Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft
File: 5aiGWRTezNyYByQf1wtrsIOkRLM.mft (raw, json)
Hash identifier: RbGtu3+g5lE4coKEgT/yOX+vgpAGaKyjQhwjRl1frVs=
Subject key identifier: B8:05:0C:34:F2:9C:F8:C3:91:31:D8:FF:6C:CD:A1:05:0F:F8:CB:DC
Authority key identifier: E5:A8:86:59:14:DE:CC:DC:98:07:24:1F:D7:0B:6B:B0:83:A4:44:B3
Certificate issuer: /CN=e5a8865914deccdc9807241fd70b6bb083a444b3
Certificate serial: 01964D7E8A15AA32A3F7B7EC4F550904A049
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5aiGWRTezNyYByQf1wtrsIOkRLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft
Manifest number: 0E75
Signing time: Sat 19 Apr 2025 10:01:00 +0000
Manifest this update: Sat 19 Apr 2025 10:01:00 +0000
Manifest next update: Sun 20 Apr 2025 10:01:00 +0000
Files and hashes: 1: 5aiGWRTezNyYByQf1wtrsIOkRLM.crl (hash: PX8EdH8kcdx0NL3bMMYP86ABOaBVFmnnPVJssPYFbl8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft
rsync://rpki.ripe.net/repository/DEFAULT/5aiGWRTezNyYByQf1wtrsIOkRLM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7e:8a:15:aa:32:a3:f7:b7:ec:4f:55:09:04:a0:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5a8865914deccdc9807241fd70b6bb083a444b3
Validity
Not Before: Apr 19 10:01:00 2025 GMT
Not After : Apr 20 10:01:00 2025 GMT
Subject: CN=b8050c34f29cf8c39131d8ff6ccda1050ff8cbdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:77:d6:b4:f2:47:1a:ae:66:54:4c:ef:eb:97:
ec:4f:cf:31:37:5f:d9:b8:10:6c:f0:36:80:eb:e1:
71:23:b8:58:04:f4:e1:91:b7:e4:1a:e9:d9:33:23:
18:49:9a:1e:37:f1:b7:f3:9c:fb:9d:71:5a:7e:e8:
3f:a6:a9:0f:0f:2f:d9:10:6c:c8:79:d5:49:e3:d6:
51:ff:3a:9b:bf:ed:84:2c:34:d4:95:15:4e:47:73:
2e:56:54:3c:9f:b8:93:7d:78:17:d0:27:20:3b:ef:
b9:7f:8c:7a:69:4e:38:9e:c5:f0:73:28:52:c0:1c:
29:66:2d:52:e9:19:05:37:fb:fa:cb:01:e3:c3:24:
25:31:0d:a7:2a:75:16:98:8a:11:01:08:08:33:30:
e6:2c:ab:69:7b:23:6a:18:80:a2:f3:60:41:c8:8d:
f9:63:8a:13:9b:7a:ea:e2:1a:f0:71:69:aa:85:ba:
de:96:29:c6:aa:a4:b1:79:dd:08:88:00:ac:18:e7:
0b:52:b9:c7:2f:68:9a:d0:0e:1e:4a:4f:69:f5:05:
23:fa:24:0a:c3:bb:4c:16:11:64:0b:18:aa:f1:d9:
d1:85:97:1e:0e:10:a4:16:bb:b3:1b:47:2b:e6:f8:
a5:b4:73:9f:25:7b:1c:1f:8e:2e:f5:3f:9e:83:d1:
2d:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:05:0C:34:F2:9C:F8:C3:91:31:D8:FF:6C:CD:A1:05:0F:F8:CB:DC
X509v3 Authority Key Identifier:
keyid:E5:A8:86:59:14:DE:CC:DC:98:07:24:1F:D7:0B:6B:B0:83:A4:44:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5aiGWRTezNyYByQf1wtrsIOkRLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:30:87:21:9b:5a:08:42:7a:69:bd:87:26:aa:11:97:f8:a3:
c5:ac:e8:1f:67:47:a5:21:fb:b3:17:95:cb:0a:9c:f4:5f:93:
f4:40:bf:33:3b:07:f0:3f:64:0b:f6:e3:f2:62:da:a3:0b:b3:
28:7f:f6:1f:4d:40:43:50:55:a4:57:1b:61:b7:e9:80:81:f0:
37:c1:06:ec:7a:ec:f3:93:73:ea:94:f4:e6:42:c8:00:bb:cd:
1c:60:13:34:0e:0f:24:84:6b:17:f5:3a:74:9e:16:fe:07:48:
88:38:5a:c5:99:d2:f2:b3:96:1c:5c:09:be:2a:20:e6:e8:43:
0c:ab:50:1f:bd:8d:e3:8d:8f:4a:41:c5:2c:bc:2c:0e:7d:37:
83:0c:c1:d0:0f:1d:b9:cd:16:67:92:80:20:48:49:c5:86:1d:
b2:5d:cd:78:0e:c8:45:45:4d:b3:6f:ad:d7:c2:39:e5:dc:55:
2c:c3:cb:af:1a:de:2a:70:5b:8a:a0:10:30:f3:4b:40:04:8a:
06:91:43:73:ac:02:45:14:4f:00:11:d6:25:11:14:21:25:0f:
a2:fd:67:2b:06:67:93:56:ef:5b:c2:81:00:b6:bb:94:09:e2:
d8:a3:9a:e8:1d:7d:2e:b7:4f:35:75:7b:d7:1d:36:fe:7b:4c:
21:94:1f:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 14:03:57 2025 by rpki-client