Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.mft
File: Iu8SfmGVSrmJNlydukuMBkzu2fA.mft (raw, json)
Hash identifier: CvLh/aPnJT8Hj17tJyy1W1ord7QIGnOXnvu5415Siqo=
Subject key identifier: 92:92:8C:A8:60:E9:B4:56:4A:F7:37:CB:3A:26:7B:9F:7E:89:CB:06
Authority key identifier: 22:EF:12:7E:61:95:4A:B9:89:36:5C:9D:BA:4B:8C:06:4C:EE:D9:F0
Certificate issuer: /CN=22ef127e61954ab989365c9dba4b8c064ceed9f0
Certificate serial: 01958BBB42DAB183DC9436326E02BBA8B74E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iu8SfmGVSrmJNlydukuMBkzu2fA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.mft
Manifest number: 02ED
Signing time: Wed 12 Mar 2025 19:01:00 +0000
Manifest this update: Wed 12 Mar 2025 19:01:00 +0000
Manifest next update: Thu 13 Mar 2025 19:01:00 +0000
Files and hashes: 1: Iu8SfmGVSrmJNlydukuMBkzu2fA.crl (hash: Be/DQcGvWheNDy8T8RkgGmuNv/D+rOWyOfcDXPG7fRo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iu8SfmGVSrmJNlydukuMBkzu2fA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:bb:42:da:b1:83:dc:94:36:32:6e:02:bb:a8:b7:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22ef127e61954ab989365c9dba4b8c064ceed9f0
Validity
Not Before: Mar 12 19:01:00 2025 GMT
Not After : Mar 13 19:01:00 2025 GMT
Subject: CN=92928ca860e9b4564af737cb3a267b9f7e89cb06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:2d:11:0a:d4:41:82:04:11:0e:b1:53:86:6a:
91:51:ed:05:c3:91:a3:2f:9d:fe:5d:93:46:ce:4e:
b6:5c:73:c3:2f:0c:1b:62:46:06:2a:da:7a:54:0b:
e9:94:fe:54:5c:31:c6:13:24:8c:ef:34:8d:e8:79:
93:33:87:7c:ed:7a:e6:51:b6:44:99:3f:5c:09:87:
b3:db:93:c6:85:49:15:97:fa:20:78:26:05:a6:44:
28:21:74:ac:78:98:ac:95:ad:82:99:36:4b:66:ab:
a7:cb:18:2f:1d:b6:79:e7:1f:7d:7b:53:b9:bf:23:
d5:2a:04:c8:44:33:4f:40:ca:ce:c2:4b:55:a8:be:
87:07:62:6f:86:08:95:61:42:06:0e:60:c6:4a:1f:
0b:18:5f:80:95:41:71:68:20:83:f0:39:cb:81:56:
e2:fe:9b:04:59:00:c8:f9:0e:73:a5:da:ee:4f:c1:
be:39:82:23:4c:bf:6e:37:0f:76:d8:50:cf:1c:e5:
a1:69:59:47:6f:fc:9f:b7:52:6b:de:6e:6e:43:dc:
2a:fe:b4:d1:93:c9:fe:1e:07:0a:cc:25:02:9b:24:
2c:b8:22:4e:ad:3f:87:e5:ba:8e:47:eb:93:0c:b9:
66:f1:df:19:17:02:74:35:55:80:b1:2a:6a:87:2e:
85:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:92:8C:A8:60:E9:B4:56:4A:F7:37:CB:3A:26:7B:9F:7E:89:CB:06
X509v3 Authority Key Identifier:
keyid:22:EF:12:7E:61:95:4A:B9:89:36:5C:9D:BA:4B:8C:06:4C:EE:D9:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iu8SfmGVSrmJNlydukuMBkzu2fA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/839828-ce59-4d22-a621-8c6aa10695b2/1/Iu8SfmGVSrmJNlydukuMBkzu2fA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:d3:6c:3f:24:39:5e:cd:42:32:e1:cd:f5:ac:3a:20:56:b6:
38:7c:55:ea:bd:5b:e6:a1:cc:73:5a:f6:9a:9a:09:0d:63:37:
ba:e2:66:97:c4:2b:4b:54:f3:30:22:86:f8:17:3e:fa:15:f4:
50:d4:46:f5:e7:41:b5:0d:ad:18:09:a8:f1:f9:fd:25:72:61:
1a:e2:16:51:a3:01:f9:69:74:b8:aa:91:78:81:6e:6b:db:89:
2b:55:18:bd:16:17:9e:5b:3b:96:e0:84:89:78:64:21:32:0c:
2a:98:95:69:ef:4a:8b:a0:f0:0d:94:14:b9:77:fb:34:af:5e:
b3:ad:ae:d2:4a:3c:aa:9f:3c:e9:ed:03:c7:c1:f7:8e:ee:6e:
c1:47:13:35:4e:ad:2c:a9:71:67:a9:db:5a:a0:4b:60:ef:99:
ff:a2:ee:f0:d5:f2:4b:1d:b4:ef:ea:52:ca:bd:93:ed:f4:44:
71:de:6c:2f:b8:6a:a7:13:86:b4:08:a7:0e:bc:26:bd:b3:6f:
42:4d:f5:0e:0d:2c:e9:9d:2d:ee:2d:a0:b1:af:aa:ae:43:1a:
f9:d5:dd:2b:01:f9:14:f7:b7:18:9c:10:15:15:57:e9:d3:3c:
58:f2:25:01:fd:cb:50:b2:9b:7f:94:66:3e:ff:c4:91:94:13:
40:58:7e:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:36:13 2025 by rpki-client