Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/a071aa-550b-4e18-99ed-0508a2bb47ac/1/sfW7qgUZgL1IEbZlWg-V2zYSeAk.mft
File: sfW7qgUZgL1IEbZlWg-V2zYSeAk.mft (raw, json)
Hash identifier: gYzOIJqk5CylFn6GdaFuF+itg0W0w4ZFXFJEJt5/5ic=
Subject key identifier: F1:8C:5D:14:E7:B7:F1:30:AE:04:43:08:64:1A:CB:D8:18:16:CA:2F
Authority key identifier: B1:F5:BB:AA:05:19:80:BD:48:11:B6:65:5A:0F:95:DB:36:12:78:09
Certificate issuer: /CN=b1f5bbaa051980bd4811b6655a0f95db36127809
Certificate serial: 019679E8EA86F96407E316717789CA57D994
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sfW7qgUZgL1IEbZlWg-V2zYSeAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/a071aa-550b-4e18-99ed-0508a2bb47ac/1/sfW7qgUZgL1IEbZlWg-V2zYSeAk.mft
Manifest number: 0EA0
Signing time: Mon 28 Apr 2025 01:00:29 +0000
Manifest this update: Mon 28 Apr 2025 01:00:29 +0000
Manifest next update: Tue 29 Apr 2025 01:00:29 +0000
Files and hashes: 1: sfW7qgUZgL1IEbZlWg-V2zYSeAk.crl (hash: MyG4lBbZUaThAcQPiIwBs7iOANzocI71SjKXpFoZMks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/a071aa-550b-4e18-99ed-0508a2bb47ac/1/sfW7qgUZgL1IEbZlWg-V2zYSeAk.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/a071aa-550b-4e18-99ed-0508a2bb47ac/1/sfW7qgUZgL1IEbZlWg-V2zYSeAk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sfW7qgUZgL1IEbZlWg-V2zYSeAk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:e8:ea:86:f9:64:07:e3:16:71:77:89:ca:57:d9:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1f5bbaa051980bd4811b6655a0f95db36127809
Validity
Not Before: Apr 28 01:00:29 2025 GMT
Not After : Apr 29 01:00:29 2025 GMT
Subject: CN=f18c5d14e7b7f130ae044308641acbd81816ca2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:53:d6:d7:db:7a:ec:4f:8e:d6:3a:ef:bb:7a:
f4:bd:07:a2:3c:8e:89:c2:d9:e5:f0:65:23:24:c6:
55:b5:6c:e3:0e:b8:ba:10:7f:aa:0d:a8:57:fd:af:
c9:ec:41:4c:e5:b8:25:72:10:1a:48:2b:1e:fc:db:
8f:61:7a:81:e7:0e:50:29:d4:33:86:7f:f5:8b:5a:
ff:c5:d7:b7:e3:74:96:38:92:5b:81:6e:dc:c1:a6:
45:0f:bd:36:94:97:92:15:7e:79:45:e8:84:5d:26:
5c:ec:f4:bc:27:e5:7e:d1:0d:aa:00:ec:5f:ae:b9:
fe:1f:74:c6:5f:06:7a:d1:a2:19:be:9c:4f:ea:f5:
91:d6:30:57:bc:88:b7:58:57:f6:03:a1:24:08:81:
ee:e6:17:c3:4b:f1:2e:9a:bd:fb:dd:10:e4:1c:2e:
8e:4d:0e:59:6d:35:95:2a:ff:33:1b:3d:f9:6c:fa:
98:d7:01:c2:af:93:da:b4:f4:d0:69:eb:72:29:10:
f1:4b:c8:8b:24:89:26:23:6e:2e:f8:4a:a4:aa:06:
b3:78:0e:b4:c7:c2:e5:17:83:cf:2b:71:4f:d9:18:
59:cf:dc:3c:0e:c5:c0:bf:25:85:7c:53:72:6b:08:
d3:b9:8e:7a:95:fb:a8:82:73:49:1e:58:9e:41:4e:
fb:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:8C:5D:14:E7:B7:F1:30:AE:04:43:08:64:1A:CB:D8:18:16:CA:2F
X509v3 Authority Key Identifier:
keyid:B1:F5:BB:AA:05:19:80:BD:48:11:B6:65:5A:0F:95:DB:36:12:78:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sfW7qgUZgL1IEbZlWg-V2zYSeAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/a071aa-550b-4e18-99ed-0508a2bb47ac/1/sfW7qgUZgL1IEbZlWg-V2zYSeAk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/a071aa-550b-4e18-99ed-0508a2bb47ac/1/sfW7qgUZgL1IEbZlWg-V2zYSeAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:56:99:7e:6f:fc:cc:9f:8d:40:28:8f:dd:f5:4d:e4:1c:ef:
70:e6:a1:39:1d:cd:51:aa:5e:82:04:be:0f:e9:4e:3f:14:97:
7f:0f:5e:8c:1c:00:61:c9:19:9c:ed:8b:9a:82:9b:cc:d9:04:
64:d7:a2:85:38:80:82:8a:27:52:c1:49:a4:21:64:fa:ac:09:
3f:7e:65:78:d0:a6:59:2e:41:be:54:b9:c4:63:5f:be:aa:d2:
ae:40:99:c4:29:7c:df:7f:e7:e6:f9:77:a1:a3:d2:bb:96:02:
2a:85:65:08:9a:68:21:35:27:b0:74:18:c4:72:08:b7:f4:9b:
5c:a0:e3:68:31:63:ad:10:11:f4:71:0d:61:0d:70:ed:12:36:
7e:e0:da:53:48:39:30:d7:ef:0f:b8:08:a6:29:06:e2:ae:f4:
99:ae:bb:9e:25:0f:10:bc:60:d0:78:10:73:63:e2:18:3c:18:
ff:1d:91:76:95:8a:49:d2:3b:be:08:18:49:07:22:c0:89:aa:
f3:ac:3b:42:b6:31:b3:9b:15:32:ec:78:18:de:80:15:f3:29:
a8:76:f3:2f:03:3f:36:21:07:46:70:b1:98:89:bb:cd:e0:97:
a3:f5:90:ba:e9:02:ed:75:71:41:e9:99:91:4b:47:93:15:9a:
1a:c6:4f:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 03:26:52 2025 by rpki-client