Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/2b7576-2e0d-461c-9b89-0e4f0a394123/1/WtYwth0ucpL5zviTu21xJCpfS-0.mft
File: WtYwth0ucpL5zviTu21xJCpfS-0.mft (raw, json)
Hash identifier: zin9WCRJwN0Uqb7AdsfqtuqfWUHXUmNgmrt0f9bjyGI=
Subject key identifier: CC:F0:1E:D1:70:86:AC:55:87:51:C2:EA:5C:55:2E:4C:23:C5:07:0F
Authority key identifier: 5A:D6:30:B6:1D:2E:72:92:F9:CE:F8:93:BB:6D:71:24:2A:5F:4B:ED
Certificate issuer: /CN=5ad630b61d2e7292f9cef893bb6d71242a5f4bed
Certificate serial: 01965801B3AE1724662D75CBFF5F289DE6FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WtYwth0ucpL5zviTu21xJCpfS-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/2b7576-2e0d-461c-9b89-0e4f0a394123/1/WtYwth0ucpL5zviTu21xJCpfS-0.mft
Manifest number: 120C
Signing time: Mon 21 Apr 2025 11:00:28 +0000
Manifest this update: Mon 21 Apr 2025 11:00:28 +0000
Manifest next update: Tue 22 Apr 2025 11:00:28 +0000
Files and hashes: 1: WtYwth0ucpL5zviTu21xJCpfS-0.crl (hash: 8L2MRwkvJbVzDYAcuPdrnSVLKl4LLg+Uzr54mXE1HVM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/2b7576-2e0d-461c-9b89-0e4f0a394123/1/WtYwth0ucpL5zviTu21xJCpfS-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/2b7576-2e0d-461c-9b89-0e4f0a394123/1/WtYwth0ucpL5zviTu21xJCpfS-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/WtYwth0ucpL5zviTu21xJCpfS-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:01:b3:ae:17:24:66:2d:75:cb:ff:5f:28:9d:e6:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ad630b61d2e7292f9cef893bb6d71242a5f4bed
Validity
Not Before: Apr 21 11:00:28 2025 GMT
Not After : Apr 22 11:00:28 2025 GMT
Subject: CN=ccf01ed17086ac558751c2ea5c552e4c23c5070f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:bd:a5:6b:f3:47:b4:2b:df:6e:59:d6:8b:c7:
af:a7:99:6f:0b:01:02:6e:44:5e:9d:11:4a:59:df:
4e:50:8c:0c:e4:13:4f:1b:8a:d0:b1:ed:4e:cc:9f:
d0:25:3c:4a:21:5b:49:20:55:d1:38:5e:e7:83:f8:
8d:8c:0e:8c:db:8a:f6:3f:d4:ea:9a:ef:c9:9e:85:
05:73:a4:90:b0:6e:7e:a1:eb:e5:63:23:f5:80:82:
02:94:4b:a7:2e:be:f1:bd:c9:3c:da:43:48:45:47:
34:a3:b8:60:d0:32:e4:00:a6:a7:f9:17:c6:10:53:
83:21:1b:d5:96:ed:99:43:f5:b9:f0:18:c5:eb:85:
2f:38:ab:02:49:07:b1:5b:27:db:85:e0:0a:39:a3:
a0:8f:ad:1f:50:6e:f4:3f:38:36:75:30:e6:2a:04:
fa:8f:45:77:50:cd:01:25:fc:bb:fc:1e:67:dc:2b:
44:bc:ca:5f:fb:b7:61:5f:bc:62:e4:86:7a:b7:ca:
32:ba:5b:be:3b:6b:ad:59:87:94:df:84:d8:b9:4b:
bd:e1:d1:a1:dd:c5:c3:3b:4b:f5:c3:f6:d7:ea:b2:
25:95:e2:fc:55:29:89:5e:4b:a3:e2:5c:fa:31:cd:
1d:66:ea:45:00:75:08:7d:1e:2a:1f:b7:62:d4:75:
7a:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:F0:1E:D1:70:86:AC:55:87:51:C2:EA:5C:55:2E:4C:23:C5:07:0F
X509v3 Authority Key Identifier:
keyid:5A:D6:30:B6:1D:2E:72:92:F9:CE:F8:93:BB:6D:71:24:2A:5F:4B:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WtYwth0ucpL5zviTu21xJCpfS-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/2b7576-2e0d-461c-9b89-0e4f0a394123/1/WtYwth0ucpL5zviTu21xJCpfS-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/2b7576-2e0d-461c-9b89-0e4f0a394123/1/WtYwth0ucpL5zviTu21xJCpfS-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:6e:b4:d0:d8:61:6d:74:20:ef:15:3c:f8:15:8e:39:f9:2e:
10:38:75:33:0a:62:21:7d:46:56:e9:66:58:6f:15:c3:90:3d:
d2:74:14:ae:0c:aa:27:53:28:40:67:f3:c8:05:b7:2c:ce:dd:
1f:24:56:9a:35:88:22:83:11:93:b2:05:a3:7a:9a:b2:6a:a2:
71:51:7d:f0:84:94:e1:56:bf:43:1d:89:75:1e:63:2b:10:71:
ab:85:ae:a0:74:d9:dd:75:62:11:48:5a:34:ad:1f:a0:76:12:
d0:47:ed:23:73:74:7b:66:56:15:0f:47:6f:a7:7e:40:aa:45:
ef:fc:24:01:2d:3b:bb:7b:f5:17:a9:9f:9c:4b:c3:3f:db:d1:
24:3e:b7:bd:f4:e6:05:5d:d4:bd:e4:b1:d9:6b:6c:36:f4:32:
6d:26:3d:ff:22:1a:98:45:50:74:54:e0:c6:58:60:88:b9:d0:
bc:df:d9:8c:8a:e1:e4:49:85:c5:f7:d1:d5:25:8d:86:66:07:
ba:9e:56:3a:e4:a5:80:75:3d:39:b7:92:0c:93:98:aa:c6:60:
67:c8:09:55:1e:60:49:e4:22:31:cb:63:82:e3:08:5e:ac:e8:
95:b6:92:2f:8c:2e:94:4b:7c:15:d2:b6:fe:4d:ac:9b:a8:3b:
90:25:7b:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:02:05 2025 by rpki-client