Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/91da8f-cb08-49c0-8309-8a2b7f956924/1/Unzgu6rDVu3srWci8qhvjgZJCY4.mft
File: Unzgu6rDVu3srWci8qhvjgZJCY4.mft (raw, json)
Hash identifier: K9n66mbLYkPiVm70rsct1XdbP28yv3LpJOU18qPYPyw=
Subject key identifier: 25:C1:32:92:D1:CA:22:4A:42:3D:75:F3:10:0C:61:62:59:64:F1:7F
Authority key identifier: 52:7C:E0:BB:AA:C3:56:ED:EC:AD:67:22:F2:A8:6F:8E:06:49:09:8E
Certificate issuer: /CN=527ce0bbaac356edecad6722f2a86f8e0649098e
Certificate serial: 019657CB492BFF070778C60FB025DFF4A864
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Unzgu6rDVu3srWci8qhvjgZJCY4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/91da8f-cb08-49c0-8309-8a2b7f956924/1/Unzgu6rDVu3srWci8qhvjgZJCY4.mft
Manifest number: 148F
Signing time: Mon 21 Apr 2025 10:01:02 +0000
Manifest this update: Mon 21 Apr 2025 10:01:02 +0000
Manifest next update: Tue 22 Apr 2025 10:01:02 +0000
Files and hashes: 1: Unzgu6rDVu3srWci8qhvjgZJCY4.crl (hash: oI1yL/Kp0O2EhKLoAfVkK0UkgNO8hviKM6zSanMgA64=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/91da8f-cb08-49c0-8309-8a2b7f956924/1/Unzgu6rDVu3srWci8qhvjgZJCY4.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/91da8f-cb08-49c0-8309-8a2b7f956924/1/Unzgu6rDVu3srWci8qhvjgZJCY4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Unzgu6rDVu3srWci8qhvjgZJCY4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:cb:49:2b:ff:07:07:78:c6:0f:b0:25:df:f4:a8:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=527ce0bbaac356edecad6722f2a86f8e0649098e
Validity
Not Before: Apr 21 10:01:02 2025 GMT
Not After : Apr 22 10:01:02 2025 GMT
Subject: CN=25c13292d1ca224a423d75f3100c61625964f17f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e2:75:49:69:55:2d:73:8c:92:11:ae:ac:ea:
43:bf:59:af:8a:46:bb:e8:59:ac:5f:93:13:93:1b:
82:8d:72:f9:df:9c:e7:2d:b7:71:28:7a:74:79:0a:
94:7d:60:9b:3f:f8:71:ad:1f:1e:37:26:78:92:f3:
c1:6b:44:69:e6:bf:44:90:39:25:d8:9f:cd:dc:26:
bd:ef:59:c3:a2:26:df:70:25:6f:cc:b7:46:22:bb:
56:ee:dd:ce:4b:56:af:7c:1c:25:db:27:87:52:5d:
15:d4:de:37:1c:b6:49:d5:ae:af:71:03:48:c7:1e:
e9:2b:c5:89:c1:fc:e0:7e:97:f3:9d:c9:2c:63:22:
5f:8c:f9:ff:c9:b9:ca:1a:40:f4:06:d7:ed:9b:1a:
99:ca:4f:73:63:62:3e:d4:ea:e7:4f:88:c4:81:3d:
07:a3:17:33:ba:de:78:7f:b9:61:21:b5:ce:00:72:
52:a7:9a:b7:e5:e0:d0:47:9e:08:7a:d2:d9:cb:15:
71:39:49:31:c0:c3:9e:6b:17:d8:0a:83:6c:f1:26:
82:55:86:2a:4c:77:7b:c8:a3:76:a0:50:3e:aa:8f:
ae:8e:4a:e9:dc:b1:f8:bd:fa:3a:ce:63:8a:6c:9b:
e3:29:b1:86:95:5e:cd:65:72:13:0e:c7:84:5e:4e:
95:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:C1:32:92:D1:CA:22:4A:42:3D:75:F3:10:0C:61:62:59:64:F1:7F
X509v3 Authority Key Identifier:
keyid:52:7C:E0:BB:AA:C3:56:ED:EC:AD:67:22:F2:A8:6F:8E:06:49:09:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Unzgu6rDVu3srWci8qhvjgZJCY4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/91da8f-cb08-49c0-8309-8a2b7f956924/1/Unzgu6rDVu3srWci8qhvjgZJCY4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/91da8f-cb08-49c0-8309-8a2b7f956924/1/Unzgu6rDVu3srWci8qhvjgZJCY4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:87:91:ee:32:8d:76:d1:43:c8:6d:86:4e:27:30:90:c0:17:
22:8a:c4:c3:5b:5d:2e:ad:be:c3:8e:f4:f0:40:04:d5:6d:46:
0c:1b:d8:40:a2:e9:8f:b7:ea:96:66:3a:f8:16:84:3e:73:e3:
e7:8b:6a:17:aa:15:52:46:96:4c:14:75:05:1a:9b:08:52:f3:
c0:cb:5b:3e:a3:a4:73:cf:e8:35:3a:68:01:67:09:ea:db:01:
5c:12:c3:55:ca:79:e8:8d:99:1b:ac:b2:95:39:02:9c:f4:da:
30:40:46:6d:2b:9e:35:26:2d:e7:59:e5:5c:cf:21:9f:1f:66:
30:ff:08:1c:f9:a5:0a:42:1a:c9:ff:55:10:43:d7:e3:75:df:
79:31:9d:c8:cc:b4:45:0a:1d:56:36:61:50:fa:09:48:ab:91:
97:5f:19:19:e3:48:ec:f5:ee:a7:8f:f3:77:a0:69:a9:ae:d0:
eb:b5:6b:10:31:af:0a:82:61:ae:aa:83:f3:c7:e3:92:52:ab:
aa:0e:55:36:e5:6c:19:dc:90:1d:b9:50:5e:2b:3a:d0:d5:42:
ad:57:87:58:4f:58:08:10:67:45:ae:4b:2e:c5:c4:c2:95:56:
44:02:1e:a7:2e:a4:68:0a:86:22:dd:79:da:cc:29:87:7b:0d:
62:7f:c6:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:03:04 2025 by rpki-client