Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft
File: JOuXPcgi1CNuy911UB0mxD4chzk.mft (raw, json)
Hash identifier: epNzbCp660Lo4u7kdxiLwc3BK8Dvg26kjKAao2K9dUs=
Subject key identifier: 42:0C:0A:B0:14:FF:1A:57:5F:46:47:1B:21:3F:25:38:12:7A:C6:77
Authority key identifier: 24:EB:97:3D:C8:22:D4:23:6E:CB:DD:75:50:1D:26:C4:3E:1C:87:39
Certificate issuer: /CN=24eb973dc822d4236ecbdd75501d26c43e1c8739
Certificate serial: 019659154D53B8DA98D35B1C0C2DDFFE17D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOuXPcgi1CNuy911UB0mxD4chzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft
Manifest number: 09A4
Signing time: Mon 21 Apr 2025 16:01:30 +0000
Manifest this update: Mon 21 Apr 2025 16:01:30 +0000
Manifest next update: Tue 22 Apr 2025 16:01:30 +0000
Files and hashes: 1: JOuXPcgi1CNuy911UB0mxD4chzk.crl (hash: ViSPdcfM2d4sLOJbF9PWqSLQed3sh5ODjnMTFCafFf8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOuXPcgi1CNuy911UB0mxD4chzk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:15:4d:53:b8:da:98:d3:5b:1c:0c:2d:df:fe:17:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24eb973dc822d4236ecbdd75501d26c43e1c8739
Validity
Not Before: Apr 21 16:01:30 2025 GMT
Not After : Apr 22 16:01:30 2025 GMT
Subject: CN=420c0ab014ff1a575f46471b213f2538127ac677
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:fd:f3:fa:9b:83:59:08:4c:cd:fb:de:01:12:
ee:cd:cf:ef:dd:89:11:75:c7:d5:e9:ad:e4:b0:bb:
73:39:8c:27:ed:0c:19:eb:5e:42:58:fb:19:ac:e1:
c0:3a:57:77:13:db:24:f9:64:53:45:1a:40:d2:4c:
1f:0b:ba:1d:97:46:fb:37:d2:7f:6e:73:b1:ee:52:
bc:d2:f8:21:05:00:5e:af:b8:45:62:88:98:1a:11:
73:15:3f:38:d6:d5:14:c2:ff:0b:15:bf:8d:a8:40:
9e:bf:78:65:ae:a3:6b:86:ec:2f:2b:51:b1:43:98:
8e:c0:ce:19:82:23:54:20:51:14:de:db:47:8b:f6:
9e:f0:be:53:f7:0a:73:e6:64:d9:60:3d:fd:fe:22:
77:a5:a6:06:92:ab:a7:9e:ee:8a:9e:94:fc:1e:7f:
c3:63:28:d2:bb:53:2a:4f:34:bf:62:34:ce:4b:8e:
8a:85:53:7f:ea:7a:dc:18:60:19:78:50:5e:43:97:
00:c8:d0:f4:f7:72:2f:d0:f2:74:e7:5a:52:53:d3:
d7:2e:65:e7:d6:a5:22:ba:79:33:86:89:1d:b3:4c:
d1:d6:30:01:54:38:df:c4:fa:c0:3b:67:8c:fc:02:
98:eb:b7:54:0a:41:d5:46:4b:bc:a1:83:cd:9d:fb:
9e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:0C:0A:B0:14:FF:1A:57:5F:46:47:1B:21:3F:25:38:12:7A:C6:77
X509v3 Authority Key Identifier:
keyid:24:EB:97:3D:C8:22:D4:23:6E:CB:DD:75:50:1D:26:C4:3E:1C:87:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOuXPcgi1CNuy911UB0mxD4chzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:77:48:88:ba:e3:7d:e7:da:99:f3:0b:01:1c:06:b8:85:10:
ce:5f:8a:d5:82:be:2f:5e:5a:d1:8e:72:8b:54:34:06:0e:f3:
f8:08:28:11:2d:36:9c:47:6a:1c:3d:4e:c4:e0:3b:15:1c:79:
7f:d8:78:3e:d7:d4:5b:03:e9:b3:3a:fa:00:5d:95:aa:d3:86:
b0:a6:2b:56:03:88:d3:83:5f:c1:06:46:37:51:e9:1f:3d:00:
89:8e:be:33:02:a7:55:10:33:f1:87:c0:31:0d:f7:5c:25:6a:
6f:88:94:f3:e1:2e:29:62:66:d6:a8:cc:7c:8c:dc:16:bb:67:
52:e4:9b:85:f5:9b:eb:e0:82:66:ac:ab:d9:59:19:c2:68:69:
ca:79:ee:5d:87:58:61:21:27:96:2d:0d:ad:4b:0d:89:1f:ea:
25:d8:92:f0:82:79:2a:38:6f:ba:4a:9f:8b:cc:62:ae:d6:76:
b4:3f:d2:96:58:24:93:b7:65:18:c0:33:65:1e:a7:2b:e6:ae:
8b:a1:80:d8:3b:be:45:ff:6d:3d:d8:fa:3b:81:01:6a:65:02:
58:e8:2d:32:f3:eb:50:3f:49:f4:c9:33:b3:df:97:2f:c7:35:
32:cc:a5:53:cf:8d:2d:0e:cb:3f:14:b0:35:f1:0e:02:9b:49:
81:5e:d4:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:58 2025 by rpki-client