Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/52c916-fd6f-41c0-8f3a-58559a94c426/1/8KSyRplUYkr0JKVO8WdhwhWLJIM.mft
File: 8KSyRplUYkr0JKVO8WdhwhWLJIM.mft (raw, json)
Hash identifier: rjtTO76fLjr6c5QXgUbE97jnkonuYh8lGSWK6yEnkgM=
Subject key identifier: E7:A1:CE:B1:6D:6E:F9:F8:35:00:92:D7:74:17:A0:17:8C:D7:99:E8
Authority key identifier: F0:A4:B2:46:99:54:62:4A:F4:24:A5:4E:F1:67:61:C2:15:8B:24:83
Certificate issuer: /CN=f0a4b2469954624af424a54ef16761c2158b2483
Certificate serial: 01958B4E12056088CB0C605217C6C9A5035E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KSyRplUYkr0JKVO8WdhwhWLJIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/52c916-fd6f-41c0-8f3a-58559a94c426/1/8KSyRplUYkr0JKVO8WdhwhWLJIM.mft
Manifest number: 13F2
Signing time: Wed 12 Mar 2025 17:01:44 +0000
Manifest this update: Wed 12 Mar 2025 17:01:44 +0000
Manifest next update: Thu 13 Mar 2025 17:01:44 +0000
Files and hashes: 1: 8KSyRplUYkr0JKVO8WdhwhWLJIM.crl (hash: Pl1aVJPQttZmbI12UedhS6zrriJcjhLQ5lWvi0nWI34=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/52c916-fd6f-41c0-8f3a-58559a94c426/1/8KSyRplUYkr0JKVO8WdhwhWLJIM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/52c916-fd6f-41c0-8f3a-58559a94c426/1/8KSyRplUYkr0JKVO8WdhwhWLJIM.mft
rsync://rpki.ripe.net/repository/DEFAULT/8KSyRplUYkr0JKVO8WdhwhWLJIM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 17:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:4e:12:05:60:88:cb:0c:60:52:17:c6:c9:a5:03:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0a4b2469954624af424a54ef16761c2158b2483
Validity
Not Before: Mar 12 17:01:44 2025 GMT
Not After : Mar 13 17:01:44 2025 GMT
Subject: CN=e7a1ceb16d6ef9f8350092d77417a0178cd799e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:90:25:c7:e5:a3:6f:a0:4c:6b:f7:70:a7:8b:
e8:0c:42:b9:98:87:b4:fd:64:2a:fd:6c:d9:9c:1f:
11:07:33:97:c0:68:fb:80:51:6f:c6:52:f6:68:1e:
a2:0d:c4:c5:76:e9:03:25:e0:44:ad:a0:34:a3:c7:
0e:86:25:2f:bc:29:04:4b:2e:3b:b1:e0:c1:2b:99:
bc:f9:4b:a0:f9:8c:2d:e5:75:7e:72:1c:88:28:71:
5a:2b:52:62:18:35:70:2c:67:13:94:4d:07:92:47:
a6:bd:9e:1c:d2:1e:62:99:f7:ff:73:e4:3d:b9:6c:
b9:12:46:05:75:18:1b:26:97:41:2d:65:96:7c:d4:
d3:d6:e2:96:68:d9:b2:df:13:15:5f:c9:a1:6a:9c:
22:fb:45:d0:00:05:08:55:4c:64:38:28:01:76:cb:
ae:8f:36:59:d1:1f:d0:44:0b:6c:a5:c9:ac:c5:12:
e5:4b:93:fb:cf:b9:72:ef:76:53:96:bf:72:c6:80:
14:a9:47:72:a3:20:72:d8:12:df:f5:7a:a1:5d:ba:
74:0c:c5:10:30:d3:71:37:3e:a7:f2:97:2c:ef:74:
8b:8b:5b:91:b5:aa:a1:ed:dd:bd:00:ce:88:dd:14:
bd:90:7e:09:20:cc:4c:99:9c:52:28:a7:67:64:ff:
c5:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:A1:CE:B1:6D:6E:F9:F8:35:00:92:D7:74:17:A0:17:8C:D7:99:E8
X509v3 Authority Key Identifier:
keyid:F0:A4:B2:46:99:54:62:4A:F4:24:A5:4E:F1:67:61:C2:15:8B:24:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KSyRplUYkr0JKVO8WdhwhWLJIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/52c916-fd6f-41c0-8f3a-58559a94c426/1/8KSyRplUYkr0JKVO8WdhwhWLJIM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/52c916-fd6f-41c0-8f3a-58559a94c426/1/8KSyRplUYkr0JKVO8WdhwhWLJIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:2a:7f:b1:fd:10:28:42:6c:7d:70:e6:39:6e:3c:36:e5:ba:
b6:1d:9f:8f:e3:eb:c0:94:8a:8c:25:6b:11:1a:6a:3e:bc:c9:
2c:fa:c0:2a:af:09:78:da:5b:23:90:73:48:a3:ba:4e:47:76:
71:22:9c:5a:f9:fb:26:02:a7:80:d1:62:89:dd:ae:27:a5:66:
6c:01:82:04:b9:02:ba:47:2d:3b:d9:f6:9f:ef:43:a6:83:0b:
a6:08:5b:90:ed:ad:88:73:52:0c:a3:39:78:39:00:b7:5d:bd:
b1:c2:99:42:88:3d:85:5e:d3:e6:7f:0d:04:4b:ce:fc:ea:66:
5a:9e:6c:98:4c:3e:0a:c3:87:c5:94:20:38:cb:e7:0c:df:cd:
0f:2c:70:30:f3:b5:1a:27:d5:a3:a9:b9:7b:e0:80:95:e3:cb:
66:0d:65:da:6f:60:0c:46:e4:64:fd:b2:83:de:7f:f4:3c:98:
20:24:a4:fd:ad:31:5a:98:2c:26:de:81:0e:80:d7:e1:32:1f:
1c:61:52:be:c6:c0:56:b5:49:0f:1f:76:6e:cc:34:16:30:31:
46:57:e7:64:28:7c:9c:7e:5e:5d:57:2b:f4:b7:19:01:67:c2:
3c:17:27:f9:84:9e:78:a9:09:e4:ae:8b:bd:ed:37:81:9e:36:
56:21:cb:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:26:05 2025 by rpki-client