Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/d31eab-31e1-4964-962e-e15bc9650aab/1/8UVKs8Pgm2VctHJVOf9uaZMcRrA.mft
File: 8UVKs8Pgm2VctHJVOf9uaZMcRrA.mft (raw, json)
Hash identifier: 2bJu0xkUQtMw0NTAruPXOUp6P5/aGT2NQ1hrTDDvl0s=
Subject key identifier: 69:D0:5B:9E:33:E5:FF:42:78:32:F3:BE:53:39:B5:28:49:B2:71:B8
Authority key identifier: F1:45:4A:B3:C3:E0:9B:65:5C:B4:72:55:39:FF:6E:69:93:1C:46:B0
Certificate issuer: /CN=f1454ab3c3e09b655cb4725539ff6e69931c46b0
Certificate serial: 01965A5E440C2C321DECCCD313EB0B98DC64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8UVKs8Pgm2VctHJVOf9uaZMcRrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/d31eab-31e1-4964-962e-e15bc9650aab/1/8UVKs8Pgm2VctHJVOf9uaZMcRrA.mft
Manifest number: 14FE
Signing time: Mon 21 Apr 2025 22:00:49 +0000
Manifest this update: Mon 21 Apr 2025 22:00:49 +0000
Manifest next update: Tue 22 Apr 2025 22:00:49 +0000
Files and hashes: 1: 8UVKs8Pgm2VctHJVOf9uaZMcRrA.crl (hash: BsDrMS1UF8syg2uhc0bs5trThhzMaSS/CKOzOB3+UWo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/d31eab-31e1-4964-962e-e15bc9650aab/1/8UVKs8Pgm2VctHJVOf9uaZMcRrA.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/d31eab-31e1-4964-962e-e15bc9650aab/1/8UVKs8Pgm2VctHJVOf9uaZMcRrA.mft
rsync://rpki.ripe.net/repository/DEFAULT/8UVKs8Pgm2VctHJVOf9uaZMcRrA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5a:5e:44:0c:2c:32:1d:ec:cc:d3:13:eb:0b:98:dc:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1454ab3c3e09b655cb4725539ff6e69931c46b0
Validity
Not Before: Apr 21 22:00:49 2025 GMT
Not After : Apr 22 22:00:49 2025 GMT
Subject: CN=69d05b9e33e5ff427832f3be5339b52849b271b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:05:84:26:aa:cd:05:ba:7f:67:53:17:88:fa:
80:32:91:3a:ea:4d:56:40:fa:10:4f:19:23:56:40:
a6:59:d2:37:87:9d:93:75:f3:ce:26:dc:de:71:0f:
d0:7a:87:99:bc:00:cf:9e:fa:2f:6f:7f:36:7e:b8:
f8:76:dc:4e:e3:2c:aa:f7:39:59:39:e2:ea:95:d0:
dd:64:70:f6:a6:0a:01:96:9a:63:cc:ad:bd:3a:51:
95:cc:31:c1:eb:27:48:7e:7b:79:83:68:c4:8b:d2:
c1:f5:af:d2:8b:d4:3a:30:13:2b:31:a1:ff:c4:9f:
bc:4b:14:93:93:ed:6e:70:f1:a3:b2:b6:b1:fd:69:
6b:ba:50:0b:aa:6b:77:a7:18:a7:50:9e:28:17:70:
84:45:1f:01:6e:4c:9d:02:37:44:42:2d:49:ea:01:
4f:f3:fa:4f:28:ec:46:24:84:f0:e1:5d:31:06:4a:
46:63:3e:7d:04:c9:4a:ce:a7:9f:a5:64:eb:f2:10:
3f:8d:f9:3a:c7:b1:88:e0:77:3b:99:e3:ef:9b:da:
f8:f3:b0:6c:5d:37:82:c7:93:7d:0a:81:82:6d:68:
9e:98:56:27:5d:07:e6:35:04:4e:59:4b:71:4d:72:
c3:99:66:2f:99:41:cc:49:ce:07:b4:79:fc:a4:e2:
e1:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:D0:5B:9E:33:E5:FF:42:78:32:F3:BE:53:39:B5:28:49:B2:71:B8
X509v3 Authority Key Identifier:
keyid:F1:45:4A:B3:C3:E0:9B:65:5C:B4:72:55:39:FF:6E:69:93:1C:46:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8UVKs8Pgm2VctHJVOf9uaZMcRrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/d31eab-31e1-4964-962e-e15bc9650aab/1/8UVKs8Pgm2VctHJVOf9uaZMcRrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/d31eab-31e1-4964-962e-e15bc9650aab/1/8UVKs8Pgm2VctHJVOf9uaZMcRrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:bc:97:0f:bf:06:98:c0:65:d0:dc:68:d9:ef:5b:33:29:75:
fd:99:0b:90:5e:d6:ca:7b:f6:62:79:8b:91:28:05:5f:01:35:
f7:ca:8f:8e:c4:bf:b2:48:49:0a:cc:8a:50:70:98:d0:05:f9:
f1:74:08:97:af:2a:fe:83:f1:6d:0b:b9:0b:25:f4:ec:35:72:
b9:db:1f:4f:88:b3:8f:38:af:66:71:bf:cb:61:25:ea:3f:7b:
2b:94:7b:f0:96:df:01:6c:11:d3:f5:24:d8:ae:1e:66:70:c2:
61:ae:51:af:6f:09:76:cd:0b:58:e5:ed:45:b1:82:74:27:ed:
be:7f:83:8e:43:d6:ea:e7:6d:8c:5f:09:b3:e8:6b:5d:8d:36:
f6:e5:22:f2:fb:b1:68:a9:88:a0:e9:e6:6e:f9:c8:c9:5c:a4:
7f:db:62:c4:78:fb:be:47:07:6e:aa:07:af:55:c6:3d:8a:8a:
ea:cc:38:5e:ef:08:10:4c:92:7c:b1:7e:9b:b3:ea:4f:ba:80:
06:eb:37:da:cb:d0:32:4d:b9:1e:5a:12:6a:78:b4:3a:f4:16:
fb:47:f2:e1:66:1c:df:46:b4:aa:29:ce:d6:b0:78:15:25:6f:
7e:e5:6a:9f:75:b3:dd:ba:13:7d:3a:6b:d9:ad:c6:f0:61:dd:
ac:13:b0:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:04:39 2025 by rpki-client