Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft
File: tWpL1vXr8vf_2ajRzZparN5iKFw.mft (raw, json)
Hash identifier: dv/se+NMktcU/QlmMb5ORACZtiasVrt2tAHvTYzC32Y=
Subject key identifier: 42:4C:00:E8:FF:99:84:F6:B2:FB:F8:4C:99:F5:BB:53:EE:34:CD:BD
Authority key identifier: B5:6A:4B:D6:F5:EB:F2:F7:FF:D9:A8:D1:CD:9A:5A:AC:DE:62:28:5C
Certificate issuer: /CN=b56a4bd6f5ebf2f7ffd9a8d1cd9a5aacde62285c
Certificate serial: 01968247907D2BAA75A0F1896FDE5D8C38E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft
Manifest number: 06CF
Signing time: Tue 29 Apr 2025 16:00:50 +0000
Manifest this update: Tue 29 Apr 2025 16:00:50 +0000
Manifest next update: Wed 30 Apr 2025 16:00:50 +0000
Files and hashes: 1: tWpL1vXr8vf_2ajRzZparN5iKFw.crl (hash: rpJOwHlVVbpTE+Tj/uS+nvVYYBrR7/SBlgpimOEOkkQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:47:90:7d:2b:aa:75:a0:f1:89:6f:de:5d:8c:38:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b56a4bd6f5ebf2f7ffd9a8d1cd9a5aacde62285c
Validity
Not Before: Apr 29 16:00:50 2025 GMT
Not After : Apr 30 16:00:50 2025 GMT
Subject: CN=424c00e8ff9984f6b2fbf84c99f5bb53ee34cdbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:58:30:8f:27:be:a2:2f:6e:08:0a:14:23:c5:
dc:89:31:d8:04:e3:58:2f:fc:d8:47:5a:cf:3c:bb:
b1:97:5f:c9:3a:6f:d6:cd:46:cc:20:4e:1d:30:d0:
01:11:ab:4f:64:4b:36:27:dd:cd:b9:8d:e6:21:cd:
d1:6c:2b:3c:60:a5:03:4f:7a:5d:59:08:7b:6f:6c:
b5:23:a6:4f:0e:ea:a6:89:37:6a:b4:3c:ae:67:e2:
0c:d2:63:9e:32:fd:28:ec:7f:ad:da:fe:6f:75:c3:
e7:53:77:03:2f:6f:2a:bc:6f:7e:a5:9a:95:57:8d:
bb:cd:a4:54:9a:67:2a:d9:28:36:6b:58:4c:63:be:
f8:93:4f:0c:15:b3:d1:be:ea:54:d5:dd:9f:e8:f5:
c5:eb:53:2b:38:52:c9:d4:28:7c:4b:21:f4:99:7d:
01:1e:f4:ed:a6:9b:da:ca:3b:4b:05:f4:bb:aa:dc:
cc:91:24:25:ac:bd:63:44:9e:6e:65:a5:67:57:2d:
d8:5c:14:23:ba:ce:4a:e3:61:71:2c:82:3b:3d:e4:
5f:07:f4:3c:fd:65:78:6f:72:c4:16:29:15:f7:04:
d1:05:cd:03:bf:a9:b4:d7:2e:29:97:e0:57:56:53:
59:95:b4:84:14:29:21:b9:20:a5:58:6d:42:29:12:
22:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:4C:00:E8:FF:99:84:F6:B2:FB:F8:4C:99:F5:BB:53:EE:34:CD:BD
X509v3 Authority Key Identifier:
keyid:B5:6A:4B:D6:F5:EB:F2:F7:FF:D9:A8:D1:CD:9A:5A:AC:DE:62:28:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:c0:11:9b:46:9d:31:cf:15:12:09:0e:21:30:a3:1a:d0:e3:
b6:0d:d2:d4:9e:5f:20:0d:7c:99:4e:44:57:a0:f3:68:fd:b1:
f3:08:5f:de:48:ff:2b:00:91:f0:77:c8:58:da:86:f0:13:f5:
bf:ed:0a:52:ba:72:a8:c6:2f:cb:1a:d3:72:f9:29:82:65:a6:
15:af:9a:f0:5d:99:a9:0f:03:90:e2:21:5b:86:7e:62:fa:9f:
fe:dd:e8:28:18:54:e0:51:d4:ab:d2:df:9f:ad:94:56:81:17:
2f:31:c5:dd:1c:0a:ba:06:63:59:80:95:ca:5d:48:6a:bd:df:
fd:ae:d2:f8:a8:41:43:33:e1:64:de:01:b5:17:0b:5b:ab:56:
19:02:47:f0:ad:af:00:dc:57:7b:66:79:32:7e:01:46:92:4c:
57:ff:68:38:93:81:c8:e2:3f:b4:79:bd:4f:4c:41:ad:77:20:
b1:9f:17:23:cf:ad:c0:d1:9a:98:35:50:99:3e:0a:79:00:a0:
0c:ce:c4:25:44:bd:4c:b6:31:56:5e:66:89:89:be:df:3e:8d:
9d:a3:82:4d:d2:f8:b2:23:2b:dd:28:cb:fa:77:ab:4f:d2:e3:
8b:ca:75:66:1a:00:b2:bf:0e:67:c3:28:6c:86:f2:6a:cb:a9:
7d:11:23:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 00:16:23 2025 by rpki-client