Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
File: Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft (raw, json)
Hash identifier: jfSj3UKVnxQeFd1F1Eq8q744h4aRKco+ZIHQpECLCxU=
Subject key identifier: 8A:9A:26:24:2B:E5:22:0B:C6:9D:16:01:05:F8:8E:B4:B9:68:FB:D1
Authority key identifier: 46:8E:CB:A1:0E:75:99:A0:30:AA:61:30:88:68:8A:6C:26:D6:2D:75
Certificate issuer: /CN=468ecba10e7599a030aa613088688a6c26d62d75
Certificate serial: 01964AEAC9E60E2CE645F08C5C51F99AA94B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
Manifest number: 1189
Signing time: Fri 18 Apr 2025 22:00:23 +0000
Manifest this update: Fri 18 Apr 2025 22:00:23 +0000
Manifest next update: Sat 19 Apr 2025 22:00:23 +0000
Files and hashes: 1: Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl (hash: Az1Qeea419hfxBfwMWchEc8CwQWQl7uiyF4CjKhCux8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 14:20:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:ea:c9:e6:0e:2c:e6:45:f0:8c:5c:51:f9:9a:a9:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=468ecba10e7599a030aa613088688a6c26d62d75
Validity
Not Before: Apr 18 22:00:23 2025 GMT
Not After : Apr 19 22:00:23 2025 GMT
Subject: CN=8a9a26242be5220bc69d160105f88eb4b968fbd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:0b:0a:56:67:c2:bf:8d:4d:97:db:58:f0:2c:
2e:e5:ce:a6:2a:81:67:a7:00:ab:a8:8a:13:ff:f2:
5d:3e:2d:21:73:13:a2:af:01:83:27:ea:d3:c5:ec:
75:7d:de:f3:d1:9c:af:ba:4a:f5:1c:d9:97:0e:1f:
67:7d:b8:ae:21:cc:2c:ff:25:51:3d:03:5b:55:28:
a6:af:a0:b8:93:23:90:a3:f3:67:6f:bc:f3:2f:2d:
6f:ed:c5:e4:5c:ec:5a:c0:07:07:fe:ad:3e:89:c4:
2b:de:ff:fc:8a:39:5c:fb:2b:69:a7:e8:74:0f:72:
bb:f8:92:6e:9c:66:0a:99:16:1c:e8:c3:98:f6:71:
bc:9a:8b:a8:bc:4d:48:c5:e8:29:bb:c4:cc:21:e6:
58:24:81:3f:79:e7:4a:9b:c3:16:f2:72:16:c0:e1:
97:89:b8:25:1e:25:e3:bd:d4:b0:1c:8e:7f:db:82:
bd:1e:14:d8:74:0e:53:43:42:cb:18:5d:0c:0d:0d:
ae:10:25:d0:13:82:53:74:7c:fb:fa:c1:d3:2a:e4:
ab:be:84:11:77:6d:22:c1:a0:59:f4:9e:17:cf:55:
d5:f5:76:84:94:13:1a:42:e7:44:e5:47:e4:90:78:
0e:45:5b:ab:c3:a8:47:30:36:6a:59:3d:e6:26:86:
ca:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:9A:26:24:2B:E5:22:0B:C6:9D:16:01:05:F8:8E:B4:B9:68:FB:D1
X509v3 Authority Key Identifier:
keyid:46:8E:CB:A1:0E:75:99:A0:30:AA:61:30:88:68:8A:6C:26:D6:2D:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:17:2b:58:a0:2a:83:98:19:a6:89:ab:9f:e2:6b:b7:3d:2b:
1b:3d:e9:4e:18:be:2e:cf:4a:45:48:0b:54:90:1f:49:1f:4c:
dc:7e:61:3a:db:1d:97:0a:a0:38:ea:74:b7:f8:11:93:9b:ed:
ce:b5:07:3e:fa:4b:8c:e7:6b:e0:16:9e:43:24:c9:1b:6b:d4:
39:f8:c3:4f:5f:06:30:cc:88:8e:e2:36:37:38:19:9b:19:01:
5d:2b:41:15:72:dd:b2:7a:62:35:53:a5:f0:50:1a:83:6b:ba:
45:0d:d3:03:8f:b8:1c:5c:fc:df:8d:00:36:26:9c:4e:e7:1e:
9f:a1:4b:9c:57:f1:bd:30:9c:3e:51:99:f2:c3:92:c5:38:84:
7f:8a:dd:78:2c:03:2b:cd:eb:80:b4:49:9b:29:e6:c3:a6:f3:
ca:71:d4:e2:0b:b1:ef:bf:bd:b7:39:80:da:08:3f:f9:6d:0a:
16:5d:7b:72:2c:bb:5e:9a:cd:74:5a:62:4e:69:32:4c:06:1b:
92:ec:6f:c2:c5:53:29:4e:6f:61:2d:16:05:df:ba:a6:09:36:
fa:e1:99:33:c2:ad:56:79:47:97:26:40:7d:5d:a9:a7:03:11:
71:3b:ab:90:c3:d3:bc:fd:e7:e7:9d:1f:6d:dc:16:bf:00:2e:
3c:9e:0e:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 00:32:18 2025 by rpki-client