Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft
File: INShQtHjFwTrW88Dp4X2N4NVt5k.mft (raw, json)
Hash identifier: R16sFeFPv4wmwg8KJj2J3aE5h/c9dqwccKT0D+ty6ts=
Subject key identifier: DC:17:73:E6:56:B6:3C:38:D9:7A:67:3D:F1:C2:BD:C9:C9:0D:C6:6B
Authority key identifier: 20:D4:A1:42:D1:E3:17:04:EB:5B:CF:03:A7:85:F6:37:83:55:B7:99
Certificate issuer: /CN=20d4a142d1e31704eb5bcf03a785f6378355b799
Certificate serial: 019655A61A6351AC7910E4E5BB6AE6CB7DCB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/INShQtHjFwTrW88Dp4X2N4NVt5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft
Manifest number: 0522
Signing time: Mon 21 Apr 2025 00:01:11 +0000
Manifest this update: Mon 21 Apr 2025 00:01:11 +0000
Manifest next update: Tue 22 Apr 2025 00:01:11 +0000
Files and hashes: 1: INShQtHjFwTrW88Dp4X2N4NVt5k.crl (hash: 1ucv4cdzxZCsJCvO+pNNwj8neR7f8l+4n5t0gDhz5lA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft
rsync://rpki.ripe.net/repository/DEFAULT/INShQtHjFwTrW88Dp4X2N4NVt5k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 00:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:a6:1a:63:51:ac:79:10:e4:e5:bb:6a:e6:cb:7d:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20d4a142d1e31704eb5bcf03a785f6378355b799
Validity
Not Before: Apr 21 00:01:11 2025 GMT
Not After : Apr 22 00:01:11 2025 GMT
Subject: CN=dc1773e656b63c38d97a673df1c2bdc9c90dc66b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:0c:91:37:41:07:ab:37:c9:1d:1c:68:2a:1e:
a7:24:41:a4:b7:d8:54:90:f9:5f:b2:89:e2:db:e7:
d8:ba:c0:bf:cb:fc:aa:8a:0c:9c:8d:90:3c:50:2b:
70:6d:64:52:50:e9:9b:86:bd:63:2e:cc:83:6e:2d:
da:ad:52:b9:6f:84:5d:a5:a7:26:45:85:18:a2:7f:
a8:dd:55:fc:f8:53:33:60:51:24:e8:d9:ec:76:59:
99:38:1c:e4:3a:78:97:40:a9:2e:c0:57:55:e4:72:
ea:85:fd:f8:16:cb:ca:bc:1a:2d:51:6a:9c:8f:48:
fa:88:d6:b2:7c:ef:3e:a9:b6:8a:cf:fd:09:4e:e7:
70:c1:94:d1:87:f0:ba:be:94:54:84:eb:ad:59:83:
9d:3d:59:a4:10:3f:79:48:b2:69:ec:58:95:f9:bd:
ee:e0:a9:a5:c4:26:cc:a3:4e:0a:da:49:c9:75:1a:
24:31:6a:2b:64:28:9c:6a:01:92:f3:47:16:eb:fa:
a5:3e:f4:9a:df:49:91:40:3e:e4:83:55:8b:b8:ee:
7a:d8:2d:25:1f:9f:ae:8a:d3:17:eb:cc:79:be:93:
11:b5:fd:73:14:07:1d:84:ea:35:38:ad:5d:70:11:
73:72:52:c6:5e:73:1d:8d:04:fd:a7:18:c8:3c:28:
9c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:17:73:E6:56:B6:3C:38:D9:7A:67:3D:F1:C2:BD:C9:C9:0D:C6:6B
X509v3 Authority Key Identifier:
keyid:20:D4:A1:42:D1:E3:17:04:EB:5B:CF:03:A7:85:F6:37:83:55:B7:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/INShQtHjFwTrW88Dp4X2N4NVt5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:da:78:31:f4:7d:13:b1:63:9e:b0:bd:63:50:bc:3f:9e:cf:
7d:05:01:6b:f6:ff:e8:1c:91:2d:0d:8c:a5:1e:b3:33:29:3a:
d9:43:89:6f:f2:b9:8b:8a:d8:b5:49:70:0a:9e:5f:7e:41:56:
a2:2a:0b:a5:7f:de:8c:ab:54:c8:8f:d2:90:58:86:dd:8a:34:
c9:e8:ae:da:f5:c3:03:b5:9a:f6:14:c9:c1:95:1c:ae:3f:53:
a6:54:dc:2e:de:d3:b2:d0:e8:e1:9b:59:70:31:2e:23:1d:d7:
22:4f:c1:78:e1:1d:31:49:52:fe:8f:43:84:eb:4d:60:09:93:
4c:fb:97:35:c3:e7:d2:1e:dd:4d:a8:f1:ad:37:30:bd:aa:09:
ce:70:c9:c7:42:f5:57:61:66:ba:87:56:37:f4:74:3c:f7:8c:
bd:2e:6e:0c:f9:fc:fe:5a:f0:f0:b4:9e:4e:e2:55:b3:36:08:
20:dd:b9:ff:97:5c:d8:ec:fe:ad:78:68:3e:3a:8d:43:6f:32:
b9:84:db:34:bc:d7:d0:fb:8f:27:7b:15:86:e2:7e:a4:ea:b1:
46:59:22:de:1d:d9:ac:df:9a:50:80:da:aa:8d:0a:b3:89:04:
f8:db:1c:0a:0c:75:21:6f:61:17:a7:22:e9:57:29:4d:cf:d9:
d8:a7:e5:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:38:20 2025 by rpki-client