Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/52c916-fd6f-41c0-8f3a-58559a94c426/1/8KSyRplUYkr0JKVO8WdhwhWLJIM.mft
File: 8KSyRplUYkr0JKVO8WdhwhWLJIM.mft (raw, json)
Hash identifier: JV7g0DyJahx4RjfiuuHOv/xGCUxERCD4NKOAw7DGuTs=
Subject key identifier: 27:AB:53:15:8D:82:2E:62:B9:BA:E0:9B:3A:F2:07:A0:36:35:7D:13
Authority key identifier: F0:A4:B2:46:99:54:62:4A:F4:24:A5:4E:F1:67:61:C2:15:8B:24:83
Certificate issuer: /CN=f0a4b2469954624af424a54ef16761c2158b2483
Certificate serial: 019656130EDC347EC14D5E6B9BEE3F922984
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KSyRplUYkr0JKVO8WdhwhWLJIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/52c916-fd6f-41c0-8f3a-58559a94c426/1/8KSyRplUYkr0JKVO8WdhwhWLJIM.mft
Manifest number: 145B
Signing time: Mon 21 Apr 2025 02:00:11 +0000
Manifest this update: Mon 21 Apr 2025 02:00:11 +0000
Manifest next update: Tue 22 Apr 2025 02:00:11 +0000
Files and hashes: 1: 8KSyRplUYkr0JKVO8WdhwhWLJIM.crl (hash: TTZcj1HXozscrsf2I1yL83FDIkmCk5dB3vl4Vu0cFH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/52c916-fd6f-41c0-8f3a-58559a94c426/1/8KSyRplUYkr0JKVO8WdhwhWLJIM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/52c916-fd6f-41c0-8f3a-58559a94c426/1/8KSyRplUYkr0JKVO8WdhwhWLJIM.mft
rsync://rpki.ripe.net/repository/DEFAULT/8KSyRplUYkr0JKVO8WdhwhWLJIM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:13:0e:dc:34:7e:c1:4d:5e:6b:9b:ee:3f:92:29:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0a4b2469954624af424a54ef16761c2158b2483
Validity
Not Before: Apr 21 02:00:11 2025 GMT
Not After : Apr 22 02:00:11 2025 GMT
Subject: CN=27ab53158d822e62b9bae09b3af207a036357d13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:35:a4:31:0b:3c:c7:71:86:4e:e4:55:62:2c:
be:e5:c5:f8:39:a3:fa:02:48:77:81:c8:0a:78:89:
c8:b1:0b:70:b3:59:25:43:87:c7:77:78:e9:43:0e:
5b:a0:c0:17:34:4a:0b:04:3d:ce:03:25:94:d5:25:
a3:1c:42:7f:f0:6e:1e:b7:a0:22:f2:f1:a9:dc:a3:
2e:1c:81:aa:10:a3:69:ed:6d:ba:7e:e2:29:c9:80:
fc:02:37:a0:18:db:be:49:38:00:89:ab:0f:ef:53:
70:b7:d2:ed:ba:22:70:8b:83:67:31:b0:77:26:9a:
d7:da:c1:49:7f:72:a3:eb:76:f6:de:ed:23:5c:1f:
23:cc:5f:28:08:b5:93:e7:f7:6d:19:7b:97:da:df:
8f:d1:af:d6:87:e1:71:10:c5:4a:a3:c6:c5:15:28:
32:ae:28:63:2d:6a:b8:44:34:c4:25:71:6d:55:0d:
f0:2c:be:62:ad:fb:09:0e:38:c3:4a:a4:16:4f:52:
4c:91:41:80:8a:e7:52:9e:31:dc:10:17:0a:a5:ea:
7d:0c:bf:24:3d:81:50:20:bd:b4:ee:24:c4:8a:f9:
9a:dc:df:c4:57:c6:5e:c4:29:06:76:8b:bc:90:7b:
4d:f8:4c:1c:7e:13:be:2c:a6:dc:4d:bb:3b:ea:bc:
db:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:AB:53:15:8D:82:2E:62:B9:BA:E0:9B:3A:F2:07:A0:36:35:7D:13
X509v3 Authority Key Identifier:
keyid:F0:A4:B2:46:99:54:62:4A:F4:24:A5:4E:F1:67:61:C2:15:8B:24:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KSyRplUYkr0JKVO8WdhwhWLJIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/52c916-fd6f-41c0-8f3a-58559a94c426/1/8KSyRplUYkr0JKVO8WdhwhWLJIM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/52c916-fd6f-41c0-8f3a-58559a94c426/1/8KSyRplUYkr0JKVO8WdhwhWLJIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:46:05:8a:69:d3:c6:68:74:79:91:f1:f1:95:a5:48:0c:0c:
5b:45:90:61:f6:ae:5e:ba:3f:b5:80:b7:7c:7f:8a:44:bc:ab:
d7:50:13:61:bb:20:59:06:0c:0b:da:0c:81:28:02:b2:86:dc:
b4:e8:e0:87:52:77:f0:7c:c4:05:80:71:67:39:6a:48:97:36:
57:1d:cd:83:0c:e6:43:d9:ec:4f:ac:d2:18:14:60:8f:20:58:
97:e0:c7:57:3f:2f:41:9c:08:0c:7a:45:11:ef:1d:35:53:59:
9e:6f:1e:16:2a:b7:2b:b5:08:8d:f6:03:83:d9:5b:d6:06:2c:
cb:70:b9:8c:21:f7:21:4d:36:f5:6e:45:2c:9e:d8:67:ca:ab:
d1:7b:f9:e6:ae:2b:4f:52:04:90:3e:ce:4c:c0:d3:ee:45:8b:
8e:b4:53:0f:f0:9f:1d:35:5f:c3:59:01:62:a4:55:24:9c:e5:
b6:3a:41:c2:f7:ac:5a:f7:38:13:e6:aa:a6:76:7c:2c:74:ab:
b1:12:e6:a0:bb:9c:d8:60:27:06:9a:2a:e3:53:40:9c:00:99:
60:cd:39:9c:8e:1c:58:44:a1:25:cc:74:30:42:f9:1d:ce:cf:
f1:29:bf:72:eb:87:df:b3:41:65:73:80:d5:c2:5a:6d:99:96:
42:05:fb:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:41:13 2025 by rpki-client