Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
File: DXtk3YGIxSbrXrReqB6mqK-cWek.mft (raw, json)
Hash identifier: L3gh8dTjAqkCrxxx2T7kHvKzqWfOudBz4pfA0HsZNEY=
Subject key identifier: 2A:4E:93:71:75:10:C9:4F:92:0E:9A:EF:D7:1F:7B:51:50:4F:28:C8
Authority key identifier: 0D:7B:64:DD:81:88:C5:26:EB:5E:B4:5E:A8:1E:A6:A8:AF:9C:59:E9
Certificate issuer: /CN=0d7b64dd8188c526eb5eb45ea81ea6a8af9c59e9
Certificate serial: 0196748C40F6E35BCA2424CF5346CB74EE32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
Manifest number: 0194
Signing time: Sun 27 Apr 2025 00:01:10 +0000
Manifest this update: Sun 27 Apr 2025 00:01:10 +0000
Manifest next update: Mon 28 Apr 2025 00:01:10 +0000
Files and hashes: 1: DXtk3YGIxSbrXrReqB6mqK-cWek.crl (hash: B/CYbSS/rapuBhyVzyTNn3Nc/dzCKzshDbbkjcPNkrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 00:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:8c:40:f6:e3:5b:ca:24:24:cf:53:46:cb:74:ee:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d7b64dd8188c526eb5eb45ea81ea6a8af9c59e9
Validity
Not Before: Apr 27 00:01:10 2025 GMT
Not After : Apr 28 00:01:10 2025 GMT
Subject: CN=2a4e93717510c94f920e9aefd71f7b51504f28c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ed:6d:02:69:f0:77:e2:8d:22:f6:9a:80:24:
0a:1a:42:66:d3:85:f2:a9:e8:45:69:8a:4b:29:04:
57:c2:bf:3e:bc:9e:f6:cb:02:b8:0d:a3:22:24:09:
ff:00:35:ba:83:75:e5:e0:5d:23:31:f4:d6:f2:a8:
35:fd:73:20:9c:52:39:25:23:6a:11:f9:f4:fc:00:
7c:5a:5c:d5:98:cf:d3:9f:e9:60:b1:77:c8:15:4c:
02:97:68:fb:1c:8d:6d:ed:c9:cc:95:33:30:e5:40:
12:5a:85:3c:81:e8:e8:15:6a:d5:40:a9:bc:8e:f4:
6a:d0:60:d4:59:9b:a6:f4:b3:da:24:4b:e6:ce:4f:
2a:ac:11:b5:96:ec:b1:d8:6c:16:79:8b:a8:5a:f8:
76:21:7d:e8:79:a0:08:f0:69:9f:0e:81:bb:02:f1:
e9:86:1e:7c:f5:31:49:08:f5:65:8a:12:57:50:d3:
e3:bb:62:e0:f4:e9:23:e2:fe:17:49:eb:26:65:49:
96:25:9a:37:f6:02:ae:85:8d:91:14:03:d9:66:b6:
96:1e:16:d1:1f:60:16:46:40:4b:8b:f1:3e:8b:38:
d9:5e:65:ac:98:17:bd:07:57:6a:f2:b4:e9:13:5c:
5a:ed:f9:05:94:ea:b7:5f:cc:f6:8b:73:1f:64:84:
e6:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:4E:93:71:75:10:C9:4F:92:0E:9A:EF:D7:1F:7B:51:50:4F:28:C8
X509v3 Authority Key Identifier:
keyid:0D:7B:64:DD:81:88:C5:26:EB:5E:B4:5E:A8:1E:A6:A8:AF:9C:59:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXtk3YGIxSbrXrReqB6mqK-cWek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/bc91d2-e209-4a1d-9f78-33d31293f0e1/1/DXtk3YGIxSbrXrReqB6mqK-cWek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:a1:d9:ca:76:ea:68:59:6c:e6:99:cd:93:54:43:53:49:c5:
51:fb:b0:e3:97:74:45:86:e7:b6:70:56:a5:d5:4b:d9:5a:6f:
75:0e:24:38:34:b1:72:83:dc:9d:5a:a6:42:61:ca:6f:9e:55:
b4:94:e7:c1:2b:eb:7f:78:f1:37:05:ea:f3:a0:6f:9e:04:fa:
4a:f8:84:c9:76:a9:7f:dc:77:3e:c5:ae:b1:b9:70:13:8d:5e:
49:7b:54:3d:cf:d7:e7:84:d7:ed:36:87:fb:b1:6c:76:8b:67:
ce:08:f4:95:20:04:56:40:1c:71:5e:84:16:75:10:8a:4e:b2:
0e:42:7a:14:ce:15:83:bb:8e:62:2f:aa:54:99:2a:11:89:32:
0e:46:ff:84:8a:0b:64:5a:40:92:4d:1f:dc:32:fe:2f:fd:cf:
ed:80:56:51:8b:42:75:5f:47:24:8c:96:a4:fd:82:a9:60:a3:
ff:ca:e4:87:ef:06:f9:fb:1d:53:28:b0:88:ac:99:84:d5:e0:
61:27:b7:ba:b3:c7:c9:6f:ba:7a:b6:11:a7:d8:49:57:54:e5:
42:ea:6c:34:ba:e8:fa:fa:20:38:04:a7:dc:d1:a9:35:16:64:
b0:56:48:f1:bd:f7:c3:25:24:84:b4:6f:a3:ea:a0:f6:9b:6a:
ba:dc:d7:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 08:43:28 2025 by rpki-client