Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f0ff5a-516c-4b8e-b9a2-cbfde0290708/1/IsOFEHH5YIjHtxGcteFGPLq5jFk.mft
File: IsOFEHH5YIjHtxGcteFGPLq5jFk.mft (raw, json)
Hash identifier: rCkmsOx+6jL2UB/16DDOhtO1a1qbspctMhDsWHOjbi8=
Subject key identifier: FD:17:15:B6:CB:7C:0A:E9:01:C1:6E:8E:30:A1:C2:28:EE:EE:4D:5A
Authority key identifier: 22:C3:85:10:71:F9:60:88:C7:B7:11:9C:B5:E1:46:3C:BA:B9:8C:59
Certificate issuer: /CN=22c3851071f96088c7b7119cb5e1463cbab98c59
Certificate serial: 0196760D2840F51B49BD75D04C8CBE2EBEB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsOFEHH5YIjHtxGcteFGPLq5jFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f0ff5a-516c-4b8e-b9a2-cbfde0290708/1/IsOFEHH5YIjHtxGcteFGPLq5jFk.mft
Manifest number: 0F5C
Signing time: Sun 27 Apr 2025 07:01:35 +0000
Manifest this update: Sun 27 Apr 2025 07:01:35 +0000
Manifest next update: Mon 28 Apr 2025 07:01:35 +0000
Files and hashes: 1: IsOFEHH5YIjHtxGcteFGPLq5jFk.crl (hash: N2AlOXWYyU5xAK9BN4H9hs2uUTDN3yYsrHHXH68Vmg0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/f0ff5a-516c-4b8e-b9a2-cbfde0290708/1/IsOFEHH5YIjHtxGcteFGPLq5jFk.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/f0ff5a-516c-4b8e-b9a2-cbfde0290708/1/IsOFEHH5YIjHtxGcteFGPLq5jFk.mft
rsync://rpki.ripe.net/repository/DEFAULT/IsOFEHH5YIjHtxGcteFGPLq5jFk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0d:28:40:f5:1b:49:bd:75:d0:4c:8c:be:2e:be:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c3851071f96088c7b7119cb5e1463cbab98c59
Validity
Not Before: Apr 27 07:01:35 2025 GMT
Not After : Apr 28 07:01:35 2025 GMT
Subject: CN=fd1715b6cb7c0ae901c16e8e30a1c228eeee4d5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:33:8e:d0:b4:8a:76:bf:a9:7b:15:fa:10:ac:
55:91:6e:1c:dc:b0:1f:c3:b9:e0:eb:e5:4a:ca:04:
6f:56:80:54:d4:36:87:d6:2f:da:e8:b5:ea:32:e1:
b2:ee:af:45:69:64:6d:e7:12:ce:6f:a2:1e:d0:8f:
d9:93:04:c9:11:b7:7d:1f:78:e2:50:00:53:f5:9d:
ae:62:ce:9c:aa:f3:b0:73:ed:92:a3:a6:c0:d6:bb:
1f:41:de:ed:26:17:58:79:eb:21:a5:b5:cf:e7:ee:
4e:09:d4:51:72:d2:fa:03:7a:40:8b:2d:ef:7b:06:
4b:ec:5c:f5:3b:13:f7:1d:30:0d:f4:db:8e:d1:f4:
fe:49:45:99:1a:04:ea:de:9a:5a:12:15:1c:80:23:
47:c3:c5:35:87:39:9f:e3:7b:8a:8b:b1:e6:26:1c:
45:cd:0d:1a:7c:d2:ed:fe:9c:63:61:de:0d:03:1f:
85:28:3a:3a:9f:28:89:17:e0:08:70:48:20:d7:83:
0a:cb:db:49:d0:ca:73:f5:16:ef:99:c4:f1:d4:60:
36:fe:1d:3e:55:1d:43:6f:79:a8:71:c9:48:a0:2f:
1a:c3:1e:f7:2a:0c:43:da:96:5e:f7:94:c1:63:df:
5f:b8:de:ea:f2:ad:0a:16:36:7f:ac:c0:70:90:94:
00:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:17:15:B6:CB:7C:0A:E9:01:C1:6E:8E:30:A1:C2:28:EE:EE:4D:5A
X509v3 Authority Key Identifier:
keyid:22:C3:85:10:71:F9:60:88:C7:B7:11:9C:B5:E1:46:3C:BA:B9:8C:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsOFEHH5YIjHtxGcteFGPLq5jFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f0ff5a-516c-4b8e-b9a2-cbfde0290708/1/IsOFEHH5YIjHtxGcteFGPLq5jFk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f0ff5a-516c-4b8e-b9a2-cbfde0290708/1/IsOFEHH5YIjHtxGcteFGPLq5jFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:be:01:d7:65:48:06:18:50:cf:b3:b5:cc:a4:18:81:6b:e9:
b3:7c:1e:32:b5:6a:ae:00:5b:70:35:6e:4d:ee:42:79:95:f5:
33:96:fd:f3:8b:75:70:fb:0e:f8:9e:56:bf:80:c1:de:50:2f:
e8:1c:5f:8e:74:4f:0a:e4:d1:4c:5d:0e:72:e7:85:e7:12:96:
51:29:cd:80:ad:a0:89:12:b0:f3:53:b8:6f:5d:54:97:57:5d:
df:bd:02:ce:84:61:f3:c2:be:51:e6:4c:ae:c9:f5:40:3c:71:
2c:d5:ab:04:30:5b:00:b7:65:5c:0b:8a:c4:ea:ea:ea:c4:05:
72:0e:32:e1:4c:ba:1c:0a:2a:3a:c8:7f:7c:6f:c6:e0:cd:f7:
c4:88:ee:bb:33:40:75:ac:84:ea:70:1b:09:36:d5:8e:21:f3:
26:24:45:23:52:e9:57:b7:a2:f3:ba:ea:b1:ac:a3:d3:37:4a:
fd:49:59:ea:cf:6b:55:dd:3d:24:ff:cc:9b:ee:ac:6e:04:8b:
d1:5a:5d:9f:ac:47:09:3c:ea:aa:b5:9d:60:dd:01:81:d0:1f:
31:07:e3:86:9c:c1:dd:51:a5:3a:09:41:b6:18:4c:0d:91:bd:
55:16:be:da:68:a9:31:67:53:3f:d9:84:1e:41:69:05:c7:a9:
02:2c:a5:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 17:40:10 2025 by rpki-client