Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
File: gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft (raw, json)
Hash identifier: z7k5Fj4mm87xFCztyUI/Y7Y4FInmOL8yuCTkmllBgrI=
Subject key identifier: 87:3C:EE:43:32:D9:E4:1F:77:E3:70:5F:11:40:9C:B1:C6:4B:57:61
Authority key identifier: 81:CD:02:62:A2:21:C3:5A:67:CF:17:3A:60:D1:EC:D9:AF:AB:DD:B5
Certificate issuer: /CN=81cd0262a221c35a67cf173a60d1ecd9afabddb5
Certificate serial: 0194C387BB19C8C2A29C416FB05A210F805D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gc0CYqIhw1pnzxc6YNHs2a-r3bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
Manifest number: 0D9C
Signing time: Sat 01 Feb 2025 22:00:39 +0000
Manifest this update: Sat 01 Feb 2025 22:00:39 +0000
Manifest next update: Sun 02 Feb 2025 22:00:39 +0000
Files and hashes: 1: gc0CYqIhw1pnzxc6YNHs2a-r3bU.crl (hash: xf/FBjrPr6YWyg41TLJm5O/0SFT9bXuZW6F3NPqN/5E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gc0CYqIhw1pnzxc6YNHs2a-r3bU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:bb:19:c8:c2:a2:9c:41:6f:b0:5a:21:0f:80:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cd0262a221c35a67cf173a60d1ecd9afabddb5
Validity
Not Before: Feb 1 22:00:39 2025 GMT
Not After : Feb 2 22:00:39 2025 GMT
Subject: CN=873cee4332d9e41f77e3705f11409cb1c64b5761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:eb:c0:15:b0:05:47:43:63:11:e2:4c:d2:0a:
96:d5:e8:83:f7:4b:44:e9:bc:89:f6:87:65:d7:cc:
bc:31:eb:0d:88:ba:91:82:9b:ce:d8:5c:2b:c2:7b:
79:51:87:23:b7:45:ed:67:33:89:b3:40:48:69:7b:
52:eb:71:ae:23:ab:5e:9c:33:8c:1b:6e:b4:3a:ec:
bb:35:16:05:98:fd:99:6b:87:6f:63:61:d8:94:88:
cf:22:01:1a:31:26:b3:09:12:c3:f1:25:32:8e:77:
1d:b1:8b:22:e8:d7:46:dc:4e:87:7f:3f:da:0f:e6:
f5:dc:1e:81:c4:2f:22:d6:73:b4:16:74:ba:c2:e1:
38:53:64:d3:fc:d0:97:4e:ea:50:ed:26:dc:44:b7:
4a:ca:39:64:8d:16:be:f5:0a:51:0a:f6:15:7c:83:
4f:9d:f8:76:fc:f5:14:c4:39:65:33:23:47:9f:90:
5b:24:8b:ff:1b:ed:cb:5f:d9:20:49:f9:08:eb:4e:
6b:6a:26:96:03:a1:4a:ed:4b:2e:4f:23:da:d3:b1:
ad:9a:7d:22:59:bb:4a:53:b0:a2:9e:78:24:a2:65:
c7:c3:0a:a3:3f:10:70:e6:4b:07:68:51:9f:a0:a0:
11:0b:97:43:49:d8:82:55:58:61:58:20:62:96:d3:
a3:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:3C:EE:43:32:D9:E4:1F:77:E3:70:5F:11:40:9C:B1:C6:4B:57:61
X509v3 Authority Key Identifier:
keyid:81:CD:02:62:A2:21:C3:5A:67:CF:17:3A:60:D1:EC:D9:AF:AB:DD:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gc0CYqIhw1pnzxc6YNHs2a-r3bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:a4:8b:8b:50:80:19:0c:58:06:0b:c8:95:de:a3:b2:2a:7a:
96:94:1d:c1:02:ba:0d:d5:21:8a:bb:6c:c6:80:0d:5e:9e:eb:
ec:b2:5e:9c:d4:27:c8:ce:c8:1f:45:c2:0d:29:fc:34:54:e9:
29:d8:70:dd:9a:96:95:c9:f5:f8:83:60:e2:9e:0c:6c:5c:a8:
6d:9c:4e:cf:9f:54:da:27:c7:98:1e:02:95:1f:02:94:40:28:
5c:af:93:f6:29:0a:37:9f:2a:9a:c1:06:7d:90:d1:78:cf:d1:
1e:70:6b:43:a2:aa:bf:ac:09:3e:d3:26:51:da:f0:e8:8a:01:
23:07:73:23:35:b9:0b:a9:e2:de:78:a0:3d:79:a2:ac:c9:53:
85:d2:0e:1e:49:60:87:db:8c:26:56:29:01:92:86:6f:27:40:
f1:1d:87:76:8c:e2:df:db:20:31:fa:1e:06:69:eb:e5:60:1d:
4c:0e:d3:99:b2:b4:6c:d0:ed:df:41:c7:0a:71:93:4b:96:17:
80:fd:82:f9:b6:b5:33:15:03:8e:73:d0:d7:1d:9d:48:7e:8a:
33:1c:58:b3:4d:cd:25:77:58:08:c5:97:6c:3c:cb:44:5c:50:
0f:9b:e7:3c:fd:a3:f8:71:af:f2:81:bb:90:23:73:5d:ec:cf:
36:ba:23:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:51:36 2025 by rpki-client