Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
File: IaqfF_jMpH37krSQLSwrMgPb7aY.mft (raw, json)
Hash identifier: BY7q00LfjSsoX9US70+uH5Nraz/6/gCyDVakJHFyoL4=
Subject key identifier: 13:11:E0:81:4B:20:13:7F:9A:EC:7D:DB:20:64:7E:5E:9C:8B:79:35
Authority key identifier: 21:AA:9F:17:F8:CC:A4:7D:FB:92:B4:90:2D:2C:2B:32:03:DB:ED:A6
Certificate issuer: /CN=21aa9f17f8cca47dfb92b4902d2c2b3203dbeda6
Certificate serial: 019647B3F07A46D1E227833B31EB3ADEC6D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
Manifest number: 0593
Signing time: Fri 18 Apr 2025 07:01:36 +0000
Manifest this update: Fri 18 Apr 2025 07:01:36 +0000
Manifest next update: Sat 19 Apr 2025 07:01:36 +0000
Files and hashes: 1: IaqfF_jMpH37krSQLSwrMgPb7aY.crl (hash: yc50noQxx4zhpDnUdLwvtl4wTi+09z69p9DdTpZvXJo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 07:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:47:b3:f0:7a:46:d1:e2:27:83:3b:31:eb:3a:de:c6:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21aa9f17f8cca47dfb92b4902d2c2b3203dbeda6
Validity
Not Before: Apr 18 07:01:36 2025 GMT
Not After : Apr 19 07:01:36 2025 GMT
Subject: CN=1311e0814b20137f9aec7ddb20647e5e9c8b7935
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4c:d4:8e:b1:ca:7b:cc:da:59:9f:15:51:f2:
18:ca:96:7c:fe:57:e9:f3:d9:e6:bf:5e:be:a6:38:
12:00:6e:0a:10:c1:e4:fb:53:83:e1:e1:ce:2d:cc:
16:cc:9e:16:76:ca:ad:19:fc:12:16:3d:c6:72:e6:
a8:70:dc:c6:78:20:ba:07:61:37:32:cc:6d:ba:6b:
1f:f9:3f:d9:f6:76:39:b9:e1:3c:66:07:ef:d7:bc:
4f:bb:94:28:43:e8:af:09:64:1a:0d:a8:a3:bb:2e:
27:eb:67:35:fd:bd:c3:6c:a8:3d:b9:0d:e5:fe:1f:
c9:36:ad:71:67:24:22:0e:9a:b3:4a:f2:c2:29:0c:
ed:a5:70:29:3d:06:61:38:22:78:7a:d3:0e:b0:cd:
fa:87:33:4a:f9:c6:fc:20:2d:4c:cb:f7:a2:6a:52:
b6:17:07:f8:de:6e:22:b8:64:12:5e:9e:79:a4:0a:
e8:5d:91:7f:0f:fa:ab:9e:5b:8e:ac:aa:41:11:df:
fd:ff:88:7f:e7:3f:66:00:45:22:53:ec:4e:20:ae:
ba:19:b4:79:9e:81:7b:7e:b5:16:42:ae:e2:ac:3d:
96:62:98:71:ab:3b:5d:f2:52:7b:c8:8c:f8:45:46:
71:a4:a9:48:c2:17:c8:df:50:46:88:98:bb:11:3a:
d0:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:11:E0:81:4B:20:13:7F:9A:EC:7D:DB:20:64:7E:5E:9C:8B:79:35
X509v3 Authority Key Identifier:
keyid:21:AA:9F:17:F8:CC:A4:7D:FB:92:B4:90:2D:2C:2B:32:03:DB:ED:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IaqfF_jMpH37krSQLSwrMgPb7aY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d68dff-95e1-4c90-9ec6-55029280fec1/1/IaqfF_jMpH37krSQLSwrMgPb7aY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:59:b4:0a:b6:64:33:85:af:3d:f5:43:55:c8:d0:26:41:3f:
d5:2f:ea:73:69:99:40:05:e8:23:f1:60:69:c0:8f:ec:fa:54:
46:f6:53:e5:ee:83:15:ee:e5:21:3a:a6:9a:bf:3b:9f:91:10:
f8:6c:dd:bd:34:ed:c6:a1:d1:85:cd:fd:9b:61:14:8b:79:47:
56:c9:62:be:42:f2:8e:73:30:7c:6f:90:c8:92:9d:0f:bd:e4:
31:6f:c9:0f:bf:3b:1a:06:c8:fa:52:df:04:f2:b8:08:5c:5c:
0d:d6:38:28:6d:cb:45:d2:b6:52:71:0d:d9:b0:d0:c5:79:27:
69:ac:64:41:64:ca:3f:c3:3b:1a:4d:1d:1b:8d:2b:43:4b:5e:
3f:31:87:73:37:da:81:24:9e:dc:8f:be:db:2c:f9:65:ca:4f:
8a:9e:74:c6:f9:d2:18:34:d4:f0:89:28:e8:b8:4e:0e:da:de:
fd:5b:8b:f4:98:f1:e5:fe:10:34:e4:3b:9e:db:43:dd:0a:13:
01:e5:d2:97:50:01:3c:de:8a:e9:92:22:17:7e:1a:44:df:cb:
da:fb:bb:ba:86:79:16:71:92:db:c4:b8:d8:b0:7c:56:49:be:
98:2d:98:bf:8a:0c:ed:b2:e9:ec:7c:60:77:b3:26:0d:27:89:
90:9f:cc:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 13:51:55 2025 by rpki-client