Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/e62615-b7a1-480e-a39d-1ac382dd5c7e/1/9oUCGMB4Hne2SXXDTBalwSm3nrk.mft
File: 9oUCGMB4Hne2SXXDTBalwSm3nrk.mft (raw, json)
Hash identifier: EMnJYXpKao2pPY1pdmp6X1AH2PprUBAGYlRrugy9RR4=
Subject key identifier: CA:15:32:AF:8A:48:98:44:E5:E2:35:90:0B:80:64:BB:DA:44:6A:C7
Authority key identifier: F6:85:02:18:C0:78:1E:77:B6:49:75:C3:4C:16:A5:C1:29:B7:9E:B9
Certificate issuer: /CN=f6850218c0781e77b64975c34c16a5c129b79eb9
Certificate serial: 01967FB44CC0792CD8CBB85A28D5BFB687EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9oUCGMB4Hne2SXXDTBalwSm3nrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/e62615-b7a1-480e-a39d-1ac382dd5c7e/1/9oUCGMB4Hne2SXXDTBalwSm3nrk.mft
Manifest number: 2D
Signing time: Tue 29 Apr 2025 04:00:44 +0000
Manifest this update: Tue 29 Apr 2025 04:00:44 +0000
Manifest next update: Wed 30 Apr 2025 04:00:44 +0000
Files and hashes: 1: 9oUCGMB4Hne2SXXDTBalwSm3nrk.crl (hash: GLQqVFJt4f74RvSeXBiYzXoIFJ5faNlR/2KhlTOG3DA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/e62615-b7a1-480e-a39d-1ac382dd5c7e/1/9oUCGMB4Hne2SXXDTBalwSm3nrk.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/e62615-b7a1-480e-a39d-1ac382dd5c7e/1/9oUCGMB4Hne2SXXDTBalwSm3nrk.mft
rsync://rpki.ripe.net/repository/DEFAULT/9oUCGMB4Hne2SXXDTBalwSm3nrk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 04:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:b4:4c:c0:79:2c:d8:cb:b8:5a:28:d5:bf:b6:87:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6850218c0781e77b64975c34c16a5c129b79eb9
Validity
Not Before: Apr 29 04:00:44 2025 GMT
Not After : Apr 30 04:00:44 2025 GMT
Subject: CN=ca1532af8a489844e5e235900b8064bbda446ac7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:16:50:c9:e3:fb:05:d3:6a:8b:a8:bb:55:cd:
52:ea:c8:56:72:f4:ac:30:1e:85:32:11:34:32:bb:
53:1f:4e:8d:b1:34:c7:aa:4e:30:6f:04:f0:23:a6:
40:3b:ca:3a:2c:ed:31:15:f2:94:6e:d9:01:d6:61:
20:22:4e:be:b7:f7:5e:c0:a6:02:3d:20:7b:81:96:
2a:cd:8e:9f:80:81:ed:9b:a6:77:e1:c0:b3:1d:d1:
55:2f:93:3a:fb:9a:5a:0c:ef:6e:ff:3b:b6:c8:79:
15:dc:c4:b5:e1:5a:96:22:79:ce:15:26:f7:8c:c4:
8e:6b:8d:b6:36:0f:7d:83:10:15:0a:bb:b7:21:f5:
fb:c1:96:b6:2e:f8:d1:1b:55:c3:c5:b1:c7:c3:ae:
5e:f0:19:9b:e4:c9:1a:f8:fd:db:19:10:bb:45:a5:
1a:8e:3e:ae:96:23:b3:57:c6:0a:c7:f3:0f:40:c8:
2e:35:be:37:f6:e1:ea:21:91:c6:8a:e0:51:d1:b6:
f3:ca:16:68:04:e1:94:4a:c7:63:5a:a0:81:00:4f:
e6:bc:bf:06:e9:d9:92:9b:02:9e:94:47:51:12:e8:
3f:53:d0:d3:18:da:03:11:0d:5f:a3:cf:2b:64:2d:
7a:65:0b:58:f8:69:08:81:64:f5:54:4c:18:c8:a1:
8a:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:15:32:AF:8A:48:98:44:E5:E2:35:90:0B:80:64:BB:DA:44:6A:C7
X509v3 Authority Key Identifier:
keyid:F6:85:02:18:C0:78:1E:77:B6:49:75:C3:4C:16:A5:C1:29:B7:9E:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9oUCGMB4Hne2SXXDTBalwSm3nrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/e62615-b7a1-480e-a39d-1ac382dd5c7e/1/9oUCGMB4Hne2SXXDTBalwSm3nrk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/e62615-b7a1-480e-a39d-1ac382dd5c7e/1/9oUCGMB4Hne2SXXDTBalwSm3nrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:30:f8:ef:8f:44:d2:b6:af:c2:ba:1c:18:b1:5f:f1:3c:76:
af:09:e7:12:ec:8c:8f:ad:8b:dd:63:b6:cb:af:ad:6f:70:86:
6f:50:49:43:57:9c:f2:4b:9a:e9:08:52:07:e0:31:b2:24:a2:
7a:18:8a:18:6b:d8:b8:cc:4d:8d:61:4d:10:6e:5c:57:f3:fa:
8a:9f:1b:52:6c:02:a0:35:0e:b7:d4:4c:9c:ba:f4:12:a4:4e:
af:c7:a9:ff:a8:ae:07:87:eb:9d:ac:f0:d4:68:35:e2:4a:a8:
75:4d:67:d0:e5:66:1a:3a:76:85:e6:bb:9e:e2:48:ae:db:62:
12:cb:ca:ae:6c:67:11:c9:66:0d:b9:6a:00:19:04:96:2b:34:
ed:27:3d:69:84:5e:5d:27:85:81:ee:8f:91:7c:6c:89:97:d6:
83:a5:15:2d:0d:ba:2a:e9:fa:b6:43:5e:d4:23:16:40:e4:ec:
d8:3f:c6:2f:36:fa:a9:91:0d:68:ec:9f:50:37:97:03:b3:92:
6d:d0:81:ee:4d:36:72:8b:2f:50:f9:a3:51:b1:f8:4a:33:78:
02:a8:81:0f:43:21:e0:72:0a:7b:1b:31:57:0c:2e:e8:fb:08:
76:97:b6:f2:9a:7d:6f:d6:0b:9b:b1:fa:22:96:55:3e:28:26:
e6:5a:30:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 13:24:31 2025 by rpki-client