Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft
File: FYi9izG5XpysnzgSjZW4UvA9V4Q.mft (raw, json)
Hash identifier: cqQoHpetXPpsheMWvwWcb62v4Ws8rDu+U7LVy/yqkLs=
Subject key identifier: 41:84:7B:F8:20:03:64:E3:BD:5A:13:0D:7D:0E:8B:FA:C1:10:75:A6
Authority key identifier: 15:88:BD:8B:31:B9:5E:9C:AC:9F:38:12:8D:95:B8:52:F0:3D:57:84
Certificate issuer: /CN=1588bd8b31b95e9cac9f38128d95b852f03d5784
Certificate serial: 0196760C41EFF2EE78F8DE56DB7C91D2C2E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FYi9izG5XpysnzgSjZW4UvA9V4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft
Manifest number: 150C
Signing time: Sun 27 Apr 2025 07:00:36 +0000
Manifest this update: Sun 27 Apr 2025 07:00:36 +0000
Manifest next update: Mon 28 Apr 2025 07:00:36 +0000
Files and hashes: 1: FYi9izG5XpysnzgSjZW4UvA9V4Q.crl (hash: Fhj3W0qAfOUkphMu1fj8ggraxpzPuntULyEcOVAgRG8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/FYi9izG5XpysnzgSjZW4UvA9V4Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:41:ef:f2:ee:78:f8:de:56:db:7c:91:d2:c2:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1588bd8b31b95e9cac9f38128d95b852f03d5784
Validity
Not Before: Apr 27 07:00:36 2025 GMT
Not After : Apr 28 07:00:36 2025 GMT
Subject: CN=41847bf8200364e3bd5a130d7d0e8bfac11075a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:1f:68:29:c3:75:04:b8:83:0c:43:87:06:9f:
06:92:1f:42:be:87:ef:a5:3d:33:9b:ac:6f:ea:55:
a7:f7:2f:8b:1f:13:01:ba:96:e0:27:fc:84:f3:ac:
f2:67:d7:24:8f:3e:6a:35:7d:46:bf:8d:da:27:28:
33:ae:06:2e:8d:da:2c:af:27:2d:d5:27:73:e7:60:
ca:af:ac:e9:44:e3:1a:a8:94:eb:26:ac:9b:8c:a9:
84:a7:97:e7:32:71:f5:b5:d2:e9:34:50:34:f1:9e:
6d:36:a2:e2:ee:69:1f:ce:4f:23:b6:fc:10:bc:9b:
21:ef:52:45:2b:79:37:e5:5d:e9:c2:f7:92:ae:a6:
f8:ac:c8:c3:07:a0:92:9f:f6:1c:70:86:c5:23:48:
5f:af:31:20:89:b3:a7:0f:cc:53:80:a0:0e:f8:cd:
84:59:61:16:cb:72:bd:35:ce:fd:e4:06:87:f7:c8:
27:d8:5f:ce:ad:75:e8:61:1e:5b:5b:a0:fa:99:60:
ef:29:3a:ce:8c:04:b3:86:e2:49:ec:0a:13:05:26:
a5:85:c7:1f:73:2e:8d:a4:59:d8:ac:35:ee:35:7d:
a1:51:45:d7:a0:e3:7c:ff:6b:38:3d:f8:03:f7:91:
e8:c3:44:54:1c:37:61:40:9b:cd:86:0f:d8:fa:4d:
38:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:84:7B:F8:20:03:64:E3:BD:5A:13:0D:7D:0E:8B:FA:C1:10:75:A6
X509v3 Authority Key Identifier:
keyid:15:88:BD:8B:31:B9:5E:9C:AC:9F:38:12:8D:95:B8:52:F0:3D:57:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FYi9izG5XpysnzgSjZW4UvA9V4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d1aa2e-b819-421c-8456-b5ae839f30e2/1/FYi9izG5XpysnzgSjZW4UvA9V4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:75:f0:0b:1c:dc:e1:92:57:eb:9c:fc:fc:f1:4a:17:e1:95:
06:4f:47:c0:1f:f9:fc:62:42:14:08:90:17:cc:c8:04:e5:fe:
5f:b2:c8:16:5d:3d:f2:16:23:1b:f6:29:71:e8:40:e8:7b:ee:
93:6d:2e:56:e1:19:ed:92:89:16:90:0c:e6:55:3a:14:a6:0a:
87:3d:79:85:f5:80:e6:b8:43:4c:27:82:bf:5d:03:f6:b2:99:
a3:4b:42:c0:1f:22:92:0a:21:d6:0e:fc:09:80:f8:e9:6b:23:
63:60:9d:4e:a4:dd:fb:6a:ab:44:c1:50:7d:37:5d:8a:31:24:
2a:c6:09:15:a0:56:e7:44:c9:bb:ed:b3:ec:4d:43:3a:2f:f8:
4b:29:ea:48:f9:f0:93:69:be:08:6a:5f:e3:5a:c2:6a:d0:40:
26:ce:62:b6:d7:57:99:e8:61:b0:da:8b:01:0b:8c:63:46:86:
da:eb:3d:61:24:61:b2:3c:4e:cf:de:c1:ca:ae:c5:1a:f2:0d:
6a:ba:8d:ed:ff:b8:d8:fa:61:2e:59:c3:b8:e2:c9:6d:7c:03:
f3:81:bd:13:51:ae:63:22:b7:bb:54:47:2e:53:34:74:86:f9:
fe:ab:ff:ec:f3:97:65:81:32:7c:bb:9c:b3:a0:e6:f3:89:5c:
82:52:ad:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:35:19 2025 by rpki-client