Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/8438f5-6c9c-4703-9fe2-015fde45d0ea/1/apc35u85FOD8zAaQI76XGYuRN5E.mft
File: apc35u85FOD8zAaQI76XGYuRN5E.mft (raw, json)
Hash identifier: oH0Y5wKt4oMxFdLu011zCNm2804kFcv8A3/7pIsEIRs=
Subject key identifier: 3C:05:27:0A:42:C6:D5:FC:D3:63:DE:85:30:B4:F2:52:80:23:F3:E7
Authority key identifier: 6A:97:37:E6:EF:39:14:E0:FC:CC:06:90:23:BE:97:19:8B:91:37:91
Certificate issuer: /CN=6a9737e6ef3914e0fccc069023be97198b913791
Certificate serial: 019510C6AC6C82747485A978EFBDDF4BBDCE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/apc35u85FOD8zAaQI76XGYuRN5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/8438f5-6c9c-4703-9fe2-015fde45d0ea/1/apc35u85FOD8zAaQI76XGYuRN5E.mft
Manifest number: 1452
Signing time: Sun 16 Feb 2025 22:00:10 +0000
Manifest this update: Sun 16 Feb 2025 22:00:10 +0000
Manifest next update: Mon 17 Feb 2025 22:00:10 +0000
Files and hashes: 1: apc35u85FOD8zAaQI76XGYuRN5E.crl (hash: TNvFMXR/qzwCtYw5dD+keOshIczba95q9znFPwIHLG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/8438f5-6c9c-4703-9fe2-015fde45d0ea/1/apc35u85FOD8zAaQI76XGYuRN5E.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/8438f5-6c9c-4703-9fe2-015fde45d0ea/1/apc35u85FOD8zAaQI76XGYuRN5E.mft
rsync://rpki.ripe.net/repository/DEFAULT/apc35u85FOD8zAaQI76XGYuRN5E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c6:ac:6c:82:74:74:85:a9:78:ef:bd:df:4b:bd:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a9737e6ef3914e0fccc069023be97198b913791
Validity
Not Before: Feb 16 22:00:10 2025 GMT
Not After : Feb 17 22:00:10 2025 GMT
Subject: CN=3c05270a42c6d5fcd363de8530b4f2528023f3e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:60:17:a6:ce:b0:6d:6a:65:f2:1f:d7:ec:5c:
3a:22:60:9b:24:4a:3d:d6:2b:a7:65:48:e8:8b:cf:
25:26:11:8e:38:67:17:ef:f9:3d:ce:17:eb:3c:fb:
f4:a8:19:38:9a:43:db:9f:36:8a:b3:81:86:a8:d8:
31:80:55:d4:c7:63:e5:35:f3:6f:f1:ec:af:97:57:
4a:55:2a:72:f4:71:ff:88:59:93:34:f8:67:1f:55:
ae:a7:1a:85:14:a2:e9:f1:f0:dd:d3:56:5a:64:43:
df:c7:f0:cf:ac:7f:e0:74:4c:0d:ee:2f:56:c4:16:
d5:ae:16:41:2b:45:1f:82:72:e5:15:ee:47:51:3b:
fa:c6:ea:9c:bb:03:67:dd:f5:a9:51:1c:e5:b7:bf:
9a:42:b1:e6:be:a6:1f:ad:e3:11:c1:2c:df:2b:9d:
d9:b2:8e:42:5c:95:ad:fe:73:88:3b:12:10:5f:2a:
27:3a:de:20:e7:b3:c3:de:16:36:ff:64:0f:d7:d9:
03:78:ab:36:d6:94:3d:0e:2c:ec:e1:2e:28:1c:9f:
d3:35:bc:cd:9d:0d:11:0c:19:fc:fc:91:83:9a:59:
2a:ad:38:7a:e0:f4:6e:ee:ab:04:cb:05:95:b5:f8:
b5:42:45:77:8d:db:a8:f2:05:f8:45:48:19:d6:3a:
b3:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:05:27:0A:42:C6:D5:FC:D3:63:DE:85:30:B4:F2:52:80:23:F3:E7
X509v3 Authority Key Identifier:
keyid:6A:97:37:E6:EF:39:14:E0:FC:CC:06:90:23:BE:97:19:8B:91:37:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/apc35u85FOD8zAaQI76XGYuRN5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8438f5-6c9c-4703-9fe2-015fde45d0ea/1/apc35u85FOD8zAaQI76XGYuRN5E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/8438f5-6c9c-4703-9fe2-015fde45d0ea/1/apc35u85FOD8zAaQI76XGYuRN5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:2f:20:4d:db:74:70:63:1a:ea:97:40:53:20:02:71:74:4f:
1e:22:d0:44:1a:54:62:34:66:20:09:83:ac:2c:8d:32:d5:e5:
74:df:03:1f:a1:71:b9:9f:6a:82:f1:f8:ee:5b:74:18:8d:37:
3d:19:2b:c0:f1:41:99:18:0e:d3:a6:e4:14:9b:20:47:2b:20:
e0:ed:fb:d3:91:0d:d2:0c:af:ed:a9:df:26:d8:14:34:9d:f2:
1e:77:31:11:79:75:d5:f0:01:cf:e3:62:fa:ca:fb:66:b3:d5:
8a:d8:c0:d6:fe:db:1e:36:46:6e:3a:22:26:05:c3:9d:3e:6a:
fd:1f:26:fe:4f:c1:d1:38:77:e4:cb:67:7c:4b:5a:c7:9e:ea:
fe:ca:30:2e:7e:52:4a:dc:96:56:44:58:62:d2:d7:c9:46:e1:
a5:6b:e8:9d:24:d7:d2:0c:16:55:cf:96:91:34:35:e4:eb:91:
d7:df:6b:7a:e7:81:1f:1d:21:89:90:57:59:11:71:4d:a2:be:
93:d0:46:99:72:d5:eb:59:b4:09:eb:cb:72:41:2e:3a:fb:64:
99:dd:12:59:19:ff:70:4b:d8:14:c1:79:f1:ef:e3:d8:de:ed:
ab:2c:fe:0f:6a:01:48:20:a2:d9:a0:16:29:5f:19:7d:88:33:
bd:02:a4:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:17 2025 by rpki-client