Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/63fae9-499f-43d5-8768-f9811ee3fa87/1/4iUB2aQBcJg48z0a4nm85xALPM8.mft
File: 4iUB2aQBcJg48z0a4nm85xALPM8.mft (raw, json)
Hash identifier: YPDUAVpCOM/m0uptPqoj/1XzO7UGNbb9Y9TJQE8nff4=
Subject key identifier: 94:CC:A5:85:EE:D1:A9:75:46:7A:D2:6C:77:2F:7C:28:1F:73:98:CB
Authority key identifier: E2:25:01:D9:A4:01:70:98:38:F3:3D:1A:E2:79:BC:E7:10:0B:3C:CF
Certificate issuer: /CN=e22501d9a401709838f33d1ae279bce7100b3ccf
Certificate serial: 0196895C5312D17CCC71F3DDB694C6CADE24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4iUB2aQBcJg48z0a4nm85xALPM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/63fae9-499f-43d5-8768-f9811ee3fa87/1/4iUB2aQBcJg48z0a4nm85xALPM8.mft
Manifest number: 0F90
Signing time: Thu 01 May 2025 01:00:51 +0000
Manifest this update: Thu 01 May 2025 01:00:51 +0000
Manifest next update: Fri 02 May 2025 01:00:51 +0000
Files and hashes: 1: 4iUB2aQBcJg48z0a4nm85xALPM8.crl (hash: HnOaybRW4g3xFLOW+TZPvpQVHcZGdo+qzvQtSg+17tI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/63fae9-499f-43d5-8768-f9811ee3fa87/1/4iUB2aQBcJg48z0a4nm85xALPM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/63fae9-499f-43d5-8768-f9811ee3fa87/1/4iUB2aQBcJg48z0a4nm85xALPM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/4iUB2aQBcJg48z0a4nm85xALPM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 01:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:89:5c:53:12:d1:7c:cc:71:f3:dd:b6:94:c6:ca:de:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e22501d9a401709838f33d1ae279bce7100b3ccf
Validity
Not Before: May 1 01:00:51 2025 GMT
Not After : May 2 01:00:51 2025 GMT
Subject: CN=94cca585eed1a975467ad26c772f7c281f7398cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:0e:93:5d:00:a1:8a:0e:14:00:83:94:3d:16:
93:0d:23:fe:f7:5a:0f:59:ce:36:ec:9d:e7:d2:4d:
91:e0:09:d3:e6:4c:b9:7c:f9:95:28:06:e6:06:17:
b8:0d:e1:34:28:7e:60:33:d3:33:a4:5d:8f:5c:bc:
12:5f:80:c9:a5:f3:b1:d2:e3:0b:63:d0:6e:61:a4:
7b:6b:d9:10:52:d8:59:a4:1f:b4:df:c5:07:15:d7:
c6:1f:5e:19:9e:45:fd:e8:5e:08:c5:ea:3c:d8:66:
c3:4a:10:00:ea:b2:1e:64:7b:23:a7:c3:7e:67:fd:
b1:f0:d9:cb:19:b7:24:7b:44:a9:7d:d7:3e:4b:4e:
ac:3a:5e:72:21:79:37:5f:a9:a2:98:da:32:c9:7b:
43:37:63:1a:01:8a:73:c6:11:29:8a:79:08:21:88:
d9:af:92:48:35:7b:3a:df:2b:2a:04:5b:2d:49:b6:
93:e9:07:2b:58:68:0e:7a:66:ec:78:88:3f:4e:bb:
76:ca:6d:6c:32:14:8a:d2:c4:48:c9:98:a2:f7:90:
ab:39:6c:07:22:9d:76:ff:23:d3:af:4e:de:94:2b:
a9:af:6a:ef:d2:34:7f:30:93:d0:87:bd:a7:b5:9e:
19:43:83:12:d9:09:ef:71:f8:1d:79:b0:05:46:34:
62:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:CC:A5:85:EE:D1:A9:75:46:7A:D2:6C:77:2F:7C:28:1F:73:98:CB
X509v3 Authority Key Identifier:
keyid:E2:25:01:D9:A4:01:70:98:38:F3:3D:1A:E2:79:BC:E7:10:0B:3C:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4iUB2aQBcJg48z0a4nm85xALPM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/63fae9-499f-43d5-8768-f9811ee3fa87/1/4iUB2aQBcJg48z0a4nm85xALPM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/63fae9-499f-43d5-8768-f9811ee3fa87/1/4iUB2aQBcJg48z0a4nm85xALPM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:25:df:79:39:3c:2b:25:26:2e:61:27:c4:c3:8a:f8:03:73:
28:0a:0c:2c:55:78:ea:5d:e5:e2:06:f9:43:b8:04:54:ff:f6:
00:38:17:5a:35:4f:4f:8f:77:d8:f3:77:ec:0f:96:8d:02:54:
90:81:d1:f9:6b:30:8f:9e:51:9a:00:8b:fc:f1:7f:04:6b:e3:
77:66:2a:7a:57:7e:f4:af:69:9d:a3:e1:8d:bb:03:4e:4a:35:
1b:59:e0:15:88:2b:0f:99:02:a9:95:7a:40:a3:8f:bc:9a:2c:
1b:cc:9b:8f:c0:13:2c:5a:4f:5b:9e:66:58:2e:65:aa:a0:8e:
5a:62:87:30:4f:e5:7d:aa:8a:9e:e2:c3:b5:0b:27:0e:de:3f:
fe:3a:f8:fe:01:0e:b8:8c:b9:c5:4c:47:f1:4d:24:74:28:3f:
cd:0b:a5:ff:03:87:08:ec:c1:f1:09:fc:d6:3d:3c:6c:cb:f5:
f0:82:c6:6d:08:8b:16:80:c1:4c:96:4e:88:be:f4:ea:70:2c:
60:77:18:75:b1:44:ea:b3:0f:d0:1e:c3:eb:80:e3:f4:8c:1a:
be:cb:4b:0c:a7:ca:28:4a:68:36:51:e3:18:45:99:2c:f6:be:
d8:19:6b:55:8c:df:81:0f:de:5a:11:b4:06:ba:34:98:bb:51:
e1:23:ca:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 09:58:45 2025 by rpki-client