Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft
File: e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft (raw, json)
Hash identifier: AQPm8f3/mz6rojzEF+V9N+CFLxS9RSbz/pGnhdMGB10=
Subject key identifier: B1:5C:A4:82:19:4D:D9:9C:21:5B:6C:D1:9F:C7:9E:DB:35:9A:17:31
Authority key identifier: 7B:C7:BE:52:1D:17:A6:A5:92:CC:61:F7:91:4C:25:F1:69:57:CC:9C
Certificate issuer: /CN=7bc7be521d17a6a592cc61f7914c25f16957cc9c
Certificate serial: 019657267370C9BBF0D9039F60B27A2C34A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft
Manifest number: 04BB
Signing time: Mon 21 Apr 2025 07:00:59 +0000
Manifest this update: Mon 21 Apr 2025 07:00:59 +0000
Manifest next update: Tue 22 Apr 2025 07:00:59 +0000
Files and hashes: 1: e8e-Uh0XpqWSzGH3kUwl8WlXzJw.crl (hash: E5FPAPpYd9fZ2BIMr3fB8ZHkMhLjcIXQiV/MxKtj4XA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft
rsync://rpki.ripe.net/repository/DEFAULT/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:26:73:70:c9:bb:f0:d9:03:9f:60:b2:7a:2c:34:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bc7be521d17a6a592cc61f7914c25f16957cc9c
Validity
Not Before: Apr 21 07:00:59 2025 GMT
Not After : Apr 22 07:00:59 2025 GMT
Subject: CN=b15ca482194dd99c215b6cd19fc79edb359a1731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:1b:da:03:f8:17:72:65:21:34:38:c1:5e:20:
d4:6f:70:b3:c9:30:f0:6b:77:12:5e:89:b5:d7:3c:
7a:ed:b2:9e:f7:67:57:40:0d:aa:6e:52:1c:b5:98:
26:85:3b:be:3d:68:90:cf:1a:cd:0b:51:be:74:ed:
2e:0d:23:01:35:2f:7c:0f:db:29:04:0e:24:68:49:
be:92:73:a9:dc:ab:95:9c:23:f8:fd:df:a6:18:12:
c1:06:28:e7:72:e0:1f:39:e1:1e:b8:03:bc:f7:49:
28:09:88:c1:9e:49:13:19:b6:40:b8:aa:ee:22:bf:
37:e6:ca:45:06:65:33:7e:d8:0a:90:5b:95:e9:19:
f6:8d:c7:4a:bd:2f:cb:03:4d:2b:f2:55:77:d0:10:
b6:72:c9:33:1a:51:3d:6d:ab:b5:75:0c:a9:f2:1f:
36:d2:32:06:72:9f:21:16:eb:88:b3:81:4f:c2:c3:
57:13:fa:a8:37:6c:b7:c5:1c:a2:05:82:0e:d1:3a:
68:1e:cf:70:0c:b7:d5:0b:bb:84:66:d7:0e:36:57:
da:81:96:41:e3:23:1b:2f:d9:5f:fe:a0:70:ae:61:
98:87:32:ec:1f:96:63:44:51:3f:1a:7d:24:05:67:
74:f0:50:90:fd:77:b7:df:12:5d:0a:0e:2d:63:69:
51:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:5C:A4:82:19:4D:D9:9C:21:5B:6C:D1:9F:C7:9E:DB:35:9A:17:31
X509v3 Authority Key Identifier:
keyid:7B:C7:BE:52:1D:17:A6:A5:92:CC:61:F7:91:4C:25:F1:69:57:CC:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e2be5c-0e67-4f82-97c2-105d8002149d/1/e8e-Uh0XpqWSzGH3kUwl8WlXzJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:0e:e1:28:1b:dc:6a:68:1e:c2:0b:fe:df:5f:b6:f3:eb:2b:
4e:cd:1c:fe:9a:e9:eb:23:a3:d7:2c:a8:ca:b1:54:f2:8b:e0:
37:2e:8b:05:d9:c2:f8:3b:c4:59:e4:55:2e:aa:ff:e2:d8:4d:
09:71:d2:10:65:ee:04:72:2d:d3:dc:c5:66:03:c8:86:73:8b:
0f:0c:3b:b1:f9:b8:f5:55:43:b7:52:d1:d7:8f:9e:07:8f:83:
fd:78:ee:55:80:86:79:e4:33:76:09:e4:b6:e6:07:b6:e5:f7:
a2:ff:af:0e:7b:63:e7:b2:8f:fd:05:c5:db:4a:c5:3b:c5:1e:
32:a4:a5:aa:a8:96:95:51:26:76:1d:be:39:ef:6d:e9:64:48:
f5:d7:49:39:80:4a:60:0d:f9:16:d5:0b:15:bb:c2:27:6d:6c:
55:0c:e4:db:63:65:e6:57:3f:d6:33:05:69:63:d0:65:70:75:
de:ea:2d:a2:11:9b:d3:96:d1:e2:d5:c6:49:26:27:75:56:8e:
ac:03:64:8c:71:3a:3b:c2:1e:f6:80:a3:83:bc:57:09:aa:bf:
bb:52:3e:43:5a:6f:fc:57:6a:d2:33:08:ee:17:24:80:8d:4e:
53:c2:f9:05:c6:71:8f:2c:a5:bb:9d:70:64:00:15:a2:6e:05:
6f:2b:7e:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:38:09 2025 by rpki-client