Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
File: IPdQab1W78UXA4PtMcrSJGT98DA.mft (raw, json)
Hash identifier: AAt0VFJAgTHiGCglGUJaJdwUF0pbovon3WX/vk5ddbk=
Subject key identifier: 64:02:76:13:F6:02:A8:6D:19:04:CD:DC:0E:C2:EA:1A:6D:81:5D:DD
Authority key identifier: 20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30
Certificate issuer: /CN=20f75069bd56efc5170383ed31cad22464fdf030
Certificate serial: 019657CB80E50AC20E55D45292C2FCFF3D35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
Manifest number: 02AE
Signing time: Mon 21 Apr 2025 10:01:16 +0000
Manifest this update: Mon 21 Apr 2025 10:01:16 +0000
Manifest next update: Tue 22 Apr 2025 10:01:16 +0000
Files and hashes: 1: IPdQab1W78UXA4PtMcrSJGT98DA.crl (hash: U+sIgK+7778pWkaTB2gdNyj+hbsloJuvWab72gBBNdg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:cb:80:e5:0a:c2:0e:55:d4:52:92:c2:fc:ff:3d:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f75069bd56efc5170383ed31cad22464fdf030
Validity
Not Before: Apr 21 10:01:16 2025 GMT
Not After : Apr 22 10:01:16 2025 GMT
Subject: CN=64027613f602a86d1904cddc0ec2ea1a6d815ddd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4c:d6:5b:e3:30:d5:44:13:e0:a6:2e:0c:c4:
83:8a:dc:54:95:01:2d:a7:28:48:cb:16:a6:b7:a9:
d8:f8:d4:28:4e:72:4e:83:2b:a5:f7:71:97:c8:50:
4b:d9:1e:52:fc:48:24:82:cf:fa:9c:4b:65:4a:9c:
8f:58:ce:eb:05:93:1b:5d:9b:6e:26:18:fb:da:e9:
a5:c2:48:5f:29:aa:6c:bc:9e:1a:c4:d5:be:f3:51:
d8:fd:d7:33:84:0f:22:6e:43:0d:be:72:92:1f:e6:
22:f8:17:c5:21:e8:78:b6:b1:26:9c:79:9e:59:b0:
3d:04:65:f3:d1:42:2b:b0:13:cc:94:7f:92:1d:f1:
b6:36:38:7c:5d:e9:c8:8f:7a:dd:43:60:35:83:cd:
1f:32:73:be:62:7e:1e:66:37:9b:fc:df:08:fa:e5:
bd:65:22:74:8d:e2:88:20:23:7c:3a:6c:2e:84:da:
6c:86:d3:db:95:c4:8d:a2:54:e8:a2:24:2d:fb:ae:
5c:8e:33:ac:47:fd:bb:b2:3b:24:30:9a:92:ee:18:
64:39:aa:41:25:30:2c:ed:2a:7c:0f:8b:a0:85:c2:
87:e1:41:3f:31:e0:14:df:9f:f6:0e:9e:98:6d:31:
2a:cb:86:4e:cf:b9:ce:1b:43:dd:ea:f4:a5:7d:a1:
e8:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:02:76:13:F6:02:A8:6D:19:04:CD:DC:0E:C2:EA:1A:6D:81:5D:DD
X509v3 Authority Key Identifier:
keyid:20:F7:50:69:BD:56:EF:C5:17:03:83:ED:31:CA:D2:24:64:FD:F0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPdQab1W78UXA4PtMcrSJGT98DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/95cd70-50cd-46bd-8e06-b9705d7d3579/1/IPdQab1W78UXA4PtMcrSJGT98DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:56:71:60:8c:ef:2f:5d:bb:32:4c:95:bb:fa:50:4a:26:0f:
d5:96:d6:8b:52:3c:fa:77:04:80:80:19:72:81:b9:70:b2:7a:
12:7f:dd:bf:31:7b:b6:b2:80:b9:57:90:34:45:ef:78:8d:1f:
4d:53:4a:2b:49:a9:c7:3e:8e:9c:aa:3b:25:6a:fa:90:bf:aa:
29:c8:f2:4e:71:7a:61:99:93:37:e6:de:d9:58:71:f3:4c:ca:
ed:94:a2:2f:3e:ed:04:06:a0:0b:a2:0c:0f:68:f1:59:e5:4e:
0c:71:05:0c:19:51:7b:a2:fd:08:16:51:b4:24:98:7f:ad:a1:
c6:33:2b:8e:27:99:7e:16:37:81:b2:ca:51:6a:1b:92:c9:d6:
20:6b:c8:62:2c:e5:03:b6:e5:74:e9:e4:19:65:3f:85:92:b7:
1b:b9:9f:e4:46:32:f7:e3:7b:3d:1d:c2:86:ab:7b:04:1c:bb:
4d:30:43:18:30:13:97:fd:ea:e4:ab:bd:79:e7:85:8c:34:78:
23:be:89:a4:96:ad:0d:a9:7b:a4:5d:49:b6:fe:25:94:ac:06:
d7:46:c5:d1:fb:da:a9:fb:4d:21:24:ef:14:ac:f0:36:93:47:
0a:98:4d:01:06:1f:39:48:df:fd:76:8c:d2:f6:1c:27:e9:28:
12:27:9c:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:03:18 2025 by rpki-client