Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft
File: coCW6KzXbpqhfz62eAQG49pWPtI.mft (raw, json)
Hash identifier: TjKaArUWDRUf9tg7vi6V6BFzWd2Y5w8lIMo6lAQRkT8=
Subject key identifier: A7:E9:3A:8A:1B:5E:9A:9A:B7:2A:51:80:D9:61:C6:90:24:27:94:0A
Authority key identifier: 72:80:96:E8:AC:D7:6E:9A:A1:7F:3E:B6:78:04:06:E3:DA:56:3E:D2
Certificate issuer: /CN=728096e8acd76e9aa17f3eb6780406e3da563ed2
Certificate serial: 019642C401735EBDB50861C0E317DFBD33F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/coCW6KzXbpqhfz62eAQG49pWPtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft
Manifest number: 13AE
Signing time: Thu 17 Apr 2025 08:01:03 +0000
Manifest this update: Thu 17 Apr 2025 08:01:03 +0000
Manifest next update: Fri 18 Apr 2025 08:01:03 +0000
Files and hashes: 1: coCW6KzXbpqhfz62eAQG49pWPtI.crl (hash: 89JpdJcBb6pIS66LPLlJQ+jaHoMUHEPY2slFca6n7Ug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft
rsync://rpki.ripe.net/repository/DEFAULT/coCW6KzXbpqhfz62eAQG49pWPtI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:42:c4:01:73:5e:bd:b5:08:61:c0:e3:17:df:bd:33:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=728096e8acd76e9aa17f3eb6780406e3da563ed2
Validity
Not Before: Apr 17 08:01:03 2025 GMT
Not After : Apr 18 08:01:03 2025 GMT
Subject: CN=a7e93a8a1b5e9a9ab72a5180d961c6902427940a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:1c:88:a8:c8:56:41:c8:57:40:6a:bc:30:d7:
0a:9e:64:d3:e0:7c:dc:1d:e6:e9:af:8b:9c:0f:6d:
ad:20:5b:56:9d:0e:de:b3:8e:c7:b3:fa:6e:0a:10:
9e:e7:c1:b8:29:be:ef:35:cd:6b:e5:9d:73:e5:19:
6b:cd:c3:43:b3:c6:a4:82:82:c2:35:74:e2:f4:27:
95:c2:09:ca:0b:42:e6:58:31:57:dd:b4:ac:51:86:
a9:e2:67:8d:96:c0:c8:a0:8e:2c:67:de:0d:0d:71:
8c:ff:f3:55:44:75:21:0a:0a:e8:e1:82:12:49:b0:
7a:03:09:de:ab:48:f1:39:55:4c:c7:a7:fa:8f:48:
c0:4f:eb:ea:6d:06:4b:c7:b9:30:34:41:fd:ae:c4:
3f:2f:6d:12:40:03:24:be:2a:37:5e:0c:c1:0f:6d:
37:28:71:00:2f:da:d2:14:06:b5:ac:57:ea:58:d5:
ce:df:34:9c:de:07:3d:3c:a4:7f:0f:c2:00:00:73:
f4:38:48:5e:8d:8e:4e:59:5a:f2:7c:c2:fb:4b:30:
b5:ad:57:3d:0f:91:0f:a0:92:f5:34:20:28:a5:74:
20:1a:a1:93:62:2e:eb:05:f9:76:1b:af:1b:0b:10:
d8:20:c5:53:e0:4b:fa:31:56:41:ef:a2:b6:9e:3d:
ca:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:E9:3A:8A:1B:5E:9A:9A:B7:2A:51:80:D9:61:C6:90:24:27:94:0A
X509v3 Authority Key Identifier:
keyid:72:80:96:E8:AC:D7:6E:9A:A1:7F:3E:B6:78:04:06:E3:DA:56:3E:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/coCW6KzXbpqhfz62eAQG49pWPtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/bf144b-aab5-407e-904f-c1734d50cb3b/1/coCW6KzXbpqhfz62eAQG49pWPtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:5c:0f:d6:d0:94:d8:6c:c2:d4:88:98:19:4c:6b:91:2c:12:
ef:85:05:62:8e:7b:c3:38:b7:b4:1d:67:83:ae:5e:15:e9:11:
83:6c:0f:6e:cf:6d:12:fa:79:45:85:e5:15:ce:2d:cd:20:4b:
b4:4a:d9:ac:78:c3:0a:4f:57:ac:d2:3d:35:0a:d3:d9:77:19:
17:50:d8:c1:68:f8:14:fb:33:9b:4f:b7:f8:84:54:7f:db:33:
28:f1:08:21:d6:16:b3:1b:b1:13:d7:17:c1:ae:f3:4c:f9:d2:
6d:9a:d5:0a:57:30:e9:8c:b3:0d:66:91:9b:ae:92:ad:9b:40:
81:fc:f5:19:a8:0a:0e:b6:fe:03:04:fc:33:6c:fa:c8:f5:e0:
03:71:ca:16:2a:28:d2:ff:60:71:b0:ee:18:f6:5a:5e:e0:e5:
90:3d:ae:d9:3a:f9:45:ba:98:90:e3:12:3e:a3:b7:bb:61:e7:
b7:fe:c4:be:9c:bb:5b:58:df:34:15:c0:3b:00:58:66:0b:61:
0f:7e:1c:c8:13:42:ff:89:77:67:71:d9:65:0d:84:9e:04:53:
2d:bf:21:a0:ee:a4:51:fe:d0:06:07:24:05:6b:8d:c7:58:b6:
f4:b6:9e:0a:74:79:f2:f8:0d:bc:12:b5:83:fe:99:55:70:89:
56:63:f8:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 15:57:08 2025 by rpki-client