Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/6fd7e5-c2c9-490b-95e9-5faec5abaf1b/1/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.mft
File: dXLJoQjOPeUtFuIR6AyV5cW1TIQ.mft (raw, json)
Hash identifier: 5hUFS+50MoWg9FnnuogU0Uyid+jVoWdPI9ltDS1Nj6w=
Subject key identifier: DD:28:83:1F:63:36:76:A8:63:EB:21:33:AF:43:9C:D4:E0:25:B4:88
Authority key identifier: 75:72:C9:A1:08:CE:3D:E5:2D:16:E2:11:E8:0C:95:E5:C5:B5:4C:84
Certificate issuer: /CN=7572c9a108ce3de52d16e211e80c95e5c5b54c84
Certificate serial: 01965537F4E0039C30CABEB6E05EDD5F97C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/6fd7e5-c2c9-490b-95e9-5faec5abaf1b/1/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.mft
Manifest number: 0FB3
Signing time: Sun 20 Apr 2025 22:00:52 +0000
Manifest this update: Sun 20 Apr 2025 22:00:52 +0000
Manifest next update: Mon 21 Apr 2025 22:00:52 +0000
Files and hashes: 1: dXLJoQjOPeUtFuIR6AyV5cW1TIQ.crl (hash: /rq1tys51MlnrmDakBTuYsfB0GLpNCNOi28yfy5ZLbQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/6fd7e5-c2c9-490b-95e9-5faec5abaf1b/1/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/6fd7e5-c2c9-490b-95e9-5faec5abaf1b/1/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:f4:e0:03:9c:30:ca:be:b6:e0:5e:dd:5f:97:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7572c9a108ce3de52d16e211e80c95e5c5b54c84
Validity
Not Before: Apr 20 22:00:52 2025 GMT
Not After : Apr 21 22:00:52 2025 GMT
Subject: CN=dd28831f633676a863eb2133af439cd4e025b488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a6:f6:46:fd:d0:f1:d3:2e:1d:05:f8:18:d2:
58:93:8d:9f:e0:28:9d:1c:d3:60:3b:52:c8:b6:de:
93:e8:b6:ba:58:a0:5a:f2:e4:55:4a:15:61:70:65:
f4:99:f4:0c:9c:e1:67:4b:03:ac:e6:b4:c1:b3:41:
b6:e6:28:84:45:a0:f0:ea:d0:90:60:a8:47:50:72:
3a:98:1e:d3:1a:49:02:8e:bc:af:4f:f9:39:f1:d2:
56:2c:a5:55:78:92:ee:64:50:ca:e1:19:25:99:d6:
b3:9e:86:12:e0:ec:8c:a8:37:73:ad:51:0d:bd:22:
dd:df:9e:ae:08:7b:ac:6a:4d:b3:42:6a:a9:1c:fd:
b5:55:a2:1d:17:16:f1:c3:39:e9:c4:1c:61:8f:46:
38:a2:3d:98:60:69:fe:38:ea:31:9b:49:b2:ad:c8:
6b:26:94:93:c1:e1:98:40:1b:29:06:1a:69:4a:ba:
03:f1:4d:81:7c:89:1e:90:00:b9:b6:d5:a3:9e:f8:
fb:71:e3:cd:bf:3c:01:b2:24:5d:d2:93:37:d9:e0:
36:69:85:0d:0b:a4:6c:fd:ff:0e:e3:44:6c:d0:af:
5c:d4:5f:de:d0:59:8e:39:11:80:71:65:7a:35:db:
2a:4f:48:3b:46:ea:12:a6:15:f4:88:35:d1:d2:ab:
99:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:28:83:1F:63:36:76:A8:63:EB:21:33:AF:43:9C:D4:E0:25:B4:88
X509v3 Authority Key Identifier:
keyid:75:72:C9:A1:08:CE:3D:E5:2D:16:E2:11:E8:0C:95:E5:C5:B5:4C:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6fd7e5-c2c9-490b-95e9-5faec5abaf1b/1/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6fd7e5-c2c9-490b-95e9-5faec5abaf1b/1/dXLJoQjOPeUtFuIR6AyV5cW1TIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:c5:d7:0b:30:55:1b:25:e1:2f:a7:70:95:54:d0:88:35:85:
b9:bb:83:4f:f6:9e:3b:ff:e5:ef:f4:6a:66:fd:22:55:4c:f7:
1f:c3:02:e3:b6:10:4c:ad:cc:89:3d:5e:7e:68:0a:b6:28:1f:
19:a6:89:c8:f4:5b:5d:06:74:cd:83:fe:98:44:49:ac:35:4f:
5a:7d:ed:fb:a0:9f:fd:ca:5b:dd:4c:a0:7d:72:74:ab:e6:90:
87:0c:e1:64:8f:fe:2d:3d:11:6c:f9:e4:cd:82:cb:0f:f0:68:
6c:82:bb:f2:d0:15:1f:81:9a:93:5c:b2:d3:a2:d9:47:fe:93:
0d:da:5f:3d:19:b2:e8:05:9d:46:d1:6f:f7:d0:bf:c3:53:fc:
35:5e:8f:25:82:d1:23:e5:3b:3e:f7:90:22:07:d2:2c:08:0a:
e9:b7:c7:48:15:98:9d:e7:29:d6:e0:ba:32:3b:9c:d7:c7:0a:
e2:ba:5b:ba:35:3d:9c:2e:ad:00:06:dd:5f:1e:e8:af:15:c7:
9f:63:e5:22:34:4b:59:5f:d6:e0:8c:69:cc:0f:d9:4c:c1:4b:
c7:5d:30:6c:09:34:82:29:9e:53:93:54:8d:f9:0f:c2:4a:57:
c4:db:d8:88:d5:36:3c:84:5c:56:23:6d:d7:a6:f6:b0:9e:fe:
93:ce:8f:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:36:05 2025 by rpki-client