Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
File: EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft (raw, json)
Hash identifier: vjpOibfOBlD1dLGUv81HneySixdALWGc6bqlWYv+VIQ=
Subject key identifier: 4A:6C:69:8C:84:17:52:50:65:88:DE:62:41:66:F5:BF:2E:D7:4F:9E
Authority key identifier: 11:71:64:1F:15:7C:B5:7B:53:26:26:35:9E:71:58:27:42:C2:DC:CB
Certificate issuer: /CN=1171641f157cb57b532626359e71582742c2dccb
Certificate serial: 019680FDDC4940A951353EA9C92EF4993A5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
Manifest number: 13E6
Signing time: Tue 29 Apr 2025 10:00:42 +0000
Manifest this update: Tue 29 Apr 2025 10:00:42 +0000
Manifest next update: Wed 30 Apr 2025 10:00:42 +0000
Files and hashes: 1: EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl (hash: Jgt0ndGq0I6axOsjGz+r1MDnhZTySz4j8bFKi0xoGzk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:fd:dc:49:40:a9:51:35:3e:a9:c9:2e:f4:99:3a:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1171641f157cb57b532626359e71582742c2dccb
Validity
Not Before: Apr 29 10:00:42 2025 GMT
Not After : Apr 30 10:00:42 2025 GMT
Subject: CN=4a6c698c841752506588de624166f5bf2ed74f9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:f9:8f:33:f1:49:0a:5f:a7:e3:44:b9:cf:90:
69:4c:c1:7e:30:25:7e:a8:0e:fb:77:d0:b0:de:c0:
80:f3:f9:f2:20:70:47:67:fe:90:b5:85:81:30:5b:
b3:bb:d6:2e:6a:53:96:e0:e7:02:51:5c:66:6f:90:
58:68:27:b7:ab:37:5b:bf:c7:7f:d1:15:95:4f:58:
08:a1:73:97:b3:ff:a0:56:dd:32:c4:aa:9f:c2:66:
6e:80:75:16:ef:a7:d8:44:7b:9b:36:67:47:d4:6b:
58:1b:b4:41:e9:24:ad:0f:b0:c3:23:66:d4:ee:28:
22:4b:21:4c:b2:55:b5:60:41:47:a7:ae:26:9c:35:
5e:d9:08:be:19:64:fa:02:25:65:a1:7a:3d:48:d5:
23:e6:af:92:eb:4a:23:6e:7a:53:6c:1d:18:8b:a4:
88:80:ea:a5:24:03:e9:ee:f1:41:27:76:77:5b:f1:
70:c5:e2:e9:35:d5:d8:16:3a:ae:da:e1:1e:2c:0a:
c7:cc:c2:6e:c4:b0:2d:d3:51:21:f8:04:1b:33:3e:
d5:cb:9e:c9:e2:ee:ca:1a:a2:64:a9:c7:e2:36:2b:
e6:da:df:32:74:02:95:1d:28:36:a5:e7:14:db:d2:
15:97:c1:23:55:7b:c5:2c:22:c5:4d:4d:c8:96:07:
89:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:6C:69:8C:84:17:52:50:65:88:DE:62:41:66:F5:BF:2E:D7:4F:9E
X509v3 Authority Key Identifier:
keyid:11:71:64:1F:15:7C:B5:7B:53:26:26:35:9E:71:58:27:42:C2:DC:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/3fa711-06b0-41e3-9c72-3cb9e102afe0/1/EXFkHxV8tXtTJiY1nnFYJ0LC3Ms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:c1:d5:54:e0:3b:dd:62:0e:64:28:72:49:b6:61:48:70:09:
76:24:56:84:0e:b1:e7:e7:10:71:91:3e:c7:78:b8:9d:42:51:
d9:f1:f5:e6:26:63:de:71:d6:b0:d4:5e:f0:d0:cb:fe:d2:b3:
20:32:9c:50:9b:74:ec:a8:e7:6e:33:db:5b:bf:e0:b6:53:5a:
8c:e2:c6:d6:2e:82:53:51:07:83:94:5f:7d:ec:87:fb:7d:2c:
1a:f8:55:ca:4c:dc:e1:48:1c:61:4b:6d:b2:bc:9c:2e:61:f6:
0d:09:32:b4:e0:7f:28:2a:9a:65:b8:56:7c:f5:f6:9e:67:18:
43:65:13:9a:eb:3b:84:3d:55:bc:97:0e:ec:61:f6:2a:3d:f2:
fa:99:9b:77:90:0a:2d:ad:04:5a:3b:1e:86:e4:42:74:b6:62:
15:c6:aa:b4:10:89:77:bf:c1:37:e4:77:46:af:37:14:85:3f:
d0:8c:7a:0f:f2:9d:f0:5a:5b:64:6b:ea:f2:8b:c8:ce:35:02:
4b:18:b9:10:0b:b1:84:0c:72:3a:e5:0e:53:36:30:9a:6b:d8:
f5:86:ee:67:d7:d0:f4:f7:3c:3d:d4:10:9f:c3:0c:d0:0a:0d:
f9:69:f3:f4:c1:c4:52:58:f3:2b:1a:c5:88:6c:be:ee:17:64:
15:ab:e2:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 21:06:50 2025 by rpki-client