Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.mft
File: b_rHiuobz0OKYe-RUCRI9glkHS0.mft (raw, json)
Hash identifier: H7xRouTYkTygEZaBcYHs1qW3tqLihWYsph4VvgdXeKg=
Subject key identifier: EC:D0:2A:AC:3C:71:42:D2:7D:36:EA:0C:1A:D4:97:5C:3E:6C:46:49
Authority key identifier: 6F:FA:C7:8A:EA:1B:CF:43:8A:61:EF:91:50:24:48:F6:09:64:1D:2D
Certificate issuer: /CN=6ffac78aea1bcf438a61ef91502448f609641d2d
Certificate serial: 019654934089BED8A00D1436F9A08158E8FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b_rHiuobz0OKYe-RUCRI9glkHS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.mft
Manifest number: 118F
Signing time: Sun 20 Apr 2025 19:00:58 +0000
Manifest this update: Sun 20 Apr 2025 19:00:58 +0000
Manifest next update: Mon 21 Apr 2025 19:00:58 +0000
Files and hashes: 1: b_rHiuobz0OKYe-RUCRI9glkHS0.crl (hash: evxu+WCq/q/DAi0uPrf4Rkpc/9i60Z643pVpFi+Ks7Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/b_rHiuobz0OKYe-RUCRI9glkHS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:93:40:89:be:d8:a0:0d:14:36:f9:a0:81:58:e8:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ffac78aea1bcf438a61ef91502448f609641d2d
Validity
Not Before: Apr 20 19:00:58 2025 GMT
Not After : Apr 21 19:00:58 2025 GMT
Subject: CN=ecd02aac3c7142d27d36ea0c1ad4975c3e6c4649
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:49:f5:f0:2d:6b:25:fa:6e:cf:d4:62:27:05:
1e:cb:69:1b:c2:d4:da:0d:66:25:c8:d8:2f:0d:4f:
85:af:fc:c0:fd:af:1c:78:e6:90:17:b4:6f:69:66:
06:a3:fb:53:43:dc:d3:bf:ba:45:65:b2:e8:14:22:
ad:ac:5f:b9:b4:3d:82:cb:50:a7:b1:bf:13:94:97:
40:12:a4:52:da:69:2b:b1:9e:39:6f:41:af:12:bf:
47:f0:67:5a:ff:c7:05:d5:40:2e:f0:cd:9c:46:00:
24:23:f8:33:73:88:56:53:63:ca:8e:3e:a3:25:d4:
48:e1:03:2f:47:4f:2a:1a:94:7b:6e:c6:f1:52:a3:
96:c2:a7:19:b0:5e:62:c7:fe:28:d4:07:7e:48:7c:
5a:85:d1:5e:55:50:68:86:ea:ba:7b:c8:0b:c9:aa:
ba:ca:23:fb:33:e9:e2:b8:2f:aa:82:8f:b4:6e:04:
12:1e:2f:f2:1d:a0:89:d1:95:c2:47:0f:72:c2:25:
81:fb:87:6d:5a:22:45:35:c1:bb:b1:05:62:aa:43:
05:22:68:58:f5:b8:92:49:3c:73:08:76:a8:e4:d3:
1c:89:1b:4d:03:ec:fb:e7:bd:b5:d2:5b:f7:74:7c:
8f:12:e4:b8:49:00:3e:08:f8:dc:fc:3b:c1:d8:f6:
45:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:D0:2A:AC:3C:71:42:D2:7D:36:EA:0C:1A:D4:97:5C:3E:6C:46:49
X509v3 Authority Key Identifier:
keyid:6F:FA:C7:8A:EA:1B:CF:43:8A:61:EF:91:50:24:48:F6:09:64:1D:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b_rHiuobz0OKYe-RUCRI9glkHS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/98e6a9-04d5-45a0-9710-0c343513ade3/1/b_rHiuobz0OKYe-RUCRI9glkHS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:6a:93:5d:ae:4d:08:bf:4d:12:35:c2:fa:4c:64:96:16:0c:
0c:46:ee:d1:5a:cc:5f:b0:2a:72:b2:93:58:63:d0:f2:5a:6f:
be:ee:c7:a5:62:71:37:6f:70:d3:e7:78:95:2d:bf:ff:ee:3f:
70:ba:23:2b:c3:60:5f:64:ee:c1:7e:99:d0:cb:18:ad:bf:08:
01:02:c4:b5:cc:be:41:46:ae:68:05:6b:8e:df:80:b5:d0:d7:
5e:4b:d0:a4:a8:cd:cd:b3:0f:1a:3f:e4:ae:76:34:d5:d4:5a:
be:ff:4b:e7:5a:f1:6e:c2:f4:ff:4c:f2:dc:cd:a3:ab:45:cf:
00:41:ef:58:48:f2:21:f2:de:2b:57:73:35:8c:c2:42:a8:c1:
2d:3b:5a:e3:2b:f0:8a:fd:aa:a4:dc:45:a0:2a:0d:e6:e2:ff:
b6:01:45:66:90:8b:0e:01:3d:2f:cd:be:6f:30:87:32:21:24:
d1:5c:18:b8:35:62:4a:1b:15:8f:98:1c:c3:56:1d:ee:a3:df:
3d:11:db:31:48:3b:bb:3c:e6:e8:21:4b:c4:b3:4b:9e:c2:c5:
8f:16:99:e3:db:28:34:f4:f9:69:6d:d6:8d:99:af:80:a3:0d:
ea:5f:a9:1b:0d:01:6a:be:84:21:1b:7c:31:c2:e3:ec:06:d7:
61:33:0f:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:25:28 2025 by rpki-client