Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.mft
File: 2NZi3Mb-O4HvPeL8o8_O3BHrqkM.mft (raw, json)
Hash identifier: kbTUH+PasJBS2IhoGA6CZ8lrCQbzjI126KbmwfXLK6w=
Subject key identifier: F0:78:7A:38:6D:80:C9:52:21:F6:03:C3:F4:D8:ED:7E:02:75:FA:03
Authority key identifier: D8:D6:62:DC:C6:FE:3B:81:EF:3D:E2:FC:A3:CF:CE:DC:11:EB:AA:43
Certificate issuer: /CN=d8d662dcc6fe3b81ef3de2fca3cfcedc11ebaa43
Certificate serial: 01958EF39EEB12833D847A0E84AB9BCE14B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.mft
Manifest number: 14AF
Signing time: Thu 13 Mar 2025 10:01:25 +0000
Manifest this update: Thu 13 Mar 2025 10:01:25 +0000
Manifest next update: Fri 14 Mar 2025 10:01:25 +0000
Files and hashes: 1: 2NZi3Mb-O4HvPeL8o8_O3BHrqkM.crl (hash: B4wtH8Bpb7PuceduDCA3tFdutWRKBdHNil65KSSAhuM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.mft
rsync://rpki.ripe.net/repository/DEFAULT/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 10:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:f3:9e:eb:12:83:3d:84:7a:0e:84:ab:9b:ce:14:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8d662dcc6fe3b81ef3de2fca3cfcedc11ebaa43
Validity
Not Before: Mar 13 10:01:25 2025 GMT
Not After : Mar 14 10:01:25 2025 GMT
Subject: CN=f0787a386d80c95221f603c3f4d8ed7e0275fa03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:9c:36:57:12:39:de:63:cb:41:76:12:0b:8b:
50:28:51:22:82:76:09:44:43:f9:3e:f1:ce:10:86:
a7:73:a9:a1:f1:e4:43:a8:7d:ca:f3:10:6b:70:8d:
f9:77:c2:10:c8:44:7c:14:7c:c9:cb:9f:89:c9:5c:
4f:14:0e:a0:66:2f:86:da:6b:44:a1:e7:c3:43:01:
51:6e:83:96:fb:e2:cb:cd:a3:87:03:bc:41:eb:f0:
29:27:95:68:ab:12:fe:ca:02:b5:9a:cc:a2:56:7f:
73:01:7e:fb:be:46:40:1a:9e:db:aa:72:23:f3:a7:
95:39:fd:3c:14:56:17:2c:6e:79:bc:54:30:a6:80:
0e:02:f4:95:0e:cd:1a:30:7e:a3:36:bf:bf:f0:5c:
a9:b0:10:d6:f3:d5:0c:e7:af:e4:60:d1:cc:fe:d5:
ef:a5:22:9d:20:b9:6c:85:4b:46:1a:59:a4:cf:97:
e0:22:4f:42:75:3f:15:47:59:79:0a:a2:e5:8b:32:
3c:df:12:0e:55:98:c4:37:11:68:03:c1:2d:5d:88:
c6:a8:d7:d5:96:68:63:e6:63:6c:b4:7d:4a:b7:87:
95:f2:6c:4f:09:f4:3f:80:69:0f:bf:4b:fd:00:6f:
73:de:f1:68:13:c1:61:2a:f3:68:d3:02:7e:a1:0b:
78:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:78:7A:38:6D:80:C9:52:21:F6:03:C3:F4:D8:ED:7E:02:75:FA:03
X509v3 Authority Key Identifier:
keyid:D8:D6:62:DC:C6:FE:3B:81:EF:3D:E2:FC:A3:CF:CE:DC:11:EB:AA:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/88fff5-dfd9-4008-95b7-785e5883644d/1/2NZi3Mb-O4HvPeL8o8_O3BHrqkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:05:04:9a:17:06:4e:44:a1:9a:88:72:b0:c8:b4:7d:ab:71:
78:7c:99:74:8a:f0:22:26:4a:0e:74:f3:82:b6:b4:de:12:db:
21:49:1b:05:08:8d:93:0a:97:fc:88:9f:03:7d:c2:f7:52:87:
68:5c:36:60:32:83:3f:3a:1c:95:00:98:06:48:5d:0c:4a:7c:
3f:13:2d:40:1f:b7:12:32:c9:f2:6c:30:63:3d:be:1f:65:0d:
6b:6b:c6:c0:ab:29:e2:95:48:0d:82:8a:d4:53:30:fc:f5:6f:
38:da:b2:c7:da:f3:aa:0d:18:90:e1:58:a2:49:c6:fe:6f:44:
89:a5:96:87:84:93:87:9c:25:7a:55:cb:61:69:6e:68:e8:54:
7e:5f:bf:d1:c1:92:2d:39:9a:7a:27:ce:99:3e:f1:f2:ce:32:
ba:82:c2:a3:4d:28:c0:cd:23:35:e4:c6:62:40:83:8c:c7:1a:
ef:a0:1c:a7:93:c6:fc:c9:20:0e:69:d0:2e:df:4c:bb:c1:5a:
b3:3c:28:41:85:da:36:e1:23:01:a4:f3:ae:67:7e:cf:5a:20:
7b:6d:af:38:50:3c:c8:ce:e0:43:ca:f2:91:32:a4:1f:e8:18:
ae:92:41:94:86:18:f1:a8:32:a0:4b:a2:7c:aa:d2:27:0c:fd:
97:af:f9:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:54:17 2025 by rpki-client