Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
File: id8L4W7M0-twbmQXlLyQ1PfWeMk.mft (raw, json)
Hash identifier: 1AEWEYqWQ6mgI0YvAFDPAMSM7wgDGLLKFygSTZV0xt8=
Subject key identifier: D2:7E:AF:A5:34:4D:A8:2F:CC:B1:51:65:EB:D8:3C:5C:5F:EA:9F:67
Authority key identifier: 89:DF:0B:E1:6E:CC:D3:EB:70:6E:64:17:94:BC:90:D4:F7:D6:78:C9
Certificate issuer: /CN=89df0be16eccd3eb706e641794bc90d4f7d678c9
Certificate serial: 01967AC5323B51A4C51FADD6F1BF880CC0B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
Manifest number: 150D
Signing time: Mon 28 Apr 2025 05:01:05 +0000
Manifest this update: Mon 28 Apr 2025 05:01:05 +0000
Manifest next update: Tue 29 Apr 2025 05:01:05 +0000
Files and hashes: 1: id8L4W7M0-twbmQXlLyQ1PfWeMk.crl (hash: qr2MZFmd0/vgmE4WNaP0YYE11AKfANHFO7lskIkRifA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 05:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7a:c5:32:3b:51:a4:c5:1f:ad:d6:f1:bf:88:0c:c0:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89df0be16eccd3eb706e641794bc90d4f7d678c9
Validity
Not Before: Apr 28 05:01:05 2025 GMT
Not After : Apr 29 05:01:05 2025 GMT
Subject: CN=d27eafa5344da82fccb15165ebd83c5c5fea9f67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b5:c9:5a:4a:12:7c:58:de:b8:97:ee:97:8a:
18:61:bf:e7:de:5e:5b:53:c6:cf:a0:0e:66:e5:8a:
1c:c9:76:95:38:22:cb:d6:18:35:e3:a0:59:b7:e1:
c3:c7:35:36:f1:ce:d2:de:22:0c:4c:63:d8:91:25:
1d:2b:75:9c:9f:43:d5:04:29:83:99:3d:4c:91:a5:
1a:51:46:56:b3:ec:88:35:da:54:b4:eb:a1:67:fc:
df:5a:8b:af:e8:bb:b7:4e:12:ca:da:3c:9f:79:b2:
ba:d1:7e:f9:b0:44:39:ab:d4:4f:ce:0d:2b:d9:6c:
6f:2b:3e:57:cc:86:d6:6d:4d:57:1b:cd:52:c3:97:
0b:95:eb:80:37:4d:94:b0:b8:87:9f:9d:ed:d0:8d:
d4:d5:7c:5b:0f:73:43:72:4d:55:5c:8a:aa:92:23:
6b:ca:cc:0b:1b:6a:53:d3:bc:21:2e:4b:78:49:4f:
08:d1:fc:9c:f5:1e:a3:6c:a6:bf:74:cb:07:44:70:
6a:ac:69:fb:66:3d:5a:9e:04:d0:b6:a7:87:c0:2e:
b8:dc:97:dd:8a:23:05:51:cd:ac:b6:68:c2:fb:18:
6e:62:41:75:ff:47:ea:0a:02:1e:64:26:76:05:d8:
16:29:cb:8a:35:6b:2a:e2:91:8f:df:af:73:b0:8d:
98:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:7E:AF:A5:34:4D:A8:2F:CC:B1:51:65:EB:D8:3C:5C:5F:EA:9F:67
X509v3 Authority Key Identifier:
keyid:89:DF:0B:E1:6E:CC:D3:EB:70:6E:64:17:94:BC:90:D4:F7:D6:78:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:a0:f5:93:c9:92:27:c6:ee:84:e3:75:4a:5f:15:bf:20:ed:
eb:a5:22:45:89:e5:ee:d2:9d:b0:c8:d5:19:f5:00:a7:a8:67:
10:e0:56:8b:f7:f0:70:9b:f5:05:bc:80:08:1d:a0:4e:ca:11:
65:71:39:b7:c5:39:52:e8:10:46:15:8f:0f:57:51:7e:38:76:
f3:c1:8e:51:ce:60:87:5a:cc:06:e7:8a:25:83:74:97:17:bc:
77:34:af:d9:89:dc:31:1f:da:44:88:9b:7e:22:08:8c:aa:1e:
cc:f6:55:af:b5:eb:e1:22:dd:8a:95:2f:1f:2c:6b:61:0d:0d:
61:bd:c9:ae:f2:d0:17:be:80:3c:2a:65:16:49:6a:2f:9b:a5:
a6:c7:47:f3:b7:58:c7:c0:51:2d:c1:23:fc:b2:df:1b:47:92:
54:fa:d7:9b:2e:f5:12:17:02:ba:4b:1b:1f:4f:ff:de:8c:6d:
5f:3f:72:11:26:f7:0e:e1:1c:86:ef:d6:37:c2:75:dc:16:7d:
a1:81:92:92:10:3d:a9:cc:9e:3c:80:0b:72:a4:2c:eb:ba:0f:
40:48:9f:b0:b9:46:39:5a:7b:77:81:76:ea:db:38:15:7d:a2:
f8:88:37:b8:11:5e:76:45:65:dc:a0:9b:f8:07:6a:a5:9c:dd:
05:bc:52:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 14:25:10 2025 by rpki-client