Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
File: JcUDXdNt8HSfTWKZyPy-1hVcARc.mft (raw, json)
Hash identifier: 69unboEk91FHn7XfoXbDCfd3d3FRg8hzpky7eJOCwWo=
Subject key identifier: 1E:07:06:97:FA:FB:14:F8:3D:6B:2B:0A:27:C8:51:E7:83:2E:A9:31
Authority key identifier: 25:C5:03:5D:D3:6D:F0:74:9F:4D:62:99:C8:FC:BE:D6:15:5C:01:17
Certificate issuer: /CN=25c5035dd36df0749f4d6299c8fcbed6155c0117
Certificate serial: 019677FB8EE30B6FFE937CDCDC6CABB54D42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JcUDXdNt8HSfTWKZyPy-1hVcARc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
Manifest number: 150C
Signing time: Sun 27 Apr 2025 16:01:36 +0000
Manifest this update: Sun 27 Apr 2025 16:01:36 +0000
Manifest next update: Mon 28 Apr 2025 16:01:36 +0000
Files and hashes: 1: JcUDXdNt8HSfTWKZyPy-1hVcARc.crl (hash: RvAgpPrOvJesZVpxoj0syRhU8y1irouhIp+rZMIPmQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
rsync://rpki.ripe.net/repository/DEFAULT/JcUDXdNt8HSfTWKZyPy-1hVcARc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:fb:8e:e3:0b:6f:fe:93:7c:dc:dc:6c:ab:b5:4d:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25c5035dd36df0749f4d6299c8fcbed6155c0117
Validity
Not Before: Apr 27 16:01:36 2025 GMT
Not After : Apr 28 16:01:36 2025 GMT
Subject: CN=1e070697fafb14f83d6b2b0a27c851e7832ea931
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a3:b2:13:7d:2e:d1:39:f5:48:57:80:ea:c1:
be:a8:59:7c:4f:7b:d3:43:45:e5:86:c9:1d:d5:59:
09:02:c7:2f:99:89:f6:70:d3:7b:f3:65:74:98:e3:
2d:43:d4:b6:b2:ac:b1:cb:e0:24:fe:37:11:96:2e:
0e:76:b9:c5:f7:67:2c:da:ac:d5:b9:00:7f:66:71:
8d:88:02:63:ac:f5:c3:7b:54:d3:cb:8e:ca:2b:b5:
9a:fc:71:fc:8a:ec:b2:29:f6:63:a6:70:bc:08:da:
2a:9e:5a:2d:76:e2:7a:20:80:4b:3d:b3:ee:f6:69:
44:5b:4a:79:0a:eb:cb:46:10:55:68:25:e8:35:30:
48:b2:72:a0:be:d5:94:58:22:7c:4d:3d:5e:a5:d9:
fa:7a:87:48:6c:e2:5a:74:cc:73:04:37:e9:a4:63:
3e:f4:c7:39:62:ac:b7:42:62:49:46:98:12:d2:84:
be:9f:d1:1e:56:e9:f9:33:7f:69:b1:84:4e:e3:06:
54:98:fc:d7:dc:76:9c:fa:c5:6e:06:a3:2d:a2:a2:
b6:48:fd:42:d2:b3:4d:d5:79:9f:96:9d:30:cc:f3:
9a:cf:8a:d2:d9:4e:e7:9a:f4:4c:7c:3b:c0:13:f0:
06:19:33:30:2c:0e:6c:37:21:ca:2c:00:1c:52:cb:
bb:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:07:06:97:FA:FB:14:F8:3D:6B:2B:0A:27:C8:51:E7:83:2E:A9:31
X509v3 Authority Key Identifier:
keyid:25:C5:03:5D:D3:6D:F0:74:9F:4D:62:99:C8:FC:BE:D6:15:5C:01:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JcUDXdNt8HSfTWKZyPy-1hVcARc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/809cd5-f23f-4720-8c64-59eb384e0967/1/JcUDXdNt8HSfTWKZyPy-1hVcARc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:b4:9b:cb:81:c9:be:76:fb:3d:9e:a2:00:8d:61:12:e0:98:
a8:8f:25:ef:b3:97:a3:4a:76:8b:53:5f:f4:e2:a9:b7:c1:55:
03:23:2a:bc:a2:0c:15:f7:bb:29:6c:3f:7a:72:dc:b1:db:a3:
c9:da:fe:78:a4:aa:9a:0b:14:91:1f:76:46:c4:02:d5:9c:e5:
d8:85:4e:25:54:92:6f:3a:c9:d8:c1:4b:6c:2c:54:f0:15:0c:
71:fd:0d:6b:60:e3:00:cc:d4:97:89:e3:ce:a3:0e:ff:c5:b5:
24:8e:80:bf:12:16:db:6d:09:80:ed:94:1f:f4:20:ee:c3:53:
50:31:04:31:8c:77:27:58:21:a9:c3:5f:5e:98:93:ae:6a:35:
69:77:46:39:eb:1e:be:17:92:a5:68:de:90:f7:2e:dc:21:b9:
67:b9:e1:ce:e8:ce:26:e9:b6:a9:09:08:8d:54:63:a1:b0:9d:
06:c5:4b:29:42:22:ba:40:f8:b4:cb:f1:04:a2:c5:a3:d9:e2:
6b:e0:53:0e:a9:da:48:0a:5f:7f:a2:52:8c:b3:e6:99:0d:e3:
7e:1e:66:68:2c:bc:e7:15:d5:ce:5e:ed:22:47:9f:51:f4:bf:
5f:f1:05:6c:0a:39:4b:2e:b9:32:c1:cc:81:29:52:99:2f:f7:
46:51:93:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 01:41:42 2025 by rpki-client