Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
File: aQqw79d1diHIbXtpx29gssP6w1Y.mft (raw, json)
Hash identifier: LitpSLWnlIPVrKf7Lvy676hIFC7Gpe+b+Y7nXZ6i9cA=
Subject key identifier: C0:22:79:BE:28:14:9D:E4:73:A0:DB:BB:B5:ED:6A:10:98:2C:70:08
Authority key identifier: 69:0A:B0:EF:D7:75:76:21:C8:6D:7B:69:C7:6F:60:B2:C3:FA:C3:56
Certificate issuer: /CN=690ab0efd7757621c86d7b69c76f60b2c3fac356
Certificate serial: 019674F9B2797DBEE15B9FF8464C7AAB67A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQqw79d1diHIbXtpx29gssP6w1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
Manifest number: 025D
Signing time: Sun 27 Apr 2025 02:00:43 +0000
Manifest this update: Sun 27 Apr 2025 02:00:43 +0000
Manifest next update: Mon 28 Apr 2025 02:00:43 +0000
Files and hashes: 1: aQqw79d1diHIbXtpx29gssP6w1Y.crl (hash: M3idV8HXNGeCG1i02KZD+Uti9Sh/zZWhjy0o2Ig4DUs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/aQqw79d1diHIbXtpx29gssP6w1Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:f9:b2:79:7d:be:e1:5b:9f:f8:46:4c:7a:ab:67:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=690ab0efd7757621c86d7b69c76f60b2c3fac356
Validity
Not Before: Apr 27 02:00:43 2025 GMT
Not After : Apr 28 02:00:43 2025 GMT
Subject: CN=c02279be28149de473a0dbbbb5ed6a10982c7008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c2:6a:bc:f5:f2:c1:3b:6d:ed:6c:98:b4:9a:
e2:d0:f5:c6:13:77:f8:5c:56:df:9d:40:fc:97:a2:
dd:f3:db:15:bf:89:a5:24:02:27:0d:e7:06:b1:3e:
6b:66:10:c5:18:84:d3:84:cc:0f:2f:c9:c0:57:f3:
f4:71:87:0c:74:06:4d:58:71:37:e9:b4:0d:c8:b8:
15:64:54:21:41:74:4a:62:d8:13:04:7b:1c:9d:f3:
05:ca:79:2b:db:f3:f1:7b:77:b9:10:cf:fe:80:47:
34:ee:a9:e5:16:e8:f6:37:ff:1c:f5:ed:2f:88:b1:
6c:22:13:31:32:6c:3d:d7:ad:86:b2:f1:c4:e0:ec:
e6:24:92:fd:91:b8:d8:4e:29:da:78:87:2a:de:5a:
9d:c7:0c:cd:f5:d4:a4:d0:31:60:ce:46:71:bc:eb:
2d:07:30:a0:37:61:6a:95:17:18:61:c0:8d:b1:d4:
d6:dc:35:44:f1:c1:c7:1d:29:e7:f6:c7:ea:b3:37:
85:77:f0:f5:13:42:ad:8d:44:8a:99:25:81:4e:4a:
59:9e:d5:e5:ea:d2:b6:05:88:2f:64:20:3b:86:7c:
45:ba:df:ad:0f:be:9f:dc:c5:84:fd:7d:cd:c6:3a:
e0:ef:f2:62:e3:9f:9f:8a:13:5a:c4:3c:6f:de:49:
ec:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:22:79:BE:28:14:9D:E4:73:A0:DB:BB:B5:ED:6A:10:98:2C:70:08
X509v3 Authority Key Identifier:
keyid:69:0A:B0:EF:D7:75:76:21:C8:6D:7B:69:C7:6F:60:B2:C3:FA:C3:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQqw79d1diHIbXtpx29gssP6w1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/45b225-64e3-4d34-80d9-21c815a6eb9e/1/aQqw79d1diHIbXtpx29gssP6w1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:a8:93:d3:26:46:18:83:ba:7e:59:01:af:c6:7d:4f:3b:9a:
4f:42:a6:79:42:87:3a:a1:6e:90:47:bb:08:c4:ca:e1:ac:9f:
a5:59:27:70:93:7d:d3:19:5b:61:af:17:8c:21:91:8d:01:79:
c7:b9:97:37:98:b3:f3:3f:b1:ff:3d:a3:cb:71:b2:3c:fe:6a:
66:0d:72:4c:88:48:1c:70:8c:9d:fb:80:ed:6d:2a:5b:c7:3b:
eb:65:a0:8e:10:5c:70:85:a7:71:34:f2:0d:00:f0:6b:73:e1:
0d:99:06:37:c7:e0:71:03:26:30:75:e9:37:36:7f:72:ee:58:
9e:7c:2c:d3:28:de:4c:cf:0f:cf:9e:08:5a:1a:fa:66:e0:fe:
ad:26:00:61:b8:d2:8b:ce:68:e2:77:e7:af:f1:64:29:0a:4e:
14:f9:e2:f2:1c:be:75:dd:af:ed:19:50:4c:d4:30:40:ec:79:
21:f2:ed:54:6e:ad:96:b5:08:4f:99:7b:0a:a4:9d:61:55:fa:
2a:79:b9:57:53:6c:c7:3e:f7:f7:ff:b8:a6:17:ee:3d:21:a1:
b4:53:5f:d9:ac:f7:17:cc:2e:c9:f1:6f:53:91:7f:71:2a:de:
18:07:71:2d:98:9c:df:19:4f:0f:ac:62:25:ad:3d:34:10:e7:
b7:d0:d5:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 10:42:14 2025 by rpki-client