Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.mft
File: v8qNbiIJkMc424yExmshnwNFVgw.mft (raw, json)
Hash identifier: g9Vh6eutu5XwPAakU5ZEjKyciGg7SmtV1vRGj15otQE=
Subject key identifier: 31:02:A4:F6:31:74:74:B1:0F:15:AD:08:13:64:BE:24:07:05:FD:EA
Authority key identifier: BF:CA:8D:6E:22:09:90:C7:38:DB:8C:84:C6:6B:21:9F:03:45:56:0C
Certificate issuer: /CN=bfca8d6e220990c738db8c84c66b219f0345560c
Certificate serial: 0196760C3BEA2459812430A659B1D602EEE3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v8qNbiIJkMc424yExmshnwNFVgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.mft
Manifest number: 0F07
Signing time: Sun 27 Apr 2025 07:00:35 +0000
Manifest this update: Sun 27 Apr 2025 07:00:35 +0000
Manifest next update: Mon 28 Apr 2025 07:00:35 +0000
Files and hashes: 1: v8qNbiIJkMc424yExmshnwNFVgw.crl (hash: 8hdNAMdCzryl/7rD/kCcUwOwDf40IB9X27CNnNPwUIU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/v8qNbiIJkMc424yExmshnwNFVgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:3b:ea:24:59:81:24:30:a6:59:b1:d6:02:ee:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfca8d6e220990c738db8c84c66b219f0345560c
Validity
Not Before: Apr 27 07:00:35 2025 GMT
Not After : Apr 28 07:00:35 2025 GMT
Subject: CN=3102a4f6317474b10f15ad081364be240705fdea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1d:3e:c2:6b:d1:46:ae:02:7a:6e:f4:5c:b8:
78:ec:f4:ba:b6:18:bf:38:14:26:c5:1a:d3:b1:6e:
07:b3:f3:a8:83:6a:90:f8:2c:68:0b:bb:78:8f:44:
1f:69:00:9b:17:83:5c:8e:a2:0a:b5:26:24:ec:cb:
ac:ac:17:b3:f4:1b:a8:a2:79:18:09:16:d0:d0:47:
3c:2a:aa:2a:6f:df:31:77:04:65:ec:4f:3c:8b:b6:
85:67:37:10:18:1f:a4:3d:d2:90:b0:71:da:90:c1:
c4:1a:c6:33:6c:08:50:29:67:1c:9b:85:f9:84:ea:
57:a3:fd:52:4e:f7:2e:c5:f1:e9:40:be:81:45:72:
a4:66:ad:b1:d0:66:ec:82:9d:3d:4d:74:93:10:c5:
4d:0a:79:4f:f8:c3:d7:92:3a:03:54:8e:a6:d1:ed:
91:4e:4c:17:57:07:e8:d4:76:12:78:ea:a3:0c:10:
40:be:72:73:b6:ad:3b:17:df:b2:89:15:81:29:da:
37:c4:61:4a:cd:d6:ba:51:fd:11:61:6a:43:8e:87:
c0:0e:b2:f3:ed:8b:a1:9f:d4:89:04:b3:e8:7d:1f:
c8:fe:42:aa:ad:3f:79:ff:74:0b:ea:13:5c:9b:b8:
f0:e3:00:c0:92:5e:cc:b7:0f:6b:72:8d:2d:49:d8:
59:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:02:A4:F6:31:74:74:B1:0F:15:AD:08:13:64:BE:24:07:05:FD:EA
X509v3 Authority Key Identifier:
keyid:BF:CA:8D:6E:22:09:90:C7:38:DB:8C:84:C6:6B:21:9F:03:45:56:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v8qNbiIJkMc424yExmshnwNFVgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/e43194-c37b-4e7a-9150-20e27f879ae7/1/v8qNbiIJkMc424yExmshnwNFVgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:93:ab:ac:33:40:90:d2:ed:a1:63:a3:0c:68:d8:6e:11:8f:
92:f7:51:e3:94:af:e6:48:20:5d:59:76:f7:57:58:3b:4d:93:
a0:40:5a:5a:df:09:17:59:06:f7:0b:df:40:4e:89:2f:79:6c:
55:d5:52:04:38:17:ce:0c:97:14:f5:48:6f:5d:07:a8:0f:33:
8b:ca:2b:44:d7:da:f3:47:7e:28:bb:57:65:42:56:7b:60:73:
3c:56:b8:9b:f5:e7:00:53:88:ce:32:e5:1b:3b:40:c8:a8:54:
08:bf:2b:d4:52:54:0d:2c:44:8b:eb:9a:1a:e8:82:d8:7b:86:
80:1a:66:b9:6b:a2:f9:a4:fc:4a:32:a5:3b:c1:b9:4a:2b:1c:
1d:cf:fa:cc:60:1a:ab:83:d0:7b:f7:01:44:bb:e9:57:a5:d2:
b6:2d:12:38:de:c1:e8:0b:cc:24:45:b4:9a:b1:75:55:84:1c:
7f:08:db:bb:55:46:f1:b4:33:f3:f2:d0:ed:34:66:9d:31:2a:
d2:d8:1d:0a:9f:9a:bb:b6:d1:b9:00:bf:90:8a:bf:40:67:48:
8f:8c:13:8e:34:19:e9:c7:49:f2:4b:f8:7f:ba:c4:c7:b2:c5:
6c:93:84:59:84:ed:40:7a:a3:97:58:bd:c7:5a:a3:43:5e:71:
eb:ba:4a:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 17:56:30 2025 by rpki-client