Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
File: IPdQab1W78UXA4PtMcrSJGT98DA.mft (raw, json)
Hash identifier: ytGX2G4ikeVU5icZAisgTwOFoh04+ljbOS9nxVpSoTw=
Subject key identifier: 96:15:2E:9C:D4:31:41:E8:32:F7:5E:07:E5:AA:94:0B:5C:9F:F0:D9
Authority key identifier: 20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30
Certificate issuer: /CN=20f75069bd56efc5170383ed31cad22464fdf030
Certificate serial: 0196789FAC09064E71BDC50C31D1045CA969
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
Manifest number: 02BF
Signing time: Sun 27 Apr 2025 19:00:52 +0000
Manifest this update: Sun 27 Apr 2025 19:00:52 +0000
Manifest next update: Mon 28 Apr 2025 19:00:52 +0000
Files and hashes: 1: IPdQab1W78UXA4PtMcrSJGT98DA.crl (hash: 4T2jJXPXlPF1U/a+OEXYVRIicqliJGZmCc2vTDIF9Bc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:9f:ac:09:06:4e:71:bd:c5:0c:31:d1:04:5c:a9:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f75069bd56efc5170383ed31cad22464fdf030
Validity
Not Before: Apr 27 19:00:52 2025 GMT
Not After : Apr 28 19:00:52 2025 GMT
Subject: CN=96152e9cd43141e832f75e07e5aa940b5c9ff0d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:68:80:80:31:83:cb:fc:b5:c4:ec:84:57:61:
45:19:7f:d7:77:c8:e9:8e:b9:57:d9:60:87:fe:5e:
2d:13:30:0a:e0:a0:c7:2f:85:be:59:52:8b:4c:eb:
9d:b5:33:bb:21:63:ba:24:a0:e6:af:0a:70:a5:f3:
cd:cd:bb:ef:d1:03:85:29:d7:ff:bb:f2:c5:32:83:
24:29:58:94:36:ae:7c:fc:b2:fb:2f:33:25:0d:6e:
e4:cb:60:83:9b:34:11:ae:84:61:c3:dd:af:01:2e:
33:df:25:84:a8:da:99:c2:c4:36:e9:5d:b3:ae:6b:
5e:c7:19:7d:c6:3f:17:de:ff:40:a5:6a:00:ac:e6:
e2:c3:05:1e:65:9e:d9:7e:41:72:48:df:3b:26:69:
1f:c8:93:5c:a1:55:fb:d8:dc:0e:4b:a4:dc:82:35:
db:73:bf:2a:f1:38:c4:7c:b2:9a:72:cd:c6:03:3f:
23:1a:8a:21:ed:64:f9:73:06:10:95:ad:68:ac:f7:
da:62:6c:18:85:64:66:e1:6c:44:8a:0d:6d:5c:42:
24:be:d2:18:c9:8f:12:92:cb:63:66:3a:f2:f1:3a:
2e:43:f7:5d:2e:56:90:24:62:37:f1:c0:57:93:24:
ae:20:de:1f:9f:3a:58:84:00:be:49:f0:47:2d:92:
94:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:15:2E:9C:D4:31:41:E8:32:F7:5E:07:E5:AA:94:0B:5C:9F:F0:D9
X509v3 Authority Key Identifier:
keyid:20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:d6:e6:23:9a:6a:c3:39:f3:48:a8:18:27:f0:9a:9a:1b:4f:
bc:2a:78:64:ef:dd:a1:5a:49:05:03:df:e4:5f:c3:3f:a5:4e:
df:63:d5:80:24:bc:81:e6:2c:0b:87:a1:a6:9d:5a:22:9a:01:
e4:67:0b:4b:65:a7:dd:f8:9a:67:aa:0b:31:8e:25:0d:ce:7a:
0a:81:66:b7:1c:19:d6:4d:44:a1:2b:0d:97:4e:22:6a:f9:b8:
2c:49:03:6a:0b:af:27:45:61:14:0f:73:23:38:f7:39:75:a2:
7c:4f:c8:62:51:8e:93:c7:a1:8f:10:f7:3f:dd:0e:13:11:3c:
db:fc:35:10:37:fb:79:bf:28:b5:eb:fa:3e:e7:7b:31:f2:e4:
17:45:1a:32:e6:87:b2:c5:a0:92:22:56:16:ca:29:97:f6:cc:
9b:c7:9d:d1:7c:ac:c2:9c:cd:06:d7:7c:14:98:b6:33:e6:ba:
de:03:84:80:bb:35:eb:2e:3e:12:3d:f6:c2:9a:c4:5d:7b:a2:
b8:30:75:fe:77:6c:41:01:6b:5d:ea:11:d8:63:7d:94:2b:f5:
e8:e0:f6:d2:80:42:60:cc:42:04:f4:84:68:51:41:74:df:9d:
3a:5c:59:5a:01:03:cf:d4:84:e5:ed:07:b8:71:3b:dd:a5:db:
b3:89:2a:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:59:53 2025 by rpki-client