Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft
File: mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft (raw, json)
Hash identifier: +DPfhUPsdEFo3EVhad5hE23Y/3eLMoUW3+3S5AULT4o=
Subject key identifier: 70:B3:AC:11:9F:F7:7B:06:B9:FF:74:AD:82:34:1F:A3:DB:27:3A:BB
Authority key identifier: 99:F4:97:3E:52:4B:08:71:75:82:57:76:30:D3:31:93:E5:3B:67:C9
Certificate issuer: /CN=99f4973e524b08717582577630d33193e53b67c9
Certificate serial: 0194C3F58C8F9CA4F7B151A2C3F56C70059E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mfSXPlJLCHF1gld2MNMxk-U7Z8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft
Manifest number: 02E0
Signing time: Sun 02 Feb 2025 00:00:36 +0000
Manifest this update: Sun 02 Feb 2025 00:00:36 +0000
Manifest next update: Mon 03 Feb 2025 00:00:36 +0000
Files and hashes: 1: mfSXPlJLCHF1gld2MNMxk-U7Z8k.crl (hash: 59Wwk+onn044b97y9nDODhquAWaxwNWuQLFappdvnHc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/mfSXPlJLCHF1gld2MNMxk-U7Z8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:8c:8f:9c:a4:f7:b1:51:a2:c3:f5:6c:70:05:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99f4973e524b08717582577630d33193e53b67c9
Validity
Not Before: Feb 2 00:00:36 2025 GMT
Not After : Feb 3 00:00:36 2025 GMT
Subject: CN=70b3ac119ff77b06b9ff74ad82341fa3db273abb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:eb:55:55:00:18:cf:16:2f:a5:d4:4e:7a:15:
a3:53:ad:58:fe:65:e1:fb:9a:ed:cb:6c:20:8a:e9:
96:2b:a4:96:45:98:75:97:32:a4:85:74:42:1e:c8:
5e:64:af:f9:b4:2f:f8:26:20:a0:68:2c:68:f6:6e:
3e:b1:29:69:17:3e:7a:f6:e6:15:05:3f:b9:52:27:
a0:34:59:46:fd:82:f5:7e:3c:ea:07:98:f6:48:6c:
bb:0e:b9:88:77:53:0e:04:8b:af:0f:b9:f9:7d:af:
f3:8e:07:71:ef:5c:07:53:ef:d6:80:9e:f9:dd:c8:
47:d2:fc:63:dd:36:34:64:31:c3:59:9f:22:bc:e8:
3e:c8:66:a5:b3:8a:98:66:12:69:e2:b1:68:75:02:
74:fc:f4:d1:5d:1c:32:fb:6c:33:c8:b6:32:3f:95:
f6:e0:d4:2d:04:84:c6:05:29:bd:f2:4f:46:1b:0b:
a5:5d:d1:b2:41:82:06:fb:42:c1:c9:3b:89:2b:37:
7b:cf:26:84:bf:95:18:26:2b:e5:7d:bf:90:f0:9a:
9b:bb:b6:94:3f:ec:e6:39:25:da:ba:48:9a:e2:6c:
0e:34:a9:8c:96:62:f4:58:0b:06:90:fa:a2:8e:50:
84:44:41:13:a5:f3:44:4d:2f:db:c6:a0:b6:8c:f8:
79:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:B3:AC:11:9F:F7:7B:06:B9:FF:74:AD:82:34:1F:A3:DB:27:3A:BB
X509v3 Authority Key Identifier:
keyid:99:F4:97:3E:52:4B:08:71:75:82:57:76:30:D3:31:93:E5:3B:67:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mfSXPlJLCHF1gld2MNMxk-U7Z8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:d0:a4:30:a8:52:3d:9e:11:2c:38:4a:c6:97:3c:4e:e2:3e:
aa:19:25:ce:15:62:b8:4c:5f:ca:fe:c9:0c:91:f1:72:3f:9e:
ba:20:62:66:71:87:99:83:5d:4b:93:fa:1e:7e:40:93:91:b7:
d8:fe:fb:a7:14:3e:96:b4:e4:75:bb:5d:1f:af:be:7b:a1:96:
2b:42:ba:9c:2b:a9:96:5c:83:58:94:a8:8b:7b:b0:a2:1a:b5:
11:03:48:ed:c1:75:08:75:4f:b9:7d:19:28:f9:13:b8:07:fe:
af:71:e7:01:3d:08:d3:b5:0a:98:99:7d:a6:11:e2:2b:91:e3:
b0:1d:6e:29:50:8a:53:66:bc:13:be:51:9f:f3:89:36:11:2a:
9c:8c:30:68:4f:b8:28:40:6c:15:ed:73:1c:cd:46:7b:8a:3b:
8e:e2:50:0a:ef:03:50:12:2f:e9:f7:72:9c:66:92:56:83:eb:
10:70:5e:ab:e4:0c:f5:5d:50:34:b1:1b:7c:93:13:5b:52:8b:
eb:87:66:f6:69:12:88:7d:07:bc:73:e2:ec:fe:0a:fc:99:74:
86:5f:69:6f:fe:08:ee:c9:c5:cb:dc:3c:32:39:c1:67:8a:bb:
bd:e6:5b:0e:6d:39:32:7d:bd:9e:e5:d4:a6:02:91:48:d7:9c:
95:dd:f2:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:52:23 2025 by rpki-client