Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
File: rARWSrE5dm8d7mSLNaChi702IQk.mft (raw, json)
Hash identifier: XFPT6+rM2TFWXkCo36IHZZuKixx1d8h3Gcliqn2uJIU=
Subject key identifier: A5:B4:66:4C:9C:0B:2E:22:29:56:BC:B0:9C:CE:17:2F:FF:57:29:FF
Authority key identifier: AC:04:56:4A:B1:39:76:6F:1D:EE:64:8B:35:A0:A1:8B:BD:36:21:09
Certificate issuer: /CN=ac04564ab139766f1dee648b35a0a18bbd362109
Certificate serial: 01967868AC5F9672700DE9E536A0D5B8B6EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
Manifest number: 150D
Signing time: Sun 27 Apr 2025 18:00:47 +0000
Manifest this update: Sun 27 Apr 2025 18:00:47 +0000
Manifest next update: Mon 28 Apr 2025 18:00:47 +0000
Files and hashes: 1: rARWSrE5dm8d7mSLNaChi702IQk.crl (hash: udEOWvJaekbj4hfuZPuw0gm6k+lHv6F2ncHVKAJ7MY8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:68:ac:5f:96:72:70:0d:e9:e5:36:a0:d5:b8:b6:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac04564ab139766f1dee648b35a0a18bbd362109
Validity
Not Before: Apr 27 18:00:47 2025 GMT
Not After : Apr 28 18:00:47 2025 GMT
Subject: CN=a5b4664c9c0b2e222956bcb09cce172fff5729ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:38:7a:fd:02:d7:dc:2a:31:de:28:c3:58:58:
66:5f:31:81:4e:8d:ef:eb:de:f2:d1:e8:d1:66:11:
59:26:83:8e:09:9c:19:30:cc:7b:da:52:a8:0c:6c:
64:28:3b:d4:9f:c8:71:33:9d:aa:b8:c7:1d:65:fd:
6f:35:53:27:8e:42:b3:cb:94:0c:cb:b5:5c:21:d7:
df:53:4b:72:9f:7c:19:4c:b4:0f:aa:b6:86:de:3f:
48:e9:84:20:fd:78:5d:4d:87:96:d2:e9:e1:39:88:
a8:a0:26:31:4b:64:df:41:92:9e:c4:d7:30:8c:dd:
f5:cc:7a:84:1f:1f:d1:6f:0e:e6:cd:7d:08:1b:37:
ae:05:15:ba:c0:9a:32:cf:ee:cf:0c:c9:6d:47:64:
49:8e:47:7f:c3:e5:98:72:db:1d:75:c3:a2:e3:17:
86:64:be:1a:85:22:1d:2b:c7:40:2a:b4:d1:63:af:
25:ec:83:e6:55:d9:05:10:37:fe:d5:22:43:b5:76:
ed:a0:5e:30:da:a3:9c:59:b0:77:17:20:e4:96:09:
50:db:44:ca:76:e9:92:a5:21:38:a8:d8:37:ef:cb:
d3:8a:83:57:8a:11:b9:a4:db:46:2c:13:e7:dc:56:
fb:7b:eb:a8:53:8b:09:5e:ce:53:8e:1e:47:74:48:
e0:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:B4:66:4C:9C:0B:2E:22:29:56:BC:B0:9C:CE:17:2F:FF:57:29:FF
X509v3 Authority Key Identifier:
keyid:AC:04:56:4A:B1:39:76:6F:1D:EE:64:8B:35:A0:A1:8B:BD:36:21:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:94:3a:dc:28:98:8d:2f:8b:05:d0:78:94:d6:03:c6:7c:2e:
71:78:6d:78:54:e3:db:da:fe:de:17:3c:2e:f3:f3:44:5d:d7:
d4:7a:0d:90:fd:65:d6:71:7f:a1:0a:82:24:20:2d:4f:0d:d0:
b2:82:d9:21:f5:c7:fe:4c:3b:c9:80:d8:6e:da:f6:a8:e5:b3:
80:40:21:95:20:a6:61:96:26:0a:d2:29:aa:53:fd:4d:7c:77:
4a:70:b5:12:9e:f0:87:95:91:57:c1:66:4d:b6:2e:0f:44:3e:
6d:3b:63:4c:65:b9:d8:d7:66:08:68:24:1f:b1:f2:31:06:ff:
1c:68:c0:43:54:26:ee:07:43:4b:b0:75:61:af:f3:89:30:77:
de:46:f7:b5:88:ec:fd:b2:a5:ca:2d:61:a4:7e:12:8e:74:ee:
b7:ee:d7:24:18:66:da:d9:b3:e1:b5:be:00:4c:b7:60:12:93:
23:b3:6c:4d:3b:f0:7b:71:0f:ab:b4:25:ef:a9:d0:7d:d3:4c:
07:9d:9d:f5:b0:18:e6:45:c1:92:14:18:15:69:a5:b1:54:80:
61:b3:64:17:ca:85:dd:ec:b5:90:20:27:cd:7e:d3:ee:04:fe:
86:84:ba:5b:7d:30:01:82:dd:a7:3d:46:51:aa:37:90:a9:94:
31:ad:73:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:57:16 2025 by rpki-client