Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/863c04-b07e-4c3a-9f45-fe2474d2f07c/1/mgGl7N4ueVkyWREG0II9DRVPcAI.mft
File: mgGl7N4ueVkyWREG0II9DRVPcAI.mft (raw, json)
Hash identifier: XqUT1aXZ+EFx/Ku2amjBNiESemmQYHpLvXvGRNNg7fc=
Subject key identifier: 48:8A:75:0A:55:1B:4D:98:18:1E:D1:1D:06:1C:DE:97:AA:E5:A5:35
Authority key identifier: 9A:01:A5:EC:DE:2E:79:59:32:59:11:06:D0:82:3D:0D:15:4F:70:02
Certificate issuer: /CN=9a01a5ecde2e795932591106d0823d0d154f7002
Certificate serial: 019679E98F494B883FCF6369421A6D8174CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mgGl7N4ueVkyWREG0II9DRVPcAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/863c04-b07e-4c3a-9f45-fe2474d2f07c/1/mgGl7N4ueVkyWREG0II9DRVPcAI.mft
Manifest number: 063D
Signing time: Mon 28 Apr 2025 01:01:11 +0000
Manifest this update: Mon 28 Apr 2025 01:01:11 +0000
Manifest next update: Tue 29 Apr 2025 01:01:11 +0000
Files and hashes: 1: mgGl7N4ueVkyWREG0II9DRVPcAI.crl (hash: 0yiW+CXoHRCfOP0QVkcvc0TQfbVBrpQ1vWM+5sZ6uQM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/863c04-b07e-4c3a-9f45-fe2474d2f07c/1/mgGl7N4ueVkyWREG0II9DRVPcAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/863c04-b07e-4c3a-9f45-fe2474d2f07c/1/mgGl7N4ueVkyWREG0II9DRVPcAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/mgGl7N4ueVkyWREG0II9DRVPcAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:e9:8f:49:4b:88:3f:cf:63:69:42:1a:6d:81:74:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a01a5ecde2e795932591106d0823d0d154f7002
Validity
Not Before: Apr 28 01:01:11 2025 GMT
Not After : Apr 29 01:01:11 2025 GMT
Subject: CN=488a750a551b4d98181ed11d061cde97aae5a535
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:89:05:b5:1a:5e:3d:47:13:b7:e5:32:91:74:
fb:5e:6c:6e:00:4b:a4:40:9d:73:99:82:a8:b9:b5:
62:d0:e7:d7:ac:ba:36:29:62:f3:be:53:8a:89:59:
a6:c0:dc:ac:f9:56:e9:f2:32:7c:fa:f4:d1:59:1f:
b0:58:95:47:d0:a5:6d:00:65:d3:a6:b3:b6:e6:45:
4a:3c:40:ac:11:55:64:dc:34:f9:2d:09:ac:5c:fb:
d2:93:1d:bd:64:f4:df:b1:26:d5:f9:c4:a2:bf:e0:
cf:87:a6:e4:2d:02:5d:6f:99:c7:09:96:c0:68:be:
d7:99:07:e2:10:dc:8c:49:fe:59:74:77:86:7e:0a:
47:bb:0a:5a:8d:b1:f6:12:89:b7:e1:5d:58:32:2c:
f6:30:4c:9b:3d:7a:74:43:9f:49:34:a6:96:cf:ec:
72:23:fb:64:72:3c:d7:29:1b:28:20:5d:0c:5e:33:
b1:a7:1a:ea:94:5d:3a:ac:11:a4:a9:29:cf:36:de:
f3:93:45:e2:dc:1f:7a:18:b4:4f:59:f0:86:fb:d4:
99:c5:e8:ed:7c:4f:da:3d:ea:1c:c8:82:81:17:ad:
4d:a7:25:6f:4c:6a:c8:e2:4f:3d:86:cb:31:df:ec:
ea:4a:f4:fe:7e:06:6a:71:b7:df:e8:a0:99:70:42:
02:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:8A:75:0A:55:1B:4D:98:18:1E:D1:1D:06:1C:DE:97:AA:E5:A5:35
X509v3 Authority Key Identifier:
keyid:9A:01:A5:EC:DE:2E:79:59:32:59:11:06:D0:82:3D:0D:15:4F:70:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mgGl7N4ueVkyWREG0II9DRVPcAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/863c04-b07e-4c3a-9f45-fe2474d2f07c/1/mgGl7N4ueVkyWREG0II9DRVPcAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/863c04-b07e-4c3a-9f45-fe2474d2f07c/1/mgGl7N4ueVkyWREG0II9DRVPcAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:f2:da:4a:82:99:7d:00:45:f0:fa:67:ec:f2:5c:e6:a5:0f:
00:f1:ab:35:34:7a:13:59:86:90:ed:02:0b:a6:41:3a:a9:4b:
68:e6:29:17:8a:01:55:57:f4:36:f0:17:cb:12:a4:e5:9c:01:
4a:a9:72:93:40:9e:f4:7e:77:96:91:b2:c7:fd:67:57:56:2b:
d0:24:92:d9:70:92:83:a1:60:90:92:9c:b9:5a:1a:11:e6:59:
97:0c:99:15:92:5c:d6:76:1e:37:64:8e:f5:a5:d9:64:14:59:
bb:04:73:f5:be:55:c1:e1:d6:26:0c:cb:de:ff:d6:bc:5e:5f:
f8:47:db:78:3f:38:1c:41:c3:cc:91:3f:49:d4:5d:cb:fc:50:
30:bf:69:d0:05:ab:d0:2a:12:b3:63:78:8a:e0:ef:43:ba:ec:
d9:43:0d:fa:a4:f1:31:ef:f0:b8:bc:b0:22:39:27:14:86:99:
3b:65:3c:03:1a:d9:13:08:db:4a:ab:a4:ef:62:60:b2:f2:96:
e1:7b:c5:9b:ea:e9:e6:1a:b4:a0:59:06:b0:d3:bb:44:38:53:
b1:fe:f1:95:ea:46:ed:99:f8:10:bc:39:67:dc:fc:5b:f7:a6:
12:76:fc:92:16:e5:41:d9:8c:40:36:e5:76:ae:39:f1:cb:c6:
c9:d2:e3:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 07:03:24 2025 by rpki-client