Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/4e650b54-abc4-4418-aeb6-088a50d1d5f1/1/D7B42D8A567C7905A57C26B0BBACEA84833B5998.mft
File: D7B42D8A567C7905A57C26B0BBACEA84833B5998.mft (raw, json)
Hash identifier: frDf4dX7fddwMP3T3HAgJgJkxJciWbw93wLuRwsLZvU=
Subject key identifier: 66:AA:64:A7:90:E7:2F:D5:BE:A6:A6:6B:B0:B8:D4:3B:47:4A:85:DA
Authority key identifier: D7:B4:2D:8A:56:7C:79:05:A5:7C:26:B0:BB:AC:EA:84:83:3B:59:98
Certificate issuer: /CN=d7b42d8a567c7905a57c26b0bbacea84833b5998
Certificate serial: 48BCBA1528955E05CF82437893E560B0D4CA48D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/17QtilZ8eQWlfCawu6zqhIM7WZg.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/4e650b54-abc4-4418-aeb6-088a50d1d5f1/1/D7B42D8A567C7905A57C26B0BBACEA84833B5998.mft
Manifest number: 1D
Signing time: Tue 22 Apr 2025 10:23:53 +0000
Manifest this update: Tue 22 Apr 2025 10:18:53 +0000
Manifest next update: Wed 23 Apr 2025 14:17:53 +0000
Files and hashes: 1: D7B42D8A567C7905A57C26B0BBACEA84833B5998.crl (hash: dngZksPvoBAmfXffGNcWkocl9xbCAhO85TCmbJAAehw=)
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/4e650b54-abc4-4418-aeb6-088a50d1d5f1/1/D7B42D8A567C7905A57C26B0BBACEA84833B5998.crl
rsync://rsync.paas.rpki.ripe.net/repository/4e650b54-abc4-4418-aeb6-088a50d1d5f1/1/D7B42D8A567C7905A57C26B0BBACEA84833B5998.mft
rsync://rpki.ripe.net/repository/DEFAULT/17QtilZ8eQWlfCawu6zqhIM7WZg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:17:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:bc:ba:15:28:95:5e:05:cf:82:43:78:93:e5:60:b0:d4:ca:48:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7b42d8a567c7905a57c26b0bbacea84833b5998
Validity
Not Before: Apr 22 10:18:53 2025 GMT
Not After : Apr 23 14:17:53 2025 GMT
Subject: CN=66AA64A790E72FD5BEA6A66BB0B8D43B474A85DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:21:af:80:eb:4f:2e:6e:7f:eb:a2:a8:62:f8:
dd:14:ac:8c:43:e9:fa:60:a2:bc:99:3b:d5:45:c3:
b2:3c:83:99:8b:60:49:ec:c7:b6:1d:c1:e2:73:cd:
44:73:1c:fc:b3:66:bd:82:be:26:6a:c4:a8:d1:b6:
de:8c:03:4d:f1:18:0e:7b:da:14:1a:72:d7:dd:8b:
72:c3:57:89:fb:26:03:ef:88:9d:a3:13:c9:25:0b:
bd:5b:8a:d3:c3:c8:c0:f2:c2:e7:d3:02:75:0a:d9:
45:03:df:59:e5:5d:d1:c5:11:6a:f5:b4:f4:b1:12:
07:f6:2f:9a:74:19:31:32:02:80:41:b3:fb:d4:33:
6d:f2:95:23:38:49:12:63:cd:69:2a:5c:b2:90:bf:
85:3c:7b:94:56:f4:b7:56:7b:1f:80:d5:1e:10:d4:
c7:a6:23:05:40:ab:7d:8a:63:02:c1:41:5b:95:7b:
b6:aa:28:1e:20:7e:7f:d2:2e:15:a7:27:56:bc:11:
09:91:9a:da:ba:47:33:1e:69:e2:84:08:9d:6c:07:
02:66:ae:38:42:6b:98:99:91:e4:97:5d:e2:17:a2:
e7:bb:53:29:0a:78:02:38:f3:6a:59:2d:21:21:d2:
58:36:a3:a6:ba:d2:5a:3f:b2:a8:b2:ed:28:33:be:
9f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:AA:64:A7:90:E7:2F:D5:BE:A6:A6:6B:B0:B8:D4:3B:47:4A:85:DA
X509v3 Authority Key Identifier:
keyid:D7:B4:2D:8A:56:7C:79:05:A5:7C:26:B0:BB:AC:EA:84:83:3B:59:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/4e650b54-abc4-4418-aeb6-088a50d1d5f1/1/D7B42D8A567C7905A57C26B0BBACEA84833B5998.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/17QtilZ8eQWlfCawu6zqhIM7WZg.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/4e650b54-abc4-4418-aeb6-088a50d1d5f1/1/D7B42D8A567C7905A57C26B0BBACEA84833B5998.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:50:d2:a0:ab:78:fc:3f:a6:d6:26:b7:e2:50:0d:1d:33:52:
4e:e4:c7:c1:4f:cf:f0:39:2e:3e:80:ab:6e:1f:5c:5a:47:d5:
5b:af:db:14:77:b4:8a:75:0c:10:dc:9f:89:e3:dc:55:6f:59:
6d:1d:28:ec:76:a7:3e:02:f2:04:59:06:03:9d:91:93:8c:5c:
b2:3e:0d:b1:b3:ab:c6:47:12:0a:ff:8d:6a:f7:62:a9:45:11:
f9:32:d9:e8:c5:89:6d:b1:29:ff:a5:83:2d:33:de:ae:b1:06:
b0:49:ef:34:0e:65:7b:41:33:ab:ae:ad:83:93:aa:ee:4f:6e:
23:3d:ea:9c:ca:48:c6:30:dc:e9:70:93:39:1d:32:33:d8:50:
e0:2e:46:d5:5d:60:ad:e7:61:6d:40:45:d1:ee:3f:c8:d4:67:
4a:b0:0d:96:60:b5:13:a6:c8:0b:1f:2d:c6:f5:aa:e1:88:53:
eb:7d:33:72:5c:91:18:52:ac:c7:5f:95:71:e1:e9:45:6c:fd:
46:df:16:5d:6d:38:4d:29:54:55:99:d1:5c:dd:50:16:60:53:
e0:41:93:7b:3b:ae:8f:bd:ad:6d:71:fd:0a:0b:f8:dd:b1:c6:
35:04:c3:5f:39:02:23:d2:93:5e:77:05:46:08:53:b4:a0:f2:
1c:39:d9:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 20:42:23 2025 by rpki-client