Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/f9ed64-5cc3-4a0d-a70c-1a387a456579/1/iOr6__gbldzuV3JwV-1nEUozgZM.mft
File: iOr6__gbldzuV3JwV-1nEUozgZM.mft (raw, json)
Hash identifier: tkH3R0O3R5aNvClRJ2eC5u++o8m7UX3Vcid88cwjvSg=
Subject key identifier: F1:97:21:F5:62:1C:FA:E2:E8:73:85:65:3C:D1:4A:70:C6:07:70:FA
Authority key identifier: 88:EA:FA:FF:F8:1B:95:DC:EE:57:72:70:57:ED:67:11:4A:33:81:93
Certificate issuer: /CN=88eafafff81b95dcee57727057ed67114a338193
Certificate serial: 01965A5E471C90F8B5D6944E4DAB4A5649C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iOr6__gbldzuV3JwV-1nEUozgZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/f9ed64-5cc3-4a0d-a70c-1a387a456579/1/iOr6__gbldzuV3JwV-1nEUozgZM.mft
Manifest number: 0528
Signing time: Mon 21 Apr 2025 22:00:49 +0000
Manifest this update: Mon 21 Apr 2025 22:00:49 +0000
Manifest next update: Tue 22 Apr 2025 22:00:49 +0000
Files and hashes: 1: iOr6__gbldzuV3JwV-1nEUozgZM.crl (hash: iZ3S40WvpHe3obqbWt4kbr5zFRMOdmBvPaVIxwbjMEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/f9ed64-5cc3-4a0d-a70c-1a387a456579/1/iOr6__gbldzuV3JwV-1nEUozgZM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/f9ed64-5cc3-4a0d-a70c-1a387a456579/1/iOr6__gbldzuV3JwV-1nEUozgZM.mft
rsync://rpki.ripe.net/repository/DEFAULT/iOr6__gbldzuV3JwV-1nEUozgZM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5a:5e:47:1c:90:f8:b5:d6:94:4e:4d:ab:4a:56:49:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88eafafff81b95dcee57727057ed67114a338193
Validity
Not Before: Apr 21 22:00:49 2025 GMT
Not After : Apr 22 22:00:49 2025 GMT
Subject: CN=f19721f5621cfae2e87385653cd14a70c60770fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:7d:1d:40:75:11:3c:ea:d8:c1:bf:16:9c:7f:
7a:11:6e:d3:93:15:8f:56:65:31:5c:db:92:1c:83:
0e:cf:8c:8c:5e:2c:3f:69:3f:8d:61:9a:0d:4c:41:
a6:02:95:55:a6:a2:fd:7b:5e:53:7f:85:a0:e2:9b:
34:e9:53:0d:a1:f7:a4:50:81:75:43:b7:06:71:58:
49:b3:20:e7:be:f8:73:b7:2a:9b:c5:e8:72:e1:17:
fe:b0:c1:f5:f5:66:aa:7a:b6:f8:24:f7:a2:86:fd:
47:46:44:64:17:ea:f2:55:35:ee:83:fa:59:4f:65:
e9:b7:12:ac:c0:d4:64:2b:f9:0f:5b:cf:18:15:61:
58:7a:57:71:16:69:38:a6:1e:7a:34:63:74:79:df:
47:41:87:9a:89:0c:d6:6b:ea:5e:71:2e:be:45:6a:
24:f3:98:98:bc:11:93:25:35:41:9b:d5:67:7b:f6:
cc:d4:a5:d7:f3:84:b6:c1:af:7e:57:be:ce:40:df:
de:f3:82:0e:ff:4a:db:d5:27:78:e5:c4:36:fa:f8:
a6:fe:ad:33:9b:c7:85:9e:62:99:a7:72:a8:12:0d:
35:9b:9b:65:4f:84:7f:59:57:09:7c:ce:e7:8c:c2:
f1:32:d8:cb:93:80:5e:63:00:fe:16:d8:8a:8b:5f:
36:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:97:21:F5:62:1C:FA:E2:E8:73:85:65:3C:D1:4A:70:C6:07:70:FA
X509v3 Authority Key Identifier:
keyid:88:EA:FA:FF:F8:1B:95:DC:EE:57:72:70:57:ED:67:11:4A:33:81:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOr6__gbldzuV3JwV-1nEUozgZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/f9ed64-5cc3-4a0d-a70c-1a387a456579/1/iOr6__gbldzuV3JwV-1nEUozgZM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/f9ed64-5cc3-4a0d-a70c-1a387a456579/1/iOr6__gbldzuV3JwV-1nEUozgZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:69:0e:6a:ea:11:3b:fd:06:cd:34:58:81:2b:de:28:37:5a:
5e:4b:ae:c2:38:55:2a:96:0c:7d:e2:db:0e:6f:f3:a2:1a:6c:
10:7d:a2:65:9c:6e:1a:1d:71:48:fc:f2:ee:02:72:37:00:24:
8d:d6:43:c9:32:f2:94:cd:c5:09:a4:81:ba:8a:61:cc:f0:06:
e2:1b:e0:34:40:c6:48:03:68:6e:2e:c6:23:0b:fe:63:75:62:
af:8e:d1:16:37:9b:24:ba:96:c0:34:07:96:af:7c:51:cc:69:
bc:c0:5b:5b:4b:b6:16:0d:46:19:12:19:ae:bd:44:d9:33:50:
57:09:1a:ce:bf:b1:0a:18:96:06:d1:a2:3a:4d:e7:27:2a:33:
eb:34:b5:48:62:f8:09:48:0f:f1:60:b4:a8:9f:da:fe:ac:dc:
83:57:e3:59:f1:4a:1a:ce:c2:7a:af:a7:d2:d0:b3:d7:39:c9:
1e:83:97:ee:d2:23:65:5f:7d:8e:7a:54:52:86:a9:b6:4a:8a:
ee:4d:76:cd:e8:a9:aa:2a:5d:84:77:b7:4c:9c:11:7a:b9:d0:
26:52:e9:ff:ea:75:a1:09:fe:21:8c:65:17:6b:c8:97:d6:6e:
ee:b0:1c:e6:f0:1c:03:04:d8:56:80:e1:91:08:6e:6f:54:57:
dd:ff:ec:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 02:19:58 2025 by rpki-client