Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft
File: sTI2xNBokx4LRMmLKQqPqlVKA7k.mft (raw, json)
Hash identifier: eUawq2B3fYRCJi5SerO5iOwtzJ56N0ORU6ULbNTEQF8=
Subject key identifier: 1D:4F:4F:13:E2:B1:0C:05:79:A2:5D:AE:21:3F:09:D1:6B:B2:32:9F
Authority key identifier: B1:32:36:C4:D0:68:93:1E:0B:44:C9:8B:29:0A:8F:AA:55:4A:03:B9
Certificate issuer: /CN=b13236c4d068931e0b44c98b290a8faa554a03b9
Certificate serial: 01967A56DDE80AC79AFF203BF414CECBA56C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sTI2xNBokx4LRMmLKQqPqlVKA7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft
Manifest number: 02D8
Signing time: Mon 28 Apr 2025 03:00:35 +0000
Manifest this update: Mon 28 Apr 2025 03:00:35 +0000
Manifest next update: Tue 29 Apr 2025 03:00:35 +0000
Files and hashes: 1: sTI2xNBokx4LRMmLKQqPqlVKA7k.crl (hash: ip2QeTSnDwXbQ7LF/lyHzDLfnkR7YqCyG5y1ws9n6qg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft
rsync://rpki.ripe.net/repository/DEFAULT/sTI2xNBokx4LRMmLKQqPqlVKA7k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7a:56:dd:e8:0a:c7:9a:ff:20:3b:f4:14:ce:cb:a5:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b13236c4d068931e0b44c98b290a8faa554a03b9
Validity
Not Before: Apr 28 03:00:35 2025 GMT
Not After : Apr 29 03:00:35 2025 GMT
Subject: CN=1d4f4f13e2b10c0579a25dae213f09d16bb2329f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:17:76:50:b8:f5:91:57:18:1b:e6:ab:85:c7:
58:4f:8b:a5:82:9d:a4:e2:44:92:60:e9:3c:ba:be:
30:5c:8e:5a:8f:69:77:16:cd:64:9c:89:c4:d3:06:
45:45:6f:f2:71:13:92:4f:2b:97:47:70:7a:01:6f:
80:2c:d5:73:3d:06:21:67:f7:bb:1b:c4:e8:b7:82:
ed:45:64:10:65:4c:09:da:04:7a:f9:3d:30:a1:b0:
ab:d9:0a:62:e4:18:a2:5d:86:91:2b:d5:fb:3d:80:
9a:f6:32:3f:c1:b3:98:f7:94:70:e0:2a:a3:b3:b3:
5a:ab:99:ce:49:93:cf:54:9d:cd:fd:e1:91:64:e5:
34:8b:bd:f8:33:76:65:9c:1d:e1:a5:ea:3a:36:a7:
b6:9d:19:5c:ba:31:6d:56:21:4b:2d:c7:6c:6b:71:
16:b9:2c:cc:43:55:30:40:ea:6a:c0:9c:d8:84:79:
25:1b:a7:61:f7:a1:c9:08:60:72:27:08:8a:cb:9f:
1b:28:62:f0:52:c2:45:3b:26:c1:fa:f1:56:fa:55:
33:6a:0c:20:f2:13:10:7d:a1:34:18:6d:c8:81:19:
61:8f:ae:99:31:e4:0a:39:00:2f:50:2f:45:6c:8b:
6b:cc:5e:b2:18:f5:e3:d1:02:ea:e3:9b:8a:c9:60:
33:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:4F:4F:13:E2:B1:0C:05:79:A2:5D:AE:21:3F:09:D1:6B:B2:32:9F
X509v3 Authority Key Identifier:
keyid:B1:32:36:C4:D0:68:93:1E:0B:44:C9:8B:29:0A:8F:AA:55:4A:03:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sTI2xNBokx4LRMmLKQqPqlVKA7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:7b:a0:3d:93:a6:7f:b8:c8:94:92:c9:c4:32:03:1c:ec:8d:
e6:a1:44:69:29:43:b7:04:c8:63:13:14:b9:52:20:6b:2c:d9:
d6:48:b5:36:ff:c4:e1:11:97:7f:49:f6:68:0a:20:1c:e6:84:
d9:cc:ce:54:18:2b:e5:ed:e6:86:27:9d:0d:cd:14:47:c3:28:
be:ac:d3:e4:98:b8:d2:1f:e0:78:17:a4:90:c4:1d:36:06:da:
c9:4b:25:d6:ce:54:e1:29:e8:af:8a:6b:a0:c0:94:fc:17:1c:
58:64:dc:f2:af:2b:29:98:b3:ef:86:35:2c:f0:0b:ba:3f:de:
70:b4:cd:57:7e:8a:64:3f:2a:ec:12:61:10:85:1b:d3:42:f7:
16:f2:eb:0a:40:83:f7:8d:ee:98:83:e4:b7:48:a7:f7:16:09:
09:7e:24:d1:ab:f8:c6:94:b1:a9:0b:25:94:d1:46:9e:52:39:
0e:e0:b9:d0:6a:d9:61:94:8d:11:c4:80:18:49:96:cb:3f:de:
2f:f3:92:2a:4d:c1:27:c1:16:a0:d6:c4:0b:a5:13:2f:8a:98:
29:2d:6a:ab:f5:ed:7f:ed:e6:8b:d3:a7:3c:60:40:84:d1:18:
bc:85:90:9a:ca:71:03:d4:92:55:40:06:18:be:82:13:bf:82:
dd:55:8c:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 07:12:28 2025 by rpki-client