Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.mft
File: idSzdf1Mr9XfusQG3SWmHSLdNso.mft (raw, json)
Hash identifier: rmCGaZaQD3urt23OVj/VuH9/uYODhD+Rf2fxEOlIwo4=
Subject key identifier: 7E:4A:A1:F7:29:4A:0F:CE:A5:54:04:DC:DC:C1:4E:0F:64:20:77:F4
Authority key identifier: 89:D4:B3:75:FD:4C:AF:D5:DF:BA:C4:06:DD:25:A6:1D:22:DD:36:CA
Certificate issuer: /CN=89d4b375fd4cafd5dfbac406dd25a61d22dd36ca
Certificate serial: 0196553867A6F85820CFF1C5BD9F8116DF21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idSzdf1Mr9XfusQG3SWmHSLdNso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.mft
Manifest number: 107B
Signing time: Sun 20 Apr 2025 22:01:21 +0000
Manifest this update: Sun 20 Apr 2025 22:01:21 +0000
Manifest next update: Mon 21 Apr 2025 22:01:21 +0000
Files and hashes: 1: idSzdf1Mr9XfusQG3SWmHSLdNso.crl (hash: eQvJjbYhyGFaYl6aTpo2mdrKLmPsq/YHIz2gjUacP3o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.mft
rsync://rpki.ripe.net/repository/DEFAULT/idSzdf1Mr9XfusQG3SWmHSLdNso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:38:67:a6:f8:58:20:cf:f1:c5:bd:9f:81:16:df:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89d4b375fd4cafd5dfbac406dd25a61d22dd36ca
Validity
Not Before: Apr 20 22:01:21 2025 GMT
Not After : Apr 21 22:01:21 2025 GMT
Subject: CN=7e4aa1f7294a0fcea55404dcdcc14e0f642077f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:5e:60:07:5b:b9:4f:09:4d:6a:b3:86:47:f5:
50:05:2e:c1:d5:4a:d1:cf:ee:85:1c:99:1a:ff:bf:
10:41:66:24:25:00:db:11:69:6e:bf:73:79:c4:df:
80:9b:a0:9b:f3:6a:91:59:c4:92:71:78:62:d9:00:
d9:f6:38:b7:a7:d5:52:1b:02:b7:46:38:fc:ce:a0:
bf:91:54:f1:48:66:d3:2a:ab:70:92:0c:42:c1:14:
16:a3:db:08:ad:94:91:12:1f:00:10:d4:b3:e0:d0:
5a:d5:9b:46:2b:8d:f1:6b:f7:76:ec:7f:13:78:10:
9c:50:0b:73:5b:86:fb:4b:de:7e:ae:93:df:5d:b5:
9c:36:77:f4:a3:34:cf:3f:a9:d2:73:fb:5b:39:ec:
ba:70:67:9b:aa:73:07:6f:c4:20:54:b5:d6:40:05:
35:b3:3a:df:80:8f:4e:4f:b8:41:ca:ab:c5:89:41:
59:ed:35:be:d2:66:ca:52:0c:2f:7f:b5:f2:e2:08:
02:43:d0:ef:0d:51:a1:54:af:4a:01:eb:08:76:6e:
c6:41:87:03:79:3d:63:40:20:1f:c3:d0:29:39:1e:
b5:1e:96:b3:f6:de:f5:fc:b2:f4:8a:11:f4:08:ea:
64:b2:f1:24:58:43:3c:b8:a2:8c:d0:11:bf:08:f2:
25:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:4A:A1:F7:29:4A:0F:CE:A5:54:04:DC:DC:C1:4E:0F:64:20:77:F4
X509v3 Authority Key Identifier:
keyid:89:D4:B3:75:FD:4C:AF:D5:DF:BA:C4:06:DD:25:A6:1D:22:DD:36:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idSzdf1Mr9XfusQG3SWmHSLdNso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:9d:a8:f4:0b:f7:f7:4c:71:08:f6:c6:da:e8:f7:48:ac:fe:
b9:d5:98:30:2f:a6:03:00:7c:54:4a:a2:46:29:42:f7:5f:c2:
d4:5b:f7:02:14:fe:29:af:1f:38:0d:9a:96:d3:11:43:2b:d3:
52:bd:df:99:42:c4:02:c5:36:62:6d:bd:fd:b3:da:2e:c7:e0:
71:c8:e0:7d:f4:0a:7e:7e:d9:b7:30:f6:51:87:fe:94:75:d2:
60:e0:94:c1:ce:52:91:62:9a:fc:55:7b:67:cc:74:b2:22:f8:
79:b4:eb:9d:3f:c4:62:55:fa:ef:b0:a8:52:d2:47:a9:db:3a:
17:0c:7d:90:8a:04:36:14:c7:e4:19:51:18:a3:07:34:c3:57:
14:a6:01:92:e2:a4:5d:73:07:12:c7:fe:ad:16:cb:4b:17:c3:
87:a8:4f:ed:3d:d8:d5:c0:44:86:b5:ff:a5:b8:fc:0d:5a:7e:
db:f4:31:24:bd:f5:58:a4:b6:18:e7:71:e5:30:10:ec:a1:b0:
50:0b:9f:a0:64:9e:4c:7f:36:1f:d7:19:b1:23:ea:65:43:0c:
39:4d:90:91:2a:55:a7:9c:5c:88:a4:74:0a:53:d5:c8:5b:62:
34:48:ff:4c:69:50:f3:b2:b4:97:5c:01:bf:49:a5:49:e5:30:
46:05:0f:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:31:10 2025 by rpki-client