Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/17aa67-8fe4-4a43-aadd-c4c51fcff497/1/AU97fVHlCBgO5zzt292VXDl3SCI.mft
File: AU97fVHlCBgO5zzt292VXDl3SCI.mft (raw, json)
Hash identifier: HbjQAAm5iaRbH6wgfg7yDhB2jqUU1V9Zuq/xi1Zw6ic=
Subject key identifier: 3B:4F:27:97:A0:44:87:3F:DC:CA:F2:94:24:29:8A:83:62:AF:D6:B5
Authority key identifier: 01:4F:7B:7D:51:E5:08:18:0E:E7:3C:ED:DB:DD:95:5C:39:77:48:22
Certificate issuer: /CN=014f7b7d51e508180ee73ceddbdd955c39774822
Certificate serial: 019653EE55A0379DFF574EF51A86C845E128
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AU97fVHlCBgO5zzt292VXDl3SCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/17aa67-8fe4-4a43-aadd-c4c51fcff497/1/AU97fVHlCBgO5zzt292VXDl3SCI.mft
Manifest number: 14FA
Signing time: Sun 20 Apr 2025 16:00:50 +0000
Manifest this update: Sun 20 Apr 2025 16:00:50 +0000
Manifest next update: Mon 21 Apr 2025 16:00:50 +0000
Files and hashes: 1: AU97fVHlCBgO5zzt292VXDl3SCI.crl (hash: 7qUuVAXhvvr8e/YHansnbUfxzTmdxOgJweICj2FgJHA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/17aa67-8fe4-4a43-aadd-c4c51fcff497/1/AU97fVHlCBgO5zzt292VXDl3SCI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/17aa67-8fe4-4a43-aadd-c4c51fcff497/1/AU97fVHlCBgO5zzt292VXDl3SCI.mft
rsync://rpki.ripe.net/repository/DEFAULT/AU97fVHlCBgO5zzt292VXDl3SCI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:ee:55:a0:37:9d:ff:57:4e:f5:1a:86:c8:45:e1:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=014f7b7d51e508180ee73ceddbdd955c39774822
Validity
Not Before: Apr 20 16:00:50 2025 GMT
Not After : Apr 21 16:00:50 2025 GMT
Subject: CN=3b4f2797a044873fdccaf29424298a8362afd6b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f3:7e:6b:31:96:94:e9:a8:7b:a6:79:8f:fc:
27:62:69:b6:15:83:b9:a3:9a:93:60:f1:65:3b:c6:
7d:59:b7:0a:60:16:d7:a1:13:ef:db:8e:de:c9:5c:
f8:7e:5e:b9:aa:35:30:bc:f6:48:68:19:8c:43:d0:
82:19:56:0c:97:75:66:a2:2a:c8:e7:f2:e9:9a:c2:
77:53:b6:15:69:f7:88:9d:a7:08:7c:72:9b:23:c4:
ef:45:74:e6:f2:58:73:bc:ba:b0:71:fb:67:13:84:
d9:7c:0e:2f:47:0e:b6:9f:c6:10:dc:2c:46:38:2f:
d6:9f:19:62:34:c7:ad:ee:32:f8:e6:31:b9:a8:cc:
61:c7:44:65:b6:3b:10:a4:79:67:33:aa:06:00:4f:
a4:a6:15:e3:81:ba:34:13:48:aa:3a:e2:e2:63:04:
df:31:66:e4:58:24:9c:26:f5:08:30:2d:d8:f4:48:
8c:bc:53:81:a7:20:54:2b:64:91:ad:13:8c:73:20:
ad:83:43:6f:c9:f2:4b:f7:ab:fa:3b:c3:f4:2e:05:
fa:a6:de:fe:10:44:5d:05:ca:a6:73:98:45:db:ad:
ad:f3:82:e0:9a:6f:09:db:36:90:f9:28:0c:3d:b6:
ce:7b:f6:20:f4:c5:32:38:92:51:c4:29:11:cb:5c:
f1:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:4F:27:97:A0:44:87:3F:DC:CA:F2:94:24:29:8A:83:62:AF:D6:B5
X509v3 Authority Key Identifier:
keyid:01:4F:7B:7D:51:E5:08:18:0E:E7:3C:ED:DB:DD:95:5C:39:77:48:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AU97fVHlCBgO5zzt292VXDl3SCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/17aa67-8fe4-4a43-aadd-c4c51fcff497/1/AU97fVHlCBgO5zzt292VXDl3SCI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/17aa67-8fe4-4a43-aadd-c4c51fcff497/1/AU97fVHlCBgO5zzt292VXDl3SCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:ce:b4:5c:6f:f1:60:05:7c:62:22:59:5b:77:e9:20:fe:7a:
33:de:79:8d:38:97:9f:69:62:3d:65:4c:dc:7f:c8:9d:e0:2f:
2b:c2:a6:a9:86:32:52:ff:40:44:29:22:15:60:ee:44:79:c5:
23:62:9c:27:19:ee:71:cd:98:32:14:86:58:2c:5d:23:9a:b1:
45:09:29:56:2a:f6:62:a1:b7:b1:32:ae:4d:5c:7d:32:81:80:
90:e3:53:5b:77:e0:a9:b7:90:d7:41:73:d1:75:25:c1:de:ec:
76:da:cb:34:5f:6a:1d:e2:7f:07:98:dc:ea:7a:a0:ff:0f:f1:
ab:7e:c5:de:41:e7:0c:75:69:ca:6f:c9:62:16:51:c6:f1:d8:
8d:b1:01:66:02:6c:fc:cc:70:f5:f6:5a:e3:03:b2:53:f1:79:
c9:6e:ef:34:2c:d6:c0:da:09:1c:1d:ac:47:fb:e4:c1:f9:db:
a8:65:23:1a:2e:f4:5b:96:67:66:51:99:a4:12:ff:92:aa:0d:
ec:e0:04:a1:da:72:4c:5b:63:08:2a:9b:06:9f:3e:29:1f:9e:
b7:17:1d:0a:e9:1b:82:dd:f3:dc:c1:93:e7:00:f5:c1:53:11:
6a:00:b9:ef:d0:cf:62:b1:5d:b9:83:a4:b8:2d:1f:f5:9c:6d:
60:a6:d5:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:25:55 2025 by rpki-client