Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft
File: icKIUyrvyGlxuY1bTR2YGW2ey4U.mft (raw, json)
Hash identifier: 9zv9RAx4X9yB0Qs2pwGo3SFMzRMFRpFu6acSRNRuXEs=
Subject key identifier: 4B:7C:9A:FE:BC:98:E5:F4:BE:75:AD:BF:F2:38:A3:46:8D:07:6C:BE
Authority key identifier: 89:C2:88:53:2A:EF:C8:69:71:B9:8D:5B:4D:1D:98:19:6D:9E:CB:85
Certificate issuer: /CN=89c288532aefc86971b98d5b4d1d98196d9ecb85
Certificate serial: 01964D7E88101E73543F0E037538A53794FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/icKIUyrvyGlxuY1bTR2YGW2ey4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft
Manifest number: 066A
Signing time: Sat 19 Apr 2025 10:01:00 +0000
Manifest this update: Sat 19 Apr 2025 10:01:00 +0000
Manifest next update: Sun 20 Apr 2025 10:01:00 +0000
Files and hashes: 1: icKIUyrvyGlxuY1bTR2YGW2ey4U.crl (hash: BGKR/vsLruM85K9cWRv6c29pVTaj7cy+J4SP82On1Rw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/icKIUyrvyGlxuY1bTR2YGW2ey4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7e:88:10:1e:73:54:3f:0e:03:75:38:a5:37:94:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89c288532aefc86971b98d5b4d1d98196d9ecb85
Validity
Not Before: Apr 19 10:01:00 2025 GMT
Not After : Apr 20 10:01:00 2025 GMT
Subject: CN=4b7c9afebc98e5f4be75adbff238a3468d076cbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:2f:a5:81:f2:ce:41:12:b6:63:f6:0f:66:56:
bb:84:0c:1a:78:0c:36:c3:f6:1d:a5:1d:1b:d2:e7:
f1:bb:49:6b:b5:69:5b:72:80:b1:63:d9:b5:e0:c5:
00:5d:b1:1a:cd:8a:6a:0d:fc:49:ea:b4:43:1d:0e:
95:c9:93:31:e6:21:8e:30:7d:fc:ec:43:33:ff:da:
10:23:95:53:8d:ea:4d:be:a3:56:da:ea:b2:dc:f2:
a4:fc:93:9d:ab:a5:44:cf:f6:24:78:45:21:cd:81:
8f:f0:28:ea:b7:51:40:44:e7:9b:bb:75:c2:1e:e8:
23:62:10:a5:f1:2f:05:dd:b0:cc:7a:65:32:cf:2e:
d1:50:d0:75:a2:73:b1:aa:c0:89:a7:b7:84:27:d8:
b3:bb:66:9d:5d:2a:db:e5:44:b9:96:94:4a:5e:b3:
78:a9:dc:cc:29:a7:d0:f8:35:3c:51:80:89:a3:22:
ec:36:bc:ec:77:57:c0:e8:5b:2a:0d:99:99:3d:0d:
60:31:18:ff:d7:ad:f5:33:e0:65:db:23:90:0a:37:
23:32:98:87:44:5c:e3:99:2b:4b:97:4e:ed:24:2a:
ad:0e:d0:58:67:2f:3c:8c:4d:d6:f6:91:68:27:9d:
34:41:18:a3:d5:12:7c:2f:c8:4d:f0:3b:8c:46:4d:
3c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:7C:9A:FE:BC:98:E5:F4:BE:75:AD:BF:F2:38:A3:46:8D:07:6C:BE
X509v3 Authority Key Identifier:
keyid:89:C2:88:53:2A:EF:C8:69:71:B9:8D:5B:4D:1D:98:19:6D:9E:CB:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/icKIUyrvyGlxuY1bTR2YGW2ey4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/18dd8b-a010-42ca-bc99-0f867d9ff58e/1/icKIUyrvyGlxuY1bTR2YGW2ey4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:e8:34:ee:a2:85:c2:04:c8:22:e9:40:d9:c0:91:36:ed:84:
d9:90:fd:18:fc:7f:95:fe:3e:06:38:29:76:36:82:6f:69:5f:
7c:8e:0d:4c:42:84:0e:29:21:aa:33:16:e2:34:3b:b0:2c:36:
a8:96:70:c5:25:23:5d:74:48:38:9c:85:0c:4d:38:5a:5c:b9:
43:bb:97:4d:72:42:e2:f9:ff:bb:6f:ab:1f:93:05:32:ec:70:
47:55:b6:ff:12:ed:24:ae:2d:9e:17:7f:73:27:92:b4:6a:17:
af:dc:93:24:14:eb:18:62:f4:ee:bd:67:46:0a:19:9c:d2:be:
a5:04:e9:73:49:62:75:91:4d:5c:34:e8:d9:04:68:ef:2a:de:
3a:e5:af:80:7f:20:d5:c8:b2:e5:b6:12:b2:94:be:e3:49:46:
9a:aa:e8:85:ac:1c:1d:68:61:1d:5a:89:7d:2d:c8:68:d2:98:
7e:36:92:a2:46:c9:a7:3d:62:59:aa:73:8a:2b:40:9c:8c:55:
31:40:a9:17:be:0c:37:da:87:5c:33:f2:2b:dd:b0:cd:5a:c9:
e1:6e:12:59:56:32:96:62:4c:de:39:68:99:02:87:1c:8c:1b:
55:22:e1:a0:a0:71:d0:e5:d3:07:83:f6:64:1b:eb:76:46:9b:
f2:57:93:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:17:13 2025 by rpki-client