 GMT
Not After : Apr 30 15:01:15 2025 GMT
Subject: CN=2be1484d54702012a5df8b097c7e41381cc6108a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:dc:b6:c4:fd:a1:0c:93:42:4c:da:79:63:a5:
97:f6:21:c8:da:9d:19:07:3e:15:78:59:c2:7b:66:
6b:76:e4:28:fd:0f:a1:1c:d6:c8:e4:c9:06:08:87:
17:21:50:5f:00:ec:40:14:40:77:13:d6:97:f3:5c:
ae:55:e5:a1:29:e8:ed:95:34:e2:8b:49:d4:9c:1d:
b4:92:f3:fc:5f:06:d1:3c:c5:77:b7:5a:b9:d2:42:
9d:b5:fd:f3:c9:6d:b4:49:92:42:45:87:34:2c:90:
22:cf:39:9f:c8:54:df:8a:01:80:44:27:24:d8:e9:
c2:1d:3c:24:29:98:83:0a:2b:45:68:4a:7b:ef:a8:
28:ac:a6:8d:73:bd:cb:fc:4a:35:fb:12:ca:4b:13:
d0:b7:8f:ae:c9:14:52:97:7b:6d:e2:7b:d0:b9:77:
57:bb:53:82:0a:a5:ff:9f:d6:a2:ab:ad:47:8b:0b:
ee:9b:df:d6:42:e1:b2:63:10:f0:9c:6c:bc:98:12:
9c:5a:eb:36:db:eb:e8:27:cf:61:3b:ba:28:5f:3c:
00:e3:99:c0:b0:9e:03:74:66:3f:a8:ad:ce:2f:a0:
f7:20:51:11:42:f9:15:11:41:dc:70:50:76:06:78:
fa:26:8a:b3:d3:90:98:f7:40:c9:bf:8b:c8:69:7e:
ca:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:E1:48:4D:54:70:20:12:A5:DF:8B:09:7C:7E:41:38:1C:C6:10:8A
X509v3 Authority Key Identifier:
keyid:D4:2C:C4:02:67:E3:59:2E:1B:52:F0:F0:09:6C:B1:F2:F0:AF:16:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:3a:55:81:73:ff:77:ed:ab:f4:85:7a:00:56:f7:6a:97:19:
07:53:fa:a9:6c:c1:92:ee:d7:b1:40:de:56:3a:da:61:1a:45:
f3:cc:16:46:95:1d:be:78:7f:06:9d:fc:f6:fb:a6:f8:4a:55:
1f:77:e7:ad:e2:2c:48:9d:55:5b:c0:84:8b:30:8e:f7:22:18:
17:89:c2:86:7f:90:ed:3f:c1:c4:c2:2f:bc:23:cb:51:c0:fb:
ab:40:40:b1:86:6d:c1:f0:6a:2e:f9:6c:4a:3a:c5:c4:5b:d4:
02:12:5d:63:51:df:6f:22:58:80:83:8e:de:e6:d4:1d:68:62:
0a:4c:32:cd:cc:04:ec:53:0b:26:12:47:58:22:3c:83:93:84:
61:74:d5:ee:9b:43:19:2b:89:e4:8a:42:0a:ec:fe:66:88:58:
be:df:99:d4:ec:2e:85:db:b8:30:f3:20:76:3b:9a:b8:75:28:
c8:44:26:f3:73:e8:25:f5:ef:9d:db:b3:ff:7c:8c:3a:3d:e1:
88:ca:d8:22:5d:ec:2e:6c:48:9c:6b:f7:4c:eb:76:23:ab:b5:
6e:a6:45:0b:5f:70:01:79:b2:89:58:48:2f:46:36:0d:91:09:
24:33:22:31:00:6c:7a:9b:8a:42:92:07:c3:3d:01:2e:66:3d:
ee:3d:66:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 00:14:38 2025 by rpki-client