Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/57021d-7345-4eab-a710-d73a4573c1b4/1/s3fTy2Ur05jE2752zbAILp3u1tQ.mft
File: s3fTy2Ur05jE2752zbAILp3u1tQ.mft (raw, json)
Hash identifier: 1ydQLsKUYArjw/xqFLVEbAySdikhTPGwKK7vUWmukCc=
Subject key identifier: 60:15:00:70:17:A9:F3:11:53:DF:FA:46:CA:88:96:08:5D:00:5E:7A
Authority key identifier: B3:77:D3:CB:65:2B:D3:98:C4:DB:BE:76:CD:B0:08:2E:9D:EE:D6:D4
Certificate issuer: /CN=b377d3cb652bd398c4dbbe76cdb0082e9deed6d4
Certificate serial: 01968992B848C3E3037C029C48FE6934B36D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s3fTy2Ur05jE2752zbAILp3u1tQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/57021d-7345-4eab-a710-d73a4573c1b4/1/s3fTy2Ur05jE2752zbAILp3u1tQ.mft
Manifest number: 03AD
Signing time: Thu 01 May 2025 02:00:15 +0000
Manifest this update: Thu 01 May 2025 02:00:15 +0000
Manifest next update: Fri 02 May 2025 02:00:15 +0000
Files and hashes: 1: s3fTy2Ur05jE2752zbAILp3u1tQ.crl (hash: tHVvsINWwNwcq2FfTnSVkR5+WM6ISCG3UC+8xwaSn/U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/57021d-7345-4eab-a710-d73a4573c1b4/1/s3fTy2Ur05jE2752zbAILp3u1tQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/57021d-7345-4eab-a710-d73a4573c1b4/1/s3fTy2Ur05jE2752zbAILp3u1tQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/s3fTy2Ur05jE2752zbAILp3u1tQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:89:92:b8:48:c3:e3:03:7c:02:9c:48:fe:69:34:b3:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b377d3cb652bd398c4dbbe76cdb0082e9deed6d4
Validity
Not Before: May 1 02:00:15 2025 GMT
Not After : May 2 02:00:15 2025 GMT
Subject: CN=6015007017a9f31153dffa46ca8896085d005e7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:06:4c:92:67:03:e3:aa:14:b9:af:d4:af:f7:
e3:79:77:f1:e9:8a:8a:10:95:d3:8e:38:ce:43:d3:
e3:9a:de:48:05:a6:10:fe:25:7a:be:45:f1:b0:8d:
6b:87:0b:50:c8:b5:23:a1:1d:09:f7:c2:7b:f2:29:
a0:4d:12:57:18:b6:5a:d0:c0:08:d6:5a:4c:cd:3a:
26:cc:c9:89:1b:12:16:2c:de:30:76:f0:4d:c2:1f:
1a:65:b4:8b:f6:85:a5:84:43:ac:31:0b:f7:7a:4a:
cc:af:fb:cc:2e:56:ca:97:68:f9:a8:d3:ba:5b:e1:
c5:ba:47:77:f8:56:13:51:9f:d9:91:3c:f9:76:e0:
6b:e2:8e:32:27:ef:cd:b7:d9:34:88:80:e0:02:93:
db:e3:9e:b2:46:7c:d5:70:ee:b1:fa:91:df:ff:dd:
b1:f6:b3:c5:61:f4:43:58:d3:80:72:5c:ac:db:ba:
15:b3:b4:71:2b:33:97:1f:00:df:8d:1b:27:b4:7f:
ad:9a:74:bb:da:67:01:e1:e0:95:ac:be:e5:b3:2f:
22:48:05:52:b4:99:1a:1f:b1:cc:52:99:5e:a0:45:
37:98:ed:ce:7f:56:ce:f1:3d:fd:72:3a:55:f6:b2:
c1:a5:42:c4:e6:55:2a:52:e7:77:4f:8e:1a:99:27:
5c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:15:00:70:17:A9:F3:11:53:DF:FA:46:CA:88:96:08:5D:00:5E:7A
X509v3 Authority Key Identifier:
keyid:B3:77:D3:CB:65:2B:D3:98:C4:DB:BE:76:CD:B0:08:2E:9D:EE:D6:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s3fTy2Ur05jE2752zbAILp3u1tQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/57021d-7345-4eab-a710-d73a4573c1b4/1/s3fTy2Ur05jE2752zbAILp3u1tQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/57021d-7345-4eab-a710-d73a4573c1b4/1/s3fTy2Ur05jE2752zbAILp3u1tQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:8a:c6:d5:05:62:07:0f:8a:45:5b:4e:27:88:a2:aa:45:26:
3c:74:10:7b:5c:14:04:42:8d:16:63:97:34:19:12:26:d6:5f:
fc:dd:03:fb:c0:e9:85:b1:d8:58:5d:79:14:a5:02:02:8f:57:
2d:18:38:07:0e:3d:30:f6:67:b8:00:ba:66:74:e6:1c:66:8e:
49:4c:1a:bf:f6:7d:fa:58:a1:8e:ec:03:88:2c:bb:51:52:6b:
a3:89:f2:9f:03:25:cb:1b:50:7f:70:74:1c:b6:5a:3b:d0:a1:
06:40:24:0c:39:fe:e1:84:fe:5d:09:05:3f:4a:62:e0:07:1b:
d4:b7:27:e2:74:16:50:35:79:43:38:c9:e0:95:0d:4c:4c:17:
0f:aa:ee:ed:2d:ba:ce:8b:3d:ae:a3:88:be:f5:36:28:32:32:
59:33:74:a3:ff:fc:33:00:dc:ba:aa:7e:70:cf:3a:7d:80:eb:
19:f2:1b:ef:7d:9f:7e:e3:b6:2f:c5:af:38:bc:8f:9e:7b:13:
67:2a:8f:7b:8a:5d:d9:38:03:c6:93:88:6f:f7:93:80:55:0a:
6e:89:8c:93:19:75:45:32:d4:9e:f6:79:e3:83:b4:73:6f:d7:
d2:52:3e:9e:5d:ec:a7:c7:15:5d:1c:53:55:57:46:cb:14:01:
ee:32:45:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 07:05:35 2025 by rpki-client