Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.mft
File: 7N0ioeDFuwAoDxkz7uz4HNig5rI.mft (raw, json)
Hash identifier: ygDys39IskzFeKYnTzhdzd1n7BN3szjLvEB7eOT0mKs=
Subject key identifier: BD:9F:7A:F2:34:2A:C1:9C:4C:74:F9:49:93:31:C1:82:8D:2A:E3:CB
Authority key identifier: EC:DD:22:A1:E0:C5:BB:00:28:0F:19:33:EE:EC:F8:1C:D8:A0:E6:B2
Certificate issuer: /CN=ecdd22a1e0c5bb00280f1933eeecf81cd8a0e6b2
Certificate serial: 019647B4091D324E2EE98F84E9212450CCCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7N0ioeDFuwAoDxkz7uz4HNig5rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.mft
Manifest number: 1487
Signing time: Fri 18 Apr 2025 07:01:43 +0000
Manifest this update: Fri 18 Apr 2025 07:01:43 +0000
Manifest next update: Sat 19 Apr 2025 07:01:43 +0000
Files and hashes: 1: 7N0ioeDFuwAoDxkz7uz4HNig5rI.crl (hash: CIx/5C6HYK0f6JYSgYSM2rjhH9simhl1jwAoPzjYlAE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.mft
rsync://rpki.ripe.net/repository/DEFAULT/7N0ioeDFuwAoDxkz7uz4HNig5rI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 07:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:47:b4:09:1d:32:4e:2e:e9:8f:84:e9:21:24:50:cc:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecdd22a1e0c5bb00280f1933eeecf81cd8a0e6b2
Validity
Not Before: Apr 18 07:01:43 2025 GMT
Not After : Apr 19 07:01:43 2025 GMT
Subject: CN=bd9f7af2342ac19c4c74f9499331c1828d2ae3cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:9d:74:de:2f:e6:2e:bb:3a:37:40:93:40:50:
9b:6d:12:fd:93:8a:12:ec:20:7a:f3:b5:b3:4b:3a:
da:ed:3b:80:db:b6:16:4f:d6:40:35:12:30:ab:dd:
ea:30:aa:48:2c:f7:b2:23:42:83:1f:59:bb:33:20:
ec:79:25:54:c6:45:59:1a:22:13:60:f6:d0:26:5a:
7f:c9:a1:93:83:da:29:91:be:24:f1:fd:98:66:95:
62:06:c6:37:4e:49:e4:15:e5:6c:3f:6b:d6:87:30:
b8:10:b0:89:b9:46:f1:9c:44:2c:38:f9:4e:e8:ef:
cd:2e:9f:37:63:42:ae:01:6a:b9:90:d2:99:3d:9a:
d7:d4:39:a6:15:2e:ea:5f:83:82:ce:de:58:e3:9e:
6b:18:45:71:7f:d5:35:97:63:2c:9f:39:42:80:c9:
ab:81:e4:9f:d9:01:ed:3a:40:3f:b0:f0:c8:9f:b3:
22:84:d2:f8:35:fd:4a:6f:64:42:a3:7c:aa:ae:7b:
31:8b:58:fc:1d:8e:5a:01:ff:4d:f9:3a:7d:ed:4b:
84:7a:67:5f:4c:3a:94:ab:82:a7:38:77:89:67:e0:
95:c8:ca:f0:d1:fa:53:c4:74:ac:29:2b:b9:84:99:
ca:3a:f6:e8:0a:4d:8e:1b:ff:61:ff:b7:3c:c9:74:
c1:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:9F:7A:F2:34:2A:C1:9C:4C:74:F9:49:93:31:C1:82:8D:2A:E3:CB
X509v3 Authority Key Identifier:
keyid:EC:DD:22:A1:E0:C5:BB:00:28:0F:19:33:EE:EC:F8:1C:D8:A0:E6:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7N0ioeDFuwAoDxkz7uz4HNig5rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/717648-55c0-407a-811e-5961655c34d9/1/7N0ioeDFuwAoDxkz7uz4HNig5rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:e3:de:b1:a1:e1:5e:33:f1:9c:08:67:c6:98:11:19:fe:3e:
23:c3:ed:fa:9f:09:83:85:32:c9:d5:a9:47:ff:b3:73:05:dc:
c8:79:a3:52:4f:57:fa:83:7e:cc:cb:0c:22:15:28:b0:c3:b0:
1b:67:53:ce:46:be:e2:25:5b:ca:e7:b5:6d:ef:1d:b3:d8:c1:
38:4e:5b:a7:12:7d:8d:39:b3:15:e6:20:47:95:19:fb:cf:3f:
77:c9:0e:76:10:dd:e8:38:ee:0b:a3:fe:2b:9e:fe:80:0a:85:
9a:1b:94:2d:04:04:b0:a6:9f:23:e3:29:72:75:8d:8e:98:6e:
94:ba:d8:d3:72:40:ed:1e:dd:d5:83:e6:a6:88:20:eb:1c:c2:
4b:85:4b:1d:9e:41:3a:5c:1d:aa:8e:d2:00:ae:c4:9b:b8:14:
ae:0c:9a:28:4a:c7:77:35:aa:db:00:32:c8:72:1e:fc:ad:9f:
83:c8:45:f9:b0:bb:3f:61:ee:8f:86:3d:04:c3:27:15:13:4c:
7d:d2:b4:5a:d9:a0:73:fa:57:16:fa:41:82:07:90:40:13:21:
9b:8b:56:a7:9d:82:1d:3a:49:59:b4:b7:86:8f:8d:fa:6e:0e:
99:c8:5b:1b:07:4b:4a:7c:8b:82:e5:1a:c4:c0:83:95:51:f0:
bc:07:ce:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 16:48:45 2025 by rpki-client