Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft
File: CChUc8l4ylHOVGmqSu3KFkRb1lI.mft (raw, json)
Hash identifier: Yza9V6ZZtZXTMphs/NuV5NjKwdff6+UOHqHC3ZvjDM0=
Subject key identifier: AF:8C:D6:77:F0:1D:EB:7D:F9:0D:F3:D2:5E:B6:BC:2E:82:94:96:72
Authority key identifier: 08:28:54:73:C9:78:CA:51:CE:54:69:AA:4A:ED:CA:16:44:5B:D6:52
Certificate issuer: /CN=08285473c978ca51ce5469aa4aedca16445bd652
Certificate serial: 01958B842F770A7B68FFAA83613BDBD1E4A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CChUc8l4ylHOVGmqSu3KFkRb1lI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft
Manifest number: 1497
Signing time: Wed 12 Mar 2025 18:00:50 +0000
Manifest this update: Wed 12 Mar 2025 18:00:50 +0000
Manifest next update: Thu 13 Mar 2025 18:00:50 +0000
Files and hashes: 1: CChUc8l4ylHOVGmqSu3KFkRb1lI.crl (hash: WaZ+82C/d35LpBarJiCaTgBW5Rr6mis3EYN7NKRMrCE=)
2: FuulQ2OCXlEeKOdXSHSbO4OXD9g.roa (hash: vDsoze7SRq5/DcfNiXEwTROz6jQawFkLYnYc3el4ix8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft
rsync://rpki.ripe.net/repository/DEFAULT/CChUc8l4ylHOVGmqSu3KFkRb1lI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 18:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:84:2f:77:0a:7b:68:ff:aa:83:61:3b:db:d1:e4:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08285473c978ca51ce5469aa4aedca16445bd652
Validity
Not Before: Mar 12 18:00:50 2025 GMT
Not After : Mar 13 18:00:50 2025 GMT
Subject: CN=af8cd677f01deb7df90df3d25eb6bc2e82949672
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d2:da:1e:c0:8a:9e:42:c0:00:4d:5f:0d:cc:
80:d7:27:a3:0e:69:0a:ba:4a:90:ac:27:27:25:12:
5e:b4:2c:47:cc:4d:78:bb:9f:b4:1b:2e:da:22:31:
2b:57:e7:07:64:3b:23:7c:63:b6:05:25:41:53:53:
a2:96:80:8f:85:ba:e9:1c:bf:7d:16:e0:dd:05:09:
26:05:bc:51:bf:39:95:8a:c2:03:c3:20:7f:47:72:
6d:68:b9:cf:96:7d:d1:48:62:0c:c5:28:89:41:63:
d2:a4:24:24:5a:8d:48:ef:bc:bf:c8:58:8b:dd:d7:
7a:8d:25:e5:05:0e:22:da:24:f2:f4:57:fd:a4:98:
ae:95:ce:dd:de:97:c8:98:2b:32:d7:70:4c:17:fb:
ac:c1:c0:d2:20:46:96:02:61:72:cd:9e:e0:60:78:
a1:d3:3a:8f:49:36:f3:27:84:6b:9d:d5:94:e0:26:
1c:44:69:05:72:cd:72:fd:2c:b3:55:f0:be:f3:99:
c1:05:17:dd:32:50:0c:7c:7e:5f:4c:56:42:1e:c5:
ea:fe:b0:a5:87:1d:85:7d:98:9d:d2:18:f9:e8:c2:
d3:87:32:d1:27:48:7a:7b:52:d0:c5:04:a6:70:85:
c9:69:c5:f1:00:2a:2a:bc:77:fa:9f:d8:0e:19:23:
c7:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:8C:D6:77:F0:1D:EB:7D:F9:0D:F3:D2:5E:B6:BC:2E:82:94:96:72
X509v3 Authority Key Identifier:
keyid:08:28:54:73:C9:78:CA:51:CE:54:69:AA:4A:ED:CA:16:44:5B:D6:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CChUc8l4ylHOVGmqSu3KFkRb1lI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:df:ec:ad:63:e8:c7:80:bc:8d:1a:8a:70:30:b3:ee:b9:27:
b1:59:91:08:fe:a6:0a:ba:a7:21:e2:71:8b:95:00:5d:3f:f0:
90:5e:09:0b:ff:4a:29:29:8a:49:38:60:8d:d2:e9:06:b3:40:
52:33:b3:f2:81:ac:24:a4:40:92:2c:38:8d:66:e6:f9:01:02:
22:1c:cf:f0:0f:9b:cd:2a:2f:c8:c9:06:61:5a:75:84:a8:e0:
15:ce:bb:a6:37:37:f5:13:c5:ff:d1:2f:08:c3:b9:92:ae:60:
47:b4:40:ca:42:ed:5d:13:ed:24:4a:ff:68:8f:b4:6b:08:88:
10:38:25:32:8f:98:d5:e9:e1:b3:91:ac:42:0c:1e:a8:71:b0:
56:bb:1a:a0:fb:1e:5e:b8:56:6d:b1:70:7d:90:3b:30:47:0f:
c8:94:a4:37:cf:06:1f:7b:9d:6f:98:66:cd:4d:1a:4b:48:d9:
33:c4:57:58:14:c3:d6:12:8d:d5:c4:9b:5e:99:be:67:79:7d:
8d:25:26:6d:5d:fc:a6:65:fc:0a:1f:e0:09:76:0d:78:02:db:
03:1b:01:a7:31:8b:b0:ba:07:12:5e:df:57:8c:ee:4c:7f:f7:
80:e1:22:cd:f4:b8:84:6b:25:ff:36:20:b9:5f:7b:02:de:a4:
61:ce:4b:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:30:58 2025 by rpki-client