Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/d938dc-00c4-4680-9944-4a3733f4722b/1/aBFGMD9XUewN_C71R6qyR69OaB8.mft
File: aBFGMD9XUewN_C71R6qyR69OaB8.mft (raw, json)
Hash identifier: uYNSDdjFHyLR2pu7JrCgKx9PDGEbRhHnxAvZN7kRJn4=
Subject key identifier: 77:9B:58:BF:78:45:EA:CA:A6:5E:D8:B8:4B:4E:8E:45:EB:FA:20:82
Authority key identifier: 68:11:46:30:3F:57:51:EC:0D:FC:2E:F5:47:AA:B2:47:AF:4E:68:1F
Certificate issuer: /CN=681146303f5751ec0dfc2ef547aab247af4e681f
Certificate serial: 01965725B7D6E34682B64783EE1CF666C4D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aBFGMD9XUewN_C71R6qyR69OaB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/d938dc-00c4-4680-9944-4a3733f4722b/1/aBFGMD9XUewN_C71R6qyR69OaB8.mft
Manifest number: 0BDF
Signing time: Mon 21 Apr 2025 07:00:11 +0000
Manifest this update: Mon 21 Apr 2025 07:00:11 +0000
Manifest next update: Tue 22 Apr 2025 07:00:11 +0000
Files and hashes: 1: aBFGMD9XUewN_C71R6qyR69OaB8.crl (hash: iTz0/WJ/oC97uTvWIXaae6+qjYFrOxr7nAVedK8trng=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/d938dc-00c4-4680-9944-4a3733f4722b/1/aBFGMD9XUewN_C71R6qyR69OaB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/d938dc-00c4-4680-9944-4a3733f4722b/1/aBFGMD9XUewN_C71R6qyR69OaB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/aBFGMD9XUewN_C71R6qyR69OaB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 07:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:25:b7:d6:e3:46:82:b6:47:83:ee:1c:f6:66:c4:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=681146303f5751ec0dfc2ef547aab247af4e681f
Validity
Not Before: Apr 21 07:00:11 2025 GMT
Not After : Apr 22 07:00:11 2025 GMT
Subject: CN=779b58bf7845eacaa65ed8b84b4e8e45ebfa2082
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3b:0d:2c:45:83:72:d9:be:89:22:0e:d3:b0:
f6:13:c1:80:13:1e:13:7b:9f:8f:56:94:9e:61:9e:
cf:80:64:c8:41:e8:21:2b:ab:18:b4:8c:de:3a:c0:
f5:09:6d:83:81:43:76:cf:19:e3:29:80:d3:12:4d:
db:8b:2a:cb:8c:5e:6e:6a:b2:b9:c6:9f:46:96:c9:
f3:e5:ba:05:77:ab:f9:f6:91:84:95:16:2e:b9:02:
6f:9f:ca:b2:67:e5:14:7a:8f:a7:15:fb:a2:ee:6d:
88:30:d6:38:64:63:24:30:c7:3a:b8:4b:77:ab:56:
d3:80:a0:65:f3:d4:fa:70:cd:71:6f:71:7a:36:90:
04:a5:16:82:b8:5c:fe:f0:1a:8f:c0:3d:a1:ba:52:
d2:a3:96:73:84:76:34:89:10:43:da:14:2b:2e:15:
f6:01:b6:00:2d:11:c2:ba:15:33:e4:8f:98:fd:07:
ef:86:de:9c:99:34:4c:09:d6:9d:4d:1c:cb:20:b1:
ba:be:5e:d3:c8:39:13:d1:70:0e:12:9c:6f:ba:76:
df:87:c0:b6:6c:9e:ee:58:da:9f:03:24:72:03:1b:
d2:df:50:e7:8c:63:75:40:96:8c:e9:69:8d:98:fc:
37:1d:79:26:21:60:b7:bb:37:3b:3a:83:d9:1a:f3:
74:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:9B:58:BF:78:45:EA:CA:A6:5E:D8:B8:4B:4E:8E:45:EB:FA:20:82
X509v3 Authority Key Identifier:
keyid:68:11:46:30:3F:57:51:EC:0D:FC:2E:F5:47:AA:B2:47:AF:4E:68:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aBFGMD9XUewN_C71R6qyR69OaB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/d938dc-00c4-4680-9944-4a3733f4722b/1/aBFGMD9XUewN_C71R6qyR69OaB8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/d938dc-00c4-4680-9944-4a3733f4722b/1/aBFGMD9XUewN_C71R6qyR69OaB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:94:a4:8b:d1:28:86:0b:af:46:ec:d7:ea:7a:7a:42:a0:e7:
be:13:92:07:3c:1a:5f:98:4c:1c:3a:df:2a:41:48:f3:3a:8e:
e3:55:ff:3d:4f:c2:4a:cd:e0:49:c5:2e:93:3b:51:b0:05:b8:
e5:c3:a4:58:f8:6c:54:d3:0d:05:f0:72:61:b3:ed:85:75:53:
9b:2e:91:61:4d:63:1c:5c:1f:b5:b7:66:d2:76:41:94:9a:17:
5e:1a:29:33:05:fa:cd:cb:db:ec:1f:50:61:15:b5:e3:87:3e:
48:fd:35:05:52:2a:76:b5:b5:1e:1e:88:a3:71:41:57:cf:c5:
5a:3d:77:00:e7:1a:07:7b:10:fe:a0:8f:9a:f6:47:92:c2:a5:
e5:73:fa:58:a0:30:54:a4:5e:52:9e:e5:33:5b:d0:70:cf:3c:
0f:c7:34:d4:f5:b4:53:72:2a:97:21:53:b1:cf:4e:78:ff:98:
70:6c:4d:67:58:86:e3:d4:c0:71:eb:15:e1:cd:29:2c:42:1f:
92:bf:82:23:63:39:95:0e:a7:20:37:a3:e2:f8:52:fe:75:25:
3d:93:3d:ce:14:d2:18:81:43:96:63:1f:50:62:1d:46:71:0c:
8b:af:20:93:b6:bb:1a:b4:6d:03:b0:54:7d:14:5c:c2:ea:e2:
ac:c9:22:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:03:17 2025 by rpki-client