Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/4b37db-042c-4041-8797-f0a7a4c58673/1/J4dqqRe20B2U_yVmKwj7IT8P570.mft
File: J4dqqRe20B2U_yVmKwj7IT8P570.mft (raw, json)
Hash identifier: IgoKYdy4arzWxty/AQJ4wNYBUW9a1NPDy/lyZyhS0kY=
Subject key identifier: 3D:63:55:B8:21:0D:E5:18:BC:45:77:B7:0E:AE:AA:63:EF:95:6E:6A
Authority key identifier: 27:87:6A:A9:17:B6:D0:1D:94:FF:25:66:2B:08:FB:21:3F:0F:E7:BD
Certificate issuer: /CN=27876aa917b6d01d94ff25662b08fb213f0fe7bd
Certificate serial: 01965725B5211492D074CE309C240B574BC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J4dqqRe20B2U_yVmKwj7IT8P570.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/4b37db-042c-4041-8797-f0a7a4c58673/1/J4dqqRe20B2U_yVmKwj7IT8P570.mft
Manifest number: 0E8B
Signing time: Mon 21 Apr 2025 07:00:11 +0000
Manifest this update: Mon 21 Apr 2025 07:00:11 +0000
Manifest next update: Tue 22 Apr 2025 07:00:11 +0000
Files and hashes: 1: J4dqqRe20B2U_yVmKwj7IT8P570.crl (hash: 1+wpLAZ4gMF4sqXtgwc6+FERJZkI3klS9fYlwpxu1UQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/4b37db-042c-4041-8797-f0a7a4c58673/1/J4dqqRe20B2U_yVmKwj7IT8P570.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/4b37db-042c-4041-8797-f0a7a4c58673/1/J4dqqRe20B2U_yVmKwj7IT8P570.mft
rsync://rpki.ripe.net/repository/DEFAULT/J4dqqRe20B2U_yVmKwj7IT8P570.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:25:b5:21:14:92:d0:74:ce:30:9c:24:0b:57:4b:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27876aa917b6d01d94ff25662b08fb213f0fe7bd
Validity
Not Before: Apr 21 07:00:11 2025 GMT
Not After : Apr 22 07:00:11 2025 GMT
Subject: CN=3d6355b8210de518bc4577b70eaeaa63ef956e6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3e:89:09:84:ee:2d:cf:32:3d:f0:c1:28:f9:
c9:6d:1d:63:90:6a:9b:fb:bc:bf:5d:08:0a:fe:17:
b1:cd:ad:1f:de:8f:f7:07:29:ea:93:50:b7:d0:b0:
3b:11:91:c3:d2:c3:39:df:ff:08:d0:5b:30:bc:84:
7a:f6:29:9d:cf:0f:57:e4:3e:b9:ee:3c:3d:ad:c9:
2d:3f:27:15:a8:52:4d:ff:3c:70:78:a1:80:6c:3c:
03:fb:91:27:2e:7c:e6:ed:8b:62:da:37:ec:6d:c1:
d6:ad:99:04:51:06:e9:b4:92:5d:ed:87:fa:95:8a:
80:ab:8e:97:1f:54:08:06:dd:61:5c:cf:a1:7b:3e:
f0:71:c6:2c:ef:ff:53:f5:01:1c:ae:5c:8a:85:93:
38:13:a2:49:9c:0c:31:10:7f:e7:f4:39:8c:40:6f:
2d:f6:48:5d:d5:c1:8f:b3:70:5b:c6:c7:df:ae:5f:
16:ce:cf:a3:0d:bb:4a:0e:05:ae:ca:3a:1b:9a:bc:
50:69:2c:a2:6b:ad:1a:67:ad:3e:36:87:a4:7b:8e:
f0:04:7b:16:6b:4a:3f:b0:33:d5:5f:4d:ce:eb:78:
7f:18:4a:46:db:cc:07:11:b5:22:ad:4e:fc:a5:56:
a6:b8:b1:cb:eb:fe:88:dc:1d:b2:79:8f:ac:aa:4e:
30:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:63:55:B8:21:0D:E5:18:BC:45:77:B7:0E:AE:AA:63:EF:95:6E:6A
X509v3 Authority Key Identifier:
keyid:27:87:6A:A9:17:B6:D0:1D:94:FF:25:66:2B:08:FB:21:3F:0F:E7:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J4dqqRe20B2U_yVmKwj7IT8P570.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4b37db-042c-4041-8797-f0a7a4c58673/1/J4dqqRe20B2U_yVmKwj7IT8P570.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4b37db-042c-4041-8797-f0a7a4c58673/1/J4dqqRe20B2U_yVmKwj7IT8P570.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:57:ad:87:57:c2:d4:9d:d7:c0:79:75:25:fe:a0:15:cb:74:
88:79:c2:77:b2:64:f1:0b:9e:44:17:b2:18:c4:48:a5:2c:20:
e0:8a:63:2e:e3:52:9f:29:e2:08:9c:b9:9d:2a:1a:18:67:b8:
98:bf:5b:01:3c:6d:96:92:c0:bd:f5:b6:7d:63:ee:46:95:90:
ef:05:51:a7:de:90:bd:00:05:08:af:71:14:8b:e1:cc:d0:50:
0c:a7:98:21:0f:98:3a:65:79:13:fc:3a:e6:ee:58:24:17:06:
92:20:4c:63:9b:71:31:ec:a9:a0:2d:b6:3e:cb:5d:c6:8a:15:
cc:9c:cb:48:26:59:8e:b6:62:40:ac:67:75:51:d5:ef:d8:57:
10:f3:bb:55:be:6c:7f:5e:a3:e2:60:38:20:b4:a8:7b:ff:58:
91:e1:c2:d2:3f:bc:8c:2f:51:4e:6f:3c:ab:50:fc:bf:51:b8:
f2:b0:eb:b3:b5:7e:aa:db:df:7e:3f:26:80:59:e5:a5:05:16:
6e:21:6e:4e:8e:76:a3:84:f0:c5:a9:3e:64:02:29:cb:b4:e0:
99:d7:f6:66:f3:73:bb:02:e1:66:18:89:71:89:b4:bf:22:b1:
e6:96:f4:76:d0:88:8a:19:8d:aa:f7:13:94:d3:17:c1:ab:51:
50:4b:aa:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:38:11 2025 by rpki-client