Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.mft
File: 09XiCPMtcw1DHUpNTtgJWx59lDE.mft (raw, json)
Hash identifier: tnF0cxSg6Nemxi12Mt1bML1nJY75Ei5RiHfIEYkIoxY=
Subject key identifier: 6B:E1:2A:57:5D:FB:5D:74:B1:8D:8F:81:83:8C:ED:56:4D:0F:14:3A
Authority key identifier: D3:D5:E2:08:F3:2D:73:0D:43:1D:4A:4D:4E:D8:09:5B:1E:7D:94:31
Certificate issuer: /CN=d3d5e208f32d730d431d4a4d4ed8095b1e7d9431
Certificate serial: 019677FB578D1F5CE9C316D6BB175EEC957D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/09XiCPMtcw1DHUpNTtgJWx59lDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.mft
Manifest number: 3D
Signing time: Sun 27 Apr 2025 16:01:22 +0000
Manifest this update: Sun 27 Apr 2025 16:01:22 +0000
Manifest next update: Mon 28 Apr 2025 16:01:22 +0000
Files and hashes: 1: 09XiCPMtcw1DHUpNTtgJWx59lDE.crl (hash: QuUTFMQmZFIHNJrmf0rofq3ZE8rOwVDHQKzfGvDt8Aw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.mft
rsync://rpki.ripe.net/repository/DEFAULT/09XiCPMtcw1DHUpNTtgJWx59lDE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:fb:57:8d:1f:5c:e9:c3:16:d6:bb:17:5e:ec:95:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3d5e208f32d730d431d4a4d4ed8095b1e7d9431
Validity
Not Before: Apr 27 16:01:22 2025 GMT
Not After : Apr 28 16:01:22 2025 GMT
Subject: CN=6be12a575dfb5d74b18d8f81838ced564d0f143a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a3:6d:dc:7f:2a:db:9b:a7:79:85:63:38:79:
6b:20:f3:19:83:3d:78:a0:19:29:be:24:b1:50:a5:
3c:f7:80:98:b5:cc:e7:e6:86:5a:37:36:70:03:73:
53:04:f8:ff:4e:63:ec:d6:cf:e9:c1:0f:38:5c:e5:
00:e1:2b:30:96:b4:5f:1d:88:29:94:f9:bd:e9:61:
8c:46:4a:ba:6e:15:5c:84:45:24:03:3f:ae:ad:ab:
dc:57:25:fe:6e:11:75:4b:9a:7e:6d:80:24:86:ba:
bc:3f:8d:37:69:18:d4:0a:0f:3f:62:15:30:8b:0f:
09:d9:d2:23:5c:21:6f:5c:86:7f:59:50:79:16:47:
01:76:8f:9f:65:96:ec:5d:40:23:81:90:8a:13:45:
32:fc:d1:17:9e:ac:e5:68:8e:2f:0a:0c:87:63:30:
da:bd:9e:e5:c3:46:ff:2c:4c:31:d6:52:6e:19:d9:
36:03:1a:be:28:75:77:26:b5:43:40:93:bb:c5:b1:
55:63:44:fd:24:db:ef:6d:db:59:61:8b:05:9c:7d:
f0:35:af:f3:70:1e:5d:41:49:24:4e:e3:34:d8:a6:
83:8c:3b:aa:f6:d0:a7:ac:aa:87:c7:0e:d1:df:fc:
e8:95:ff:1c:61:b6:72:76:7f:a5:7b:93:4c:fe:af:
d3:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:E1:2A:57:5D:FB:5D:74:B1:8D:8F:81:83:8C:ED:56:4D:0F:14:3A
X509v3 Authority Key Identifier:
keyid:D3:D5:E2:08:F3:2D:73:0D:43:1D:4A:4D:4E:D8:09:5B:1E:7D:94:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/09XiCPMtcw1DHUpNTtgJWx59lDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/fa396e-0dd4-4226-ae61-6e89a88dae93/1/09XiCPMtcw1DHUpNTtgJWx59lDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:06:97:14:da:4b:55:45:3a:c6:65:94:41:5b:f1:36:9c:db:
d0:1e:0e:88:cd:5f:04:f6:a7:d2:39:9c:13:45:73:c4:b5:90:
b6:e1:b5:b2:65:65:9c:cb:c5:4a:0d:2a:09:8c:13:ec:b7:f1:
e7:0f:e2:b1:21:29:90:48:02:34:a3:6d:f7:57:7c:0b:e8:44:
52:94:b2:95:27:05:c4:96:6a:93:cd:07:55:cb:db:12:73:d7:
4a:d3:aa:37:77:a6:11:3c:15:77:06:0a:57:88:2a:b2:fc:78:
e1:df:ec:0d:be:0e:6c:73:d2:90:fb:3a:8f:d0:85:df:e2:dc:
80:33:e0:25:a9:5b:bd:7e:e9:bd:51:dd:c0:ec:5b:1c:85:42:
65:6c:e1:fd:d8:0a:5b:57:20:3a:d3:f0:2c:cd:e1:64:e9:1a:
f8:1a:58:43:61:16:65:a4:1a:48:14:d0:30:79:78:34:ef:6d:
bb:cf:9e:c8:af:81:95:8d:43:ad:63:f0:f0:fb:40:09:75:25:
38:98:f2:1a:e6:77:f5:82:06:54:e3:44:bd:6e:9b:bb:f2:48:
b7:e3:bd:95:b2:e1:08:20:ac:1a:f8:d3:97:fb:ee:82:b0:6a:
72:5e:f7:50:00:01:70:10:fe:e2:9a:ca:14:22:fc:3a:00:ab:
e7:81:9e:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 19:09:55 2025 by rpki-client