Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft
File: F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft (raw, json)
Hash identifier: HoSag2ff3o9ps6FERKGoHokth9bovBC8uR7SshZZeOE=
Subject key identifier: C2:E1:1A:5C:E4:B4:B3:DD:9E:91:58:C4:2D:37:08:3F:7D:7A:D5:8A
Authority key identifier: 17:D8:73:12:06:53:B3:CF:E5:51:72:A9:DC:60:57:E8:CC:D0:CB:5C
Certificate issuer: /CN=17d873120653b3cfe55172a9dc6057e8ccd0cb5c
Certificate serial: 01965349FAAE0074454C24EB4836BD2ECD4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9hzEgZTs8_lUXKp3GBX6MzQy1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft
Manifest number: 0C9E
Signing time: Sun 20 Apr 2025 13:01:19 +0000
Manifest this update: Sun 20 Apr 2025 13:01:19 +0000
Manifest next update: Mon 21 Apr 2025 13:01:19 +0000
Files and hashes: 1: F9hzEgZTs8_lUXKp3GBX6MzQy1w.crl (hash: 1eoD0aLgMpxS8TtKoMKp3Rx2PaYKy1nrjYBFUhQD+YQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/F9hzEgZTs8_lUXKp3GBX6MzQy1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 13:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:49:fa:ae:00:74:45:4c:24:eb:48:36:bd:2e:cd:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d873120653b3cfe55172a9dc6057e8ccd0cb5c
Validity
Not Before: Apr 20 13:01:19 2025 GMT
Not After : Apr 21 13:01:19 2025 GMT
Subject: CN=c2e11a5ce4b4b3dd9e9158c42d37083f7d7ad58a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:70:68:5d:0d:54:44:6b:00:4c:b2:96:39:55:
54:78:79:00:84:8d:66:a6:6a:82:7e:b0:28:33:fb:
e7:d8:a6:8f:95:8d:5e:73:58:7e:55:1f:87:9f:10:
2d:a0:a1:c9:ec:68:d0:cc:2d:7a:0f:fb:74:c9:4f:
eb:69:8c:c6:48:04:03:e3:1d:a0:c7:68:0f:63:7a:
a3:4d:90:e8:1b:da:fa:ee:1a:8f:fe:df:38:3b:37:
32:61:0b:9e:02:ef:06:05:aa:30:0a:0d:0d:1a:f0:
8f:23:93:c7:50:37:d5:54:97:1a:70:9c:22:79:f5:
48:b5:94:47:7f:fd:48:cb:b4:fa:d6:95:61:11:a5:
e5:65:73:d0:c8:58:ef:f7:6e:7e:c8:af:df:71:a2:
9c:df:52:a7:9b:f0:89:77:f6:bd:b4:de:68:af:ba:
ba:03:6d:4b:7c:43:9a:f0:9d:ff:d7:74:f4:9a:02:
25:42:e1:2b:7e:e0:3d:0d:3e:4a:94:e1:15:d9:23:
b4:92:bb:c2:28:af:d7:87:fa:61:9e:30:02:15:46:
19:c2:71:9a:24:13:a6:70:b1:81:5d:8c:d5:2a:42:
b2:9e:bb:4e:db:b2:e2:c5:2e:41:78:b2:3b:ac:54:
0e:86:51:2f:5a:5d:37:a9:3e:be:1e:8d:4c:d1:82:
f0:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:E1:1A:5C:E4:B4:B3:DD:9E:91:58:C4:2D:37:08:3F:7D:7A:D5:8A
X509v3 Authority Key Identifier:
keyid:17:D8:73:12:06:53:B3:CF:E5:51:72:A9:DC:60:57:E8:CC:D0:CB:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9hzEgZTs8_lUXKp3GBX6MzQy1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:d3:20:06:dd:9d:7e:af:2a:77:50:9b:24:1a:0e:2b:72:14:
cd:6b:c9:fc:15:b7:a9:c3:dc:c1:5c:98:85:f1:06:8f:ff:70:
9f:c6:88:a9:eb:28:50:d6:94:40:f1:3e:4e:56:ba:78:fe:ee:
52:21:39:ad:a5:04:3f:a9:b4:a9:ab:0f:c2:41:1e:0e:43:f8:
f7:ba:fa:a2:8b:6c:34:86:4e:9b:0a:85:4d:78:f9:18:a3:f5:
43:8f:99:c1:f5:3b:67:76:1a:9c:21:d4:18:04:48:72:7f:6c:
86:eb:c4:37:6b:0a:9c:a2:27:52:c8:9c:f3:58:7a:24:ef:5f:
ea:0a:50:69:68:08:7f:a6:49:7c:83:e0:85:40:b0:55:c1:be:
99:68:9e:62:ae:d7:23:26:5e:65:cc:a6:61:85:71:dd:a3:74:
71:5d:12:38:64:d3:bf:65:e9:d5:ed:a9:0b:64:b5:83:74:ae:
a4:80:a9:85:50:f0:fe:92:bf:0d:8b:a8:54:72:d7:4e:c9:e9:
c2:f5:30:ed:11:9d:ca:1e:cf:54:be:b8:e8:f5:0a:0c:34:b5:
fd:0a:e8:6b:a8:d7:cf:0e:ab:34:61:a8:9e:1e:5e:48:86:19:
35:c8:96:fa:df:0c:bf:f2:96:9c:57:c8:dc:06:38:1c:d0:f5:
dc:07:84:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 21:45:48 2025 by rpki-client