Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft
File: CChUc8l4ylHOVGmqSu3KFkRb1lI.mft (raw, json)
Hash identifier: RHN8RmxfZyz0ITk2kINnekSs/l8jf1PBdq/OGojjUhE=
Subject key identifier: C9:81:70:2C:32:4E:46:FF:62:C1:9F:06:6B:0A:03:EB:F6:A7:80:B0
Authority key identifier: 08:28:54:73:C9:78:CA:51:CE:54:69:AA:4A:ED:CA:16:44:5B:D6:52
Certificate issuer: /CN=08285473c978ca51ce5469aa4aedca16445bd652
Certificate serial: 0196507F23EF9327DB6EF8A639A926AE7A39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CChUc8l4ylHOVGmqSu3KFkRb1lI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft
Manifest number: 14FD
Signing time: Sun 20 Apr 2025 00:00:31 +0000
Manifest this update: Sun 20 Apr 2025 00:00:31 +0000
Manifest next update: Mon 21 Apr 2025 00:00:31 +0000
Files and hashes: 1: CChUc8l4ylHOVGmqSu3KFkRb1lI.crl (hash: aK2dhUurx/o5hHzBXPiNcAE5G+BGveKV1IQSWPCXTUI=)
2: FuulQ2OCXlEeKOdXSHSbO4OXD9g.roa (hash: vDsoze7SRq5/DcfNiXEwTROz6jQawFkLYnYc3el4ix8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft
rsync://rpki.ripe.net/repository/DEFAULT/CChUc8l4ylHOVGmqSu3KFkRb1lI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:7f:23:ef:93:27:db:6e:f8:a6:39:a9:26:ae:7a:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08285473c978ca51ce5469aa4aedca16445bd652
Validity
Not Before: Apr 20 00:00:31 2025 GMT
Not After : Apr 21 00:00:31 2025 GMT
Subject: CN=c981702c324e46ff62c19f066b0a03ebf6a780b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c8:c7:d4:0d:a0:ec:e5:7e:ba:a1:67:07:39:
fe:ab:20:03:57:0b:35:1f:f8:d7:65:9c:5f:80:9b:
df:cd:2a:b1:82:82:8d:8d:19:a6:45:41:ee:61:b1:
97:06:1f:08:85:bf:30:45:84:e6:e8:17:61:d2:6b:
7a:f6:20:88:1b:e9:53:31:c3:15:10:66:fe:fc:77:
09:cf:e0:72:c8:4a:ce:e5:73:6b:cb:1a:03:c1:54:
ac:be:47:e0:1c:49:3f:fb:26:0e:97:7f:5a:a6:d6:
91:7d:20:95:87:98:26:dc:21:ef:c7:88:a9:99:f8:
2a:4a:2e:f0:87:08:42:e4:38:10:1a:5c:c2:24:8f:
2c:c6:d9:fb:b0:bf:fe:60:58:d1:c5:f7:a5:91:1c:
47:fb:bf:6d:87:22:67:6f:33:05:40:42:88:71:da:
56:2d:ca:92:08:1a:b8:d4:53:84:48:0d:cf:59:7d:
54:e4:98:6f:20:8b:b7:e9:f0:ca:6b:e7:05:97:61:
84:ea:99:c5:40:67:b1:95:05:0e:b0:ca:ec:1e:29:
80:44:0f:76:b9:34:6a:2b:c2:79:68:43:29:66:e2:
3f:80:15:3b:1b:cd:19:ff:51:41:cf:64:a9:f4:cc:
0d:f0:2d:f7:50:f5:01:45:a6:57:d6:8d:32:01:8d:
0a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:81:70:2C:32:4E:46:FF:62:C1:9F:06:6B:0A:03:EB:F6:A7:80:B0
X509v3 Authority Key Identifier:
keyid:08:28:54:73:C9:78:CA:51:CE:54:69:AA:4A:ED:CA:16:44:5B:D6:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CChUc8l4ylHOVGmqSu3KFkRb1lI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/bfb4f2-887a-4013-a8f8-8e300efd13bc/1/CChUc8l4ylHOVGmqSu3KFkRb1lI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:18:1f:d7:c5:79:a3:46:3f:71:76:9c:26:3f:46:ed:a3:29:
92:ef:e8:bc:c3:4a:4f:e5:95:fb:32:fe:c6:39:78:d2:39:7d:
57:f9:a4:de:a0:11:45:62:64:af:23:50:61:31:06:b4:e8:60:
05:51:e1:c4:11:cf:0d:a9:13:ab:f2:f0:bf:0e:81:fb:53:2f:
9d:21:43:c1:66:a3:d1:42:14:c6:f1:13:b6:93:df:41:cc:5a:
f7:ec:3a:53:e6:c9:10:0e:3d:78:f3:3c:ec:6d:47:5b:9c:32:
6a:17:f4:57:1b:cb:5a:b9:15:b6:83:6a:ee:94:3d:3a:3f:29:
93:54:db:3f:6a:a3:da:d7:9f:b5:f6:0d:92:98:04:c5:08:4c:
ac:2e:23:54:c6:82:4b:2c:9c:a9:5f:c3:18:00:81:7f:79:4e:
57:97:d3:ce:87:3e:21:f6:b7:3c:c2:ce:23:e8:de:77:e7:77:
d8:a3:95:47:b0:ab:73:28:e3:d9:e8:31:73:85:92:50:62:82:
04:b4:f8:3b:c3:22:d3:3e:4b:95:6d:4a:0c:40:a2:4a:1b:52:
fb:0f:f0:42:3f:cd:8b:13:0b:74:4a:17:60:72:cc:03:6d:ab:
f4:05:5c:f4:45:16:58:89:ce:f4:1a:54:d0:c9:46:e9:76:43:
bd:21:08:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:48:18 2025 by rpki-client