Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
File: A2hHspcjX68HFob-0sHpEL9gBIY.mft (raw, json)
Hash identifier: CMSF8vTdLoztH7kQwfMdeRavMonWnqGQ4ywo4wHAesw=
Subject key identifier: 7C:10:0B:84:69:D5:37:16:AF:EF:DA:30:5E:FF:24:AE:E9:0A:F0:F9
Authority key identifier: 03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86
Certificate issuer: /CN=036847b297235faf071686fed2c1e910bf600486
Certificate serial: 01964B90682CFF5D98B658B65BE53024ACCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
Manifest number: 1189
Signing time: Sat 19 Apr 2025 01:01:17 +0000
Manifest this update: Sat 19 Apr 2025 01:01:17 +0000
Manifest next update: Sun 20 Apr 2025 01:01:17 +0000
Files and hashes: 1: A2hHspcjX68HFob-0sHpEL9gBIY.crl (hash: U3/qjgIObWv3bYGyP9wmCDQ2xNvK8v+9V1/HBWDV8VM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4b:90:68:2c:ff:5d:98:b6:58:b6:5b:e5:30:24:ac:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=036847b297235faf071686fed2c1e910bf600486
Validity
Not Before: Apr 19 01:01:17 2025 GMT
Not After : Apr 20 01:01:17 2025 GMT
Subject: CN=7c100b8469d53716afefda305eff24aee90af0f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:8d:7d:18:d7:c9:32:7c:fa:09:29:ed:e6:f3:
f1:b1:14:43:23:b0:d9:36:09:ff:2c:fd:34:75:ee:
ce:3a:46:bb:fc:79:65:ee:03:58:f0:fc:54:26:3b:
03:6d:a1:27:3c:ba:30:53:f0:44:e3:bd:fd:8e:d7:
ef:71:34:f4:57:b1:d2:b8:3f:e1:5c:22:55:22:a6:
2c:21:9e:d1:44:89:17:c6:1b:a2:77:da:bf:76:f9:
fe:f1:88:fe:ab:4b:b5:b9:e7:28:93:4f:db:d3:e9:
e8:b5:cc:95:36:93:7f:2c:be:c6:63:8b:81:5e:cd:
60:73:22:44:13:29:61:46:99:9c:d6:02:48:fe:9f:
ae:c2:84:d1:b8:90:e9:f5:ad:e3:7f:b6:62:5c:0b:
65:9e:5f:06:59:c5:98:6b:ba:99:69:8e:40:65:05:
b8:4a:c5:c6:fb:d7:a7:d9:7a:ad:cb:86:31:4b:07:
05:b2:6e:50:a1:7a:55:64:ed:73:6c:88:bd:ae:f0:
f9:10:d6:be:82:53:2a:91:da:20:1a:4c:4b:19:08:
d5:84:66:f6:ba:e0:6a:89:53:08:0f:8e:ff:c6:87:
b3:8e:cc:9b:b2:76:90:77:7a:cc:c4:57:98:70:e4:
23:3e:6c:c8:ea:64:74:e0:38:17:d3:55:c8:1e:5c:
00:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:10:0B:84:69:D5:37:16:AF:EF:DA:30:5E:FF:24:AE:E9:0A:F0:F9
X509v3 Authority Key Identifier:
keyid:03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:08:69:ec:d6:77:15:2d:cc:8d:37:53:bd:ac:2d:2f:e3:d3:
57:37:01:98:61:7f:20:4c:72:81:bc:65:c1:96:7b:80:f6:39:
6b:c7:2b:ef:0b:f2:a9:19:d3:5a:f0:1a:98:98:15:96:d4:02:
f9:82:e4:2c:9c:01:25:cc:38:6c:d7:16:ea:3c:4d:7f:72:9d:
6b:2f:cb:36:ca:b9:20:db:52:93:50:c6:e6:68:2d:bd:c1:e4:
40:62:08:82:97:34:48:d7:bc:72:75:6b:52:87:9d:20:79:0a:
af:cb:ea:aa:bb:40:43:4c:93:40:82:66:20:16:9c:5a:8f:7c:
f7:91:7f:cb:12:f8:59:00:48:2e:ce:d4:15:90:83:5f:15:44:
db:74:fe:30:e4:d8:42:ab:8c:fa:80:a3:2c:91:6a:c8:0c:80:
7c:5e:29:91:19:75:1a:e7:32:36:a4:ed:e1:65:3e:e8:b9:26:
9d:2b:d4:bb:7e:7f:00:f4:0c:a8:c1:d1:4b:d6:05:1a:d0:bb:
c8:50:93:9d:ee:38:61:f1:ab:9e:29:63:c3:86:e6:14:6b:0c:
38:36:b3:2b:0c:15:fe:4e:92:94:c2:3f:fc:95:5f:8b:33:be:
8d:4c:ec:f4:ed:c1:56:75:c9:b4:82:ed:37:0d:b8:35:10:ba:
17:59:af:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 06:49:53 2025 by rpki-client