Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
File: mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft (raw, json)
Hash identifier: m+WSj8AsoXoZebDj7+bqKakYGc0eLbEYSLMCpvHjeKA=
Subject key identifier: 6F:1B:D7:4B:D1:41:8F:C0:62:E7:14:4E:D5:44:8A:2C:1E:E1:A0:5C
Authority key identifier: 9A:F9:D1:E5:5F:43:E4:FD:D6:D2:4F:B4:B0:ED:A6:E9:D1:28:AA:51
Certificate issuer: /CN=9af9d1e55f43e4fdd6d24fb4b0eda6e9d128aa51
Certificate serial: 01967FB4F79C80BE3A6796E5B7203683FB76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
Manifest number: 0FB6
Signing time: Tue 29 Apr 2025 04:01:28 +0000
Manifest this update: Tue 29 Apr 2025 04:01:28 +0000
Manifest next update: Wed 30 Apr 2025 04:01:28 +0000
Files and hashes: 1: mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl (hash: l/rxf4PHczixtAIERKQbwebIEDc9YS3pqhLSo5j8Kr4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 04:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:b4:f7:9c:80:be:3a:67:96:e5:b7:20:36:83:fb:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9af9d1e55f43e4fdd6d24fb4b0eda6e9d128aa51
Validity
Not Before: Apr 29 04:01:28 2025 GMT
Not After : Apr 30 04:01:28 2025 GMT
Subject: CN=6f1bd74bd1418fc062e7144ed5448a2c1ee1a05c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1c:57:d9:94:91:cb:b2:b7:9d:00:33:4a:63:
44:1a:66:3f:87:18:59:ae:aa:87:ff:2f:04:f4:7e:
3a:16:ce:f5:66:69:59:0a:d1:41:82:d6:20:d4:67:
18:e0:bc:63:c3:ef:da:3c:97:34:f0:ce:7a:9b:24:
a7:51:8f:af:05:a2:ec:3b:56:32:b5:3e:03:6c:3f:
3d:86:39:8b:25:a2:3f:f3:96:eb:4d:ed:fd:a6:bf:
76:c3:cc:b0:d9:58:e5:ff:45:cb:0f:13:45:84:c8:
47:e2:70:09:a6:24:d1:73:f3:b7:9a:db:f3:1e:d3:
9a:e6:c6:ac:de:a7:6e:9d:7a:0d:21:0e:61:08:e8:
ed:7a:e0:5c:5a:9d:c2:ec:b0:50:6c:42:7f:4d:f0:
76:a8:4d:77:b3:c9:0b:af:a6:b4:37:93:d7:ae:97:
79:db:bc:18:b5:18:b8:ed:4a:7a:4a:ec:0b:d6:5c:
88:53:e6:41:37:a9:b9:79:19:d0:7e:21:53:9d:ce:
bf:ab:71:2e:7e:b8:64:35:26:4d:37:42:d6:6b:39:
af:eb:6b:31:10:8d:8d:1e:a8:bc:cc:97:64:68:1a:
15:df:fd:65:78:17:c3:34:cf:b3:bd:bc:03:48:fe:
27:53:d9:7a:91:9d:ca:f5:34:b6:1a:45:24:42:4e:
78:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:1B:D7:4B:D1:41:8F:C0:62:E7:14:4E:D5:44:8A:2C:1E:E1:A0:5C
X509v3 Authority Key Identifier:
keyid:9A:F9:D1:E5:5F:43:E4:FD:D6:D2:4F:B4:B0:ED:A6:E9:D1:28:AA:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:1b:da:bd:9c:12:77:0c:17:9f:fe:cb:1b:ad:4a:a3:cd:a1:
e3:3c:cb:04:5f:bc:35:cf:16:12:ac:9c:08:6d:64:cc:10:a3:
9f:99:25:d8:ca:8b:51:4a:a0:de:a0:00:53:78:dd:81:4a:e5:
9e:2d:82:0c:3b:44:35:0f:ed:10:07:07:e9:9e:ae:f9:fe:1d:
67:67:e2:9f:f2:7b:5e:7e:bb:f0:91:d4:e9:0a:af:63:7d:61:
16:b5:81:53:85:eb:4c:b9:e9:34:59:85:f7:0a:77:bf:7f:96:
43:5a:91:79:a7:fa:ae:3b:54:4a:f6:30:44:a0:4b:bc:a9:7f:
8a:5d:ee:22:c4:d1:3b:84:be:c7:dc:da:27:f2:ac:34:8b:63:
ef:2a:ad:3c:fd:ff:7a:47:a6:72:8a:bf:5d:b6:26:9b:97:e4:
27:a1:c9:30:25:51:d2:c1:fa:75:5e:98:29:9a:90:f8:b0:17:
f7:16:e5:64:88:e4:4c:5f:5a:a3:1c:bf:9c:1b:e0:27:2e:c1:
6c:70:c6:f6:4d:7a:4a:92:a2:d7:fe:53:ad:a9:9a:c3:e6:d5:
19:c6:e1:e2:9b:2f:b7:c4:a2:c8:80:7e:07:d6:a8:88:cd:94:
e0:be:ad:8e:88:97:55:91:9d:1f:a0:2f:25:0e:bd:88:08:35:
6c:72:e3:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 13:26:00 2025 by rpki-client