Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/aac6be-1855-484b-8025-dea30ecb736d/1/_x2DMuEYqaIYfqtYhCedZYDxGfc.mft
File: _x2DMuEYqaIYfqtYhCedZYDxGfc.mft (raw, json)
Hash identifier: jAtIaABOLrFhzSWoRH6Moa7QxxCpaiyp4iWQMeac6VI=
Subject key identifier: 54:60:DD:21:9D:E6:78:01:9A:97:64:0A:3B:0B:8C:B5:8E:DE:FE:3F
Authority key identifier: FF:1D:83:32:E1:18:A9:A2:18:7E:AB:58:84:27:9D:65:80:F1:19:F7
Certificate issuer: /CN=ff1d8332e118a9a2187eab5884279d6580f119f7
Certificate serial: 019657CBA8C7ACC496F82DC59E5843643FAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_x2DMuEYqaIYfqtYhCedZYDxGfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/aac6be-1855-484b-8025-dea30ecb736d/1/_x2DMuEYqaIYfqtYhCedZYDxGfc.mft
Manifest number: 0359
Signing time: Mon 21 Apr 2025 10:01:26 +0000
Manifest this update: Mon 21 Apr 2025 10:01:26 +0000
Manifest next update: Tue 22 Apr 2025 10:01:26 +0000
Files and hashes: 1: _x2DMuEYqaIYfqtYhCedZYDxGfc.crl (hash: 6FpdauofWxaG8/zczBeobXVajZKZ8jVlGFNMBM8Dvzs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/aac6be-1855-484b-8025-dea30ecb736d/1/_x2DMuEYqaIYfqtYhCedZYDxGfc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/aac6be-1855-484b-8025-dea30ecb736d/1/_x2DMuEYqaIYfqtYhCedZYDxGfc.mft
rsync://rpki.ripe.net/repository/DEFAULT/_x2DMuEYqaIYfqtYhCedZYDxGfc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:cb:a8:c7:ac:c4:96:f8:2d:c5:9e:58:43:64:3f:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff1d8332e118a9a2187eab5884279d6580f119f7
Validity
Not Before: Apr 21 10:01:26 2025 GMT
Not After : Apr 22 10:01:26 2025 GMT
Subject: CN=5460dd219de678019a97640a3b0b8cb58edefe3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:3a:ad:db:2f:4f:eb:7b:20:1f:57:24:5e:61:
c5:ba:9a:17:57:3b:80:16:34:28:3c:0c:5b:df:b9:
0d:b4:97:ab:c3:4a:52:c2:ec:d8:fc:0e:21:b9:8f:
66:3d:bb:66:55:cf:2a:57:bf:9e:9c:4c:42:96:e7:
71:7b:5d:e6:75:a6:24:64:67:89:69:80:fd:c0:16:
0a:31:cf:53:a5:4a:d5:7f:5b:73:b9:45:10:d5:f3:
e4:6a:2a:7c:53:3c:d7:84:21:71:4e:27:e4:0b:a4:
06:bf:03:05:cb:f4:04:6e:cb:62:c1:4f:9b:35:08:
e1:bc:02:6d:51:bd:a7:a6:cb:3d:02:b3:d8:7a:cc:
fd:18:db:d2:96:af:40:51:17:a5:a2:02:4f:71:64:
ef:af:cb:0f:d5:cf:54:f9:00:fc:1c:be:cc:bf:14:
94:8c:21:d5:9d:10:be:a9:8b:ad:64:e8:b5:8f:df:
84:28:4a:9d:3e:2d:e7:c6:3e:9d:ac:d7:ac:15:fb:
61:9c:39:94:bd:37:c2:72:1c:da:9b:48:70:44:fb:
c3:3b:c1:8e:b7:c9:e0:5e:48:0f:80:1d:81:ef:e6:
30:0d:ad:93:f6:72:be:6f:e7:3f:74:cb:4b:bf:23:
47:de:bd:15:d4:90:4b:cd:7c:ad:53:c9:bb:e3:f4:
46:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:60:DD:21:9D:E6:78:01:9A:97:64:0A:3B:0B:8C:B5:8E:DE:FE:3F
X509v3 Authority Key Identifier:
keyid:FF:1D:83:32:E1:18:A9:A2:18:7E:AB:58:84:27:9D:65:80:F1:19:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_x2DMuEYqaIYfqtYhCedZYDxGfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/aac6be-1855-484b-8025-dea30ecb736d/1/_x2DMuEYqaIYfqtYhCedZYDxGfc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/aac6be-1855-484b-8025-dea30ecb736d/1/_x2DMuEYqaIYfqtYhCedZYDxGfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:17:e9:62:f6:1b:0b:38:c2:af:c5:e5:ae:cb:d0:8b:94:82:
42:40:ef:7b:84:00:5d:17:83:f3:c7:68:9a:f8:0c:3f:c5:82:
b2:5d:4f:4c:eb:06:24:92:0b:16:9d:ca:eb:96:7d:ca:4e:d6:
4b:88:c1:0e:4a:dc:78:17:2f:ef:58:41:00:ec:3a:07:8d:10:
a5:94:6a:57:e9:62:41:fb:ff:8f:ca:b6:f6:a0:b0:ea:e6:46:
0a:d7:ac:d1:c5:02:b0:ef:c2:3c:0b:57:f9:74:9b:6f:04:d7:
6a:27:ca:8c:9b:8f:7b:cc:66:db:b3:17:11:e1:fc:95:58:a4:
ae:4b:0c:69:22:6e:8a:e5:ca:0b:98:14:6f:59:1a:64:c0:27:
91:a7:64:4a:00:b1:55:3b:05:fd:5a:43:5f:9c:45:52:11:e3:
90:37:62:f6:cc:47:6b:1e:d4:c0:93:d6:a8:c1:3c:da:fe:32:
90:a7:f0:84:41:87:a5:5e:67:02:24:7e:27:21:87:ba:4a:e3:
56:5b:1c:f5:fa:ea:4c:5f:8a:9c:66:3a:99:9d:80:11:1a:d3:
87:0a:15:06:93:10:cf:14:e9:73:0b:8b:86:dc:9f:fe:91:00:
51:63:66:8b:a0:48:a2:b6:c4:a0:2e:80:90:b9:da:e0:06:54:
ef:a5:8e:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:04:44 2025 by rpki-client