Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft
File: 0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft (raw, json)
Hash identifier: cB1+Db8yKyXZ3PW7MIfEhe/52HtHjg5q0koHiRcv1Kc=
Subject key identifier: 8A:40:8E:69:A4:AA:00:E0:31:F7:5E:EB:17:CB:6D:7D:F4:59:DE:8A
Authority key identifier: D2:71:E4:ED:84:25:38:3F:6C:81:C2:1A:48:94:A4:37:63:67:5E:FC
Certificate issuer: /CN=d271e4ed8425383f6c81c21a4894a43763675efc
Certificate serial: 0196963C92066D6BB2241275F0903A372085
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nHk7YQlOD9sgcIaSJSkN2NnXvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft
Manifest number: 27
Signing time: Sat 03 May 2025 13:01:13 +0000
Manifest this update: Sat 03 May 2025 13:01:13 +0000
Manifest next update: Sun 04 May 2025 13:01:13 +0000
Files and hashes: 1: 0nHk7YQlOD9sgcIaSJSkN2NnXvw.crl (hash: AhDr5mnbqneSkYc8EfOFkr6MzKmZF1+cEI1oXBBF8RI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nHk7YQlOD9sgcIaSJSkN2NnXvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 04 May 2025 10:06:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:96:3c:92:06:6d:6b:b2:24:12:75:f0:90:3a:37:20:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d271e4ed8425383f6c81c21a4894a43763675efc
Validity
Not Before: May 3 13:01:13 2025 GMT
Not After : May 4 13:01:13 2025 GMT
Subject: CN=8a408e69a4aa00e031f75eeb17cb6d7df459de8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f0:d0:76:37:ad:71:b8:ee:80:d9:0d:49:55:
28:4c:3b:5d:f4:db:15:2f:7d:b4:de:ec:84:27:41:
5b:11:a1:5a:c3:b9:bc:d1:b3:65:86:a2:d8:14:c3:
83:46:2c:51:60:25:da:fd:41:ba:d8:99:79:df:fa:
5c:82:98:a3:07:26:f6:4a:dd:f0:8b:f3:29:cb:23:
08:4b:5f:0f:9b:3d:0c:87:12:58:21:9f:13:8b:e6:
bd:21:79:ec:29:29:64:6c:dd:39:20:f6:93:5b:fb:
51:84:ec:de:99:13:37:76:bb:a6:0d:e4:00:8d:46:
b9:23:07:4b:0d:af:1f:c0:a4:83:38:a5:c9:e3:05:
5b:71:ba:69:ef:f2:9c:05:c5:2a:3b:30:fa:7d:3f:
60:cf:7f:31:6f:2e:d2:c9:e6:90:88:29:35:62:f7:
47:95:9d:8e:d5:82:33:9c:a5:83:db:e2:d5:3c:45:
7f:21:4c:2e:ce:d6:f0:94:d1:3e:0f:45:0c:50:dd:
4c:36:9a:76:cc:31:dc:69:0f:59:50:51:c6:d4:a6:
3a:44:4e:d2:33:89:72:5c:c1:be:b8:f9:6e:b8:98:
cc:b9:b1:87:d2:18:10:ae:a1:92:ad:a2:aa:11:a8:
19:87:db:c1:f9:22:68:95:0c:86:44:0d:6d:5d:71:
7c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:40:8E:69:A4:AA:00:E0:31:F7:5E:EB:17:CB:6D:7D:F4:59:DE:8A
X509v3 Authority Key Identifier:
keyid:D2:71:E4:ED:84:25:38:3F:6C:81:C2:1A:48:94:A4:37:63:67:5E:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nHk7YQlOD9sgcIaSJSkN2NnXvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:d9:aa:94:38:81:dd:5b:4a:d2:0a:d4:05:c6:4e:97:44:b8:
16:40:e3:7a:9c:98:5e:6f:e1:12:e0:54:04:91:f1:e7:12:d9:
f1:3d:45:6d:60:a2:a2:d7:4f:76:c5:cc:e5:0e:ba:37:b6:76:
e6:91:c3:b3:dd:4c:b2:41:e3:d6:35:8a:62:e8:88:97:7e:11:
41:87:cb:45:12:53:f9:e1:48:67:15:0f:58:18:1e:79:a1:d1:
c0:cd:ef:20:a9:87:ee:02:41:44:2c:5f:94:68:67:b9:f7:89:
fe:15:dd:a2:66:e3:f6:38:a6:4d:65:e0:74:ae:8a:c0:3c:3a:
bd:32:74:0f:18:6a:b2:b3:8f:8a:c1:05:37:07:5f:e1:f2:9e:
28:47:ec:f1:06:68:25:bb:48:b0:4b:38:14:37:96:89:f1:50:
e2:7a:65:88:a7:b6:3e:db:ad:21:0f:38:c6:18:66:f8:e9:17:
80:72:1d:00:cd:90:be:77:26:c5:45:b3:c3:ad:de:b7:7a:80:
05:ce:dd:aa:76:ec:6e:d7:7e:99:cd:a9:14:f4:ef:28:bb:b5:
96:4d:71:7a:23:a8:6a:52:eb:d6:69:22:17:5e:37:82:09:17:
6e:89:80:1b:f7:8f:a6:66:70:82:41:fc:e5:86:4f:3b:9c:9b:
b4:e2:aa:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 18:14:33 2025 by rpki-client