Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/1f2ea1-a017-4385-8394-9ed9a993f508/1/FQmDQfJrtURkBQe9iAqZp-eiNdA.mft
File: FQmDQfJrtURkBQe9iAqZp-eiNdA.mft (raw, json)
Hash identifier: apAFxWloiUSRykxbOZ9STwW9mhrk0LLDs5M5d6Zc1L4=
Subject key identifier: 58:4E:A1:C2:89:C5:D7:E7:3B:C6:D2:9E:D9:FE:F1:E6:B3:56:61:CB
Authority key identifier: 15:09:83:41:F2:6B:B5:44:64:05:07:BD:88:0A:99:A7:E7:A2:35:D0
Certificate issuer: /CN=15098341f26bb544640507bd880a99a7e7a235d0
Certificate serial: 01965793ED4B9E77AEEA97E03C384A6C5357
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FQmDQfJrtURkBQe9iAqZp-eiNdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/1f2ea1-a017-4385-8394-9ed9a993f508/1/FQmDQfJrtURkBQe9iAqZp-eiNdA.mft
Manifest number: 148E
Signing time: Mon 21 Apr 2025 09:00:34 +0000
Manifest this update: Mon 21 Apr 2025 09:00:34 +0000
Manifest next update: Tue 22 Apr 2025 09:00:34 +0000
Files and hashes: 1: FQmDQfJrtURkBQe9iAqZp-eiNdA.crl (hash: b1icXDH42Q9S7OSbS9xgxOw7S43PKCGwpd+BAgIw8zw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/1f2ea1-a017-4385-8394-9ed9a993f508/1/FQmDQfJrtURkBQe9iAqZp-eiNdA.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/1f2ea1-a017-4385-8394-9ed9a993f508/1/FQmDQfJrtURkBQe9iAqZp-eiNdA.mft
rsync://rpki.ripe.net/repository/DEFAULT/FQmDQfJrtURkBQe9iAqZp-eiNdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:93:ed:4b:9e:77:ae:ea:97:e0:3c:38:4a:6c:53:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15098341f26bb544640507bd880a99a7e7a235d0
Validity
Not Before: Apr 21 09:00:34 2025 GMT
Not After : Apr 22 09:00:34 2025 GMT
Subject: CN=584ea1c289c5d7e73bc6d29ed9fef1e6b35661cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8e:77:bc:61:c8:a9:9a:8b:b8:a7:c8:2b:8c:
dd:03:f4:bd:60:24:29:c8:f5:c4:4a:d4:bd:be:a1:
1f:1e:b7:b1:48:99:82:15:b5:f6:83:b5:7d:ea:5e:
40:69:3b:0c:da:f9:88:28:36:e7:0d:53:d7:5f:0b:
81:e1:1b:9d:aa:f8:20:68:e5:a8:51:6f:14:94:55:
2b:a5:bb:83:3e:8e:ba:94:fd:d8:58:e8:eb:11:f3:
b5:40:33:a1:53:8e:d8:0b:67:cb:51:8d:8d:2d:3a:
98:c8:53:e8:4e:65:90:95:cf:d6:66:62:2b:8a:8b:
02:3c:dd:e5:2f:a9:b2:86:ca:f4:da:46:b2:b4:7c:
3d:89:9b:47:e6:fa:e2:fe:56:f8:26:73:69:b0:97:
ab:d8:f3:d5:08:f8:c0:47:04:e7:98:87:13:3d:96:
16:73:e7:7f:c5:d4:19:dc:66:5f:c7:9f:a1:0a:71:
29:e6:2d:72:bf:11:87:f6:bf:f5:4d:62:20:e9:a3:
e8:73:bb:b8:f8:41:af:12:9d:19:34:41:35:0d:77:
73:14:f5:d4:ec:48:70:1b:57:6a:33:77:dd:c7:0a:
4b:35:d4:fd:55:76:a8:f9:8e:6b:ec:a4:7b:0a:5a:
58:f8:75:1a:98:66:d3:7a:bb:95:80:95:35:92:e4:
9c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:4E:A1:C2:89:C5:D7:E7:3B:C6:D2:9E:D9:FE:F1:E6:B3:56:61:CB
X509v3 Authority Key Identifier:
keyid:15:09:83:41:F2:6B:B5:44:64:05:07:BD:88:0A:99:A7:E7:A2:35:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FQmDQfJrtURkBQe9iAqZp-eiNdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/1f2ea1-a017-4385-8394-9ed9a993f508/1/FQmDQfJrtURkBQe9iAqZp-eiNdA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/1f2ea1-a017-4385-8394-9ed9a993f508/1/FQmDQfJrtURkBQe9iAqZp-eiNdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:74:be:5f:8a:99:1c:ee:3c:72:e1:9e:e7:97:90:7c:e4:b8:
1e:ab:26:c3:67:92:eb:2f:f6:90:ea:20:60:01:b9:aa:d9:e1:
6c:a4:95:ee:bc:1d:18:81:db:4a:dd:d7:ed:31:8e:e4:8a:50:
99:69:1b:00:9d:1d:e6:44:17:e3:e4:cb:c9:4c:b6:8c:86:0d:
4f:44:f2:20:88:dd:3c:fc:7d:2b:dc:78:24:2f:71:06:e7:54:
38:fa:92:5a:8c:81:d6:8f:b0:a6:cd:01:e2:d5:a3:3b:2f:8b:
e7:88:76:c7:2f:73:8f:0c:33:f1:19:f1:7b:b8:52:52:57:1d:
f5:dd:4f:c5:ee:24:6c:2f:82:47:65:48:fc:81:8d:41:ed:da:
05:13:3f:88:ac:b1:60:04:f0:db:7a:b1:06:11:0e:cd:7c:6c:
85:de:51:84:68:f8:71:e8:0c:b6:7e:19:b2:da:03:60:a0:d0:
34:03:15:56:f5:bd:b2:ed:4c:4f:11:d9:d2:38:57:33:9a:1b:
2f:16:d2:ee:aa:14:b6:92:be:b1:37:ea:9a:bb:5f:01:1f:7a:
cd:6a:16:2e:00:e2:29:4d:be:fa:52:64:da:2c:fb:b4:56:d5:
6a:0b:da:50:90:d5:6b:87:91:e5:34:5b:aa:95:4d:67:5e:85:
da:a2:a7:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:59:21 2025 by rpki-client