Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/18c999-b73a-4214-a22c-728fd6babaff/1/k0F7oKbrs_OxuCr3UPviioakGzU.mft
File: k0F7oKbrs_OxuCr3UPviioakGzU.mft (raw, json)
Hash identifier: d3hX5gcvuyTNP6P8kNxXDIowutCQzVdt03D0C6BxKJE=
Subject key identifier: 45:F9:B9:42:8E:44:BA:A4:DE:7B:46:04:64:31:48:49:1A:02:5C:D5
Authority key identifier: 93:41:7B:A0:A6:EB:B3:F3:B1:B8:2A:F7:50:FB:E2:8A:86:A4:1B:35
Certificate issuer: /CN=93417ba0a6ebb3f3b1b82af750fbe28a86a41b35
Certificate serial: 01965B03809F3FBC21BB6886E761BFC46A59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k0F7oKbrs_OxuCr3UPviioakGzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/18c999-b73a-4214-a22c-728fd6babaff/1/k0F7oKbrs_OxuCr3UPviioakGzU.mft
Manifest number: 0822
Signing time: Tue 22 Apr 2025 01:01:18 +0000
Manifest this update: Tue 22 Apr 2025 01:01:18 +0000
Manifest next update: Wed 23 Apr 2025 01:01:18 +0000
Files and hashes: 1: k0F7oKbrs_OxuCr3UPviioakGzU.crl (hash: WHbMSQ/k9yyrw+b1NGkBJmImmZ+qUAlp8EgLGC3o/GY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/18c999-b73a-4214-a22c-728fd6babaff/1/k0F7oKbrs_OxuCr3UPviioakGzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/48/18c999-b73a-4214-a22c-728fd6babaff/1/k0F7oKbrs_OxuCr3UPviioakGzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/k0F7oKbrs_OxuCr3UPviioakGzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 01:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5b:03:80:9f:3f:bc:21:bb:68:86:e7:61:bf:c4:6a:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93417ba0a6ebb3f3b1b82af750fbe28a86a41b35
Validity
Not Before: Apr 22 01:01:18 2025 GMT
Not After : Apr 23 01:01:18 2025 GMT
Subject: CN=45f9b9428e44baa4de7b4604643148491a025cd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:dd:26:57:91:56:ff:dd:3b:9d:dc:7a:15:b5:
b0:e5:e2:16:30:60:a8:32:28:ec:3b:c2:eb:9b:83:
bd:67:de:3a:3f:35:33:3b:ef:94:89:eb:b8:8a:50:
9d:de:88:1a:21:4a:f8:55:3b:94:c2:6c:e2:15:98:
4c:19:dd:1a:dc:cf:ed:56:65:0e:68:d3:8e:2c:c5:
ed:e1:23:43:57:19:d7:6c:ea:55:65:37:d7:cd:66:
85:be:3b:3b:12:16:2a:83:f4:78:8d:e3:7b:d7:92:
30:80:8d:06:e6:ee:ef:ac:ca:b1:23:83:d9:a3:b2:
20:b8:c7:40:6e:69:1a:0f:0c:87:ed:5f:6d:e0:21:
6f:d3:f8:dd:ca:ed:49:76:31:90:98:75:42:e7:4f:
dc:43:b2:72:6d:55:88:41:7c:fd:d0:fd:38:30:5c:
9c:0e:41:e7:71:6e:9b:d7:a2:27:a8:29:86:d8:7b:
ba:37:94:96:d5:53:fd:54:3c:6a:1e:4a:5f:42:57:
be:ac:0c:08:69:05:9e:11:01:32:dd:88:ae:33:53:
ed:3a:28:b6:bc:10:60:5c:2a:01:eb:c9:b4:72:22:
e5:bc:79:07:7a:11:fa:07:62:48:35:94:bf:34:09:
13:a1:f7:08:0c:3e:0f:76:fd:9b:4d:9d:10:52:0f:
38:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:F9:B9:42:8E:44:BA:A4:DE:7B:46:04:64:31:48:49:1A:02:5C:D5
X509v3 Authority Key Identifier:
keyid:93:41:7B:A0:A6:EB:B3:F3:B1:B8:2A:F7:50:FB:E2:8A:86:A4:1B:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k0F7oKbrs_OxuCr3UPviioakGzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/18c999-b73a-4214-a22c-728fd6babaff/1/k0F7oKbrs_OxuCr3UPviioakGzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/18c999-b73a-4214-a22c-728fd6babaff/1/k0F7oKbrs_OxuCr3UPviioakGzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:12:4c:af:bd:5d:ff:4b:8e:be:53:70:8b:a3:ba:d5:e7:2b:
ae:a5:3b:76:6a:9a:08:9a:8f:cc:74:72:b1:66:f6:fd:7e:f0:
a1:19:65:79:19:62:dc:26:e1:5d:97:6b:54:10:64:a4:94:cd:
6d:51:fb:79:5d:c0:91:ce:7f:c3:e5:d9:7f:11:ae:ab:2d:6c:
64:5c:90:47:e2:bb:22:38:0e:e3:85:71:d8:6c:b5:56:c4:78:
44:b2:06:2b:4b:37:29:8b:73:c9:4e:7d:14:26:70:cf:29:44:
70:41:1b:d5:2b:82:aa:0a:0c:e1:98:0f:8a:f2:5c:f3:b6:68:
d7:ed:96:a3:59:95:06:db:7c:7a:60:37:26:ba:c5:db:62:0f:
5a:e0:ab:a7:fa:e2:3b:0f:41:58:c0:ca:b9:0c:87:39:82:9c:
f0:03:63:00:35:7f:05:43:69:2d:f6:44:4d:7e:12:13:b0:89:
e4:09:3c:93:5c:1f:7c:22:05:a0:fc:5d:d0:f5:60:fb:ad:90:
55:bb:48:d5:4c:ab:87:68:5d:f6:5a:20:f3:d4:ec:ec:10:db:
87:16:06:a6:bd:df:13:48:b0:59:68:0d:b7:3e:7a:fb:9f:f7:
40:ff:d6:2c:78:99:a9:bb:57:9e:b4:29:e9:85:fc:21:2f:aa:
d4:0b:ac:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 11:31:31 2025 by rpki-client