Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/8091a2-8a2d-458c-98a4-c6fcbac770f5/1/eiq2IdNR_j8HPogZQO680cht8-k.mft
File: eiq2IdNR_j8HPogZQO680cht8-k.mft (raw, json)
Hash identifier: UaGIhSa0weOCG+mES2SqXYpZd4KNpWnmKE3a/pj6WFc=
Subject key identifier: 95:43:E2:9C:33:A8:C5:FD:F7:81:5F:6E:23:5B:40:DE:39:11:A7:B5
Authority key identifier: 7A:2A:B6:21:D3:51:FE:3F:07:3E:88:19:40:EE:BC:D1:C8:6D:F3:E9
Certificate issuer: /CN=7a2ab621d351fe3f073e881940eebcd1c86df3e9
Certificate serial: 019579B4E2AD0C8342AA7222F4BE6AA6E6B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eiq2IdNR_j8HPogZQO680cht8-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/8091a2-8a2d-458c-98a4-c6fcbac770f5/1/eiq2IdNR_j8HPogZQO680cht8-k.mft
Manifest number: 1488
Signing time: Sun 09 Mar 2025 07:00:52 +0000
Manifest this update: Sun 09 Mar 2025 07:00:52 +0000
Manifest next update: Mon 10 Mar 2025 07:00:52 +0000
Files and hashes: 1: eiq2IdNR_j8HPogZQO680cht8-k.crl (hash: PJngYSTycbn5HD5tCYVJu6uRQjNg0RYuV2YvkI6Ryq0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/8091a2-8a2d-458c-98a4-c6fcbac770f5/1/eiq2IdNR_j8HPogZQO680cht8-k.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/8091a2-8a2d-458c-98a4-c6fcbac770f5/1/eiq2IdNR_j8HPogZQO680cht8-k.mft
rsync://rpki.ripe.net/repository/DEFAULT/eiq2IdNR_j8HPogZQO680cht8-k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 10 Mar 2025 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:79:b4:e2:ad:0c:83:42:aa:72:22:f4:be:6a:a6:e6:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a2ab621d351fe3f073e881940eebcd1c86df3e9
Validity
Not Before: Mar 9 07:00:52 2025 GMT
Not After : Mar 10 07:00:52 2025 GMT
Subject: CN=9543e29c33a8c5fdf7815f6e235b40de3911a7b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:0b:38:2b:e5:26:91:94:48:17:bd:a5:83:a9:
7b:ec:32:26:76:ad:b2:f6:26:3c:49:b8:a9:ec:03:
81:a9:3c:14:aa:20:57:0f:18:a1:9b:47:17:ad:4e:
4a:9f:c7:16:35:aa:ff:68:07:f2:f1:a8:ef:32:4f:
2d:9b:de:df:a4:08:a4:eb:cc:ae:36:e4:08:39:32:
8e:a7:79:79:b1:ba:24:ed:2d:84:0d:d6:84:fd:dc:
81:04:25:d9:44:a6:91:d3:9c:fd:fe:8b:92:de:1b:
5c:d5:b0:fd:d5:0d:04:b5:ce:1d:d5:36:27:6a:64:
26:a1:9d:3d:1a:87:df:cf:5f:9d:82:e5:e8:da:be:
6b:97:fd:05:dc:41:b8:e5:86:53:1c:e7:e3:3f:55:
79:c4:03:2b:78:67:a6:db:db:a1:46:ff:d0:05:76:
b8:1e:92:93:b6:e0:96:32:df:79:c2:71:60:f4:f7:
95:06:ba:97:62:a6:4b:43:d4:10:06:c8:80:4c:53:
29:72:aa:95:e8:c0:d7:e4:08:c1:88:97:ea:74:6e:
4e:53:52:db:9e:90:35:59:b1:d1:8f:9f:80:b0:1b:
7b:72:a3:2f:93:72:be:ab:43:46:cc:28:26:80:cf:
48:a7:90:71:74:e5:49:1c:04:e5:f0:c1:5d:90:ef:
8d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:43:E2:9C:33:A8:C5:FD:F7:81:5F:6E:23:5B:40:DE:39:11:A7:B5
X509v3 Authority Key Identifier:
keyid:7A:2A:B6:21:D3:51:FE:3F:07:3E:88:19:40:EE:BC:D1:C8:6D:F3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eiq2IdNR_j8HPogZQO680cht8-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8091a2-8a2d-458c-98a4-c6fcbac770f5/1/eiq2IdNR_j8HPogZQO680cht8-k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8091a2-8a2d-458c-98a4-c6fcbac770f5/1/eiq2IdNR_j8HPogZQO680cht8-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:9f:a5:af:bc:72:64:7a:61:c3:04:20:f3:1e:28:88:d4:c9:
12:f1:ea:23:fd:aa:66:9d:f4:38:3d:b5:29:8f:5a:fa:85:75:
0d:d8:b7:52:8c:1e:04:30:ab:1c:d5:c2:15:0b:1d:db:41:43:
40:93:eb:6e:11:27:16:79:c9:65:7b:7a:58:f0:fb:ad:09:db:
ab:09:77:64:d8:a9:10:bc:04:84:a8:4c:54:6a:ee:7f:fc:bd:
7d:bc:65:a4:40:1f:2a:0f:5f:ce:4d:f0:7b:7d:a6:ad:fb:79:
d2:97:3a:c0:c1:9a:12:99:5b:d1:12:b9:01:7e:5f:16:ad:d8:
d4:d6:3f:53:fa:b5:ad:85:fe:b1:4a:c5:5a:89:f8:61:50:6e:
18:11:ef:85:35:da:14:76:d2:30:0f:43:4b:e3:c4:d0:55:a1:
b9:e9:bd:eb:34:ad:0c:b9:f4:b2:5f:c4:de:8b:67:94:a8:6d:
68:d9:72:60:5b:b8:4d:47:33:86:ed:a4:dc:91:14:d2:30:b9:
93:41:92:d7:ce:67:d8:c2:2c:96:42:3e:94:fb:09:77:fa:9c:
e5:42:43:30:d9:df:6a:30:6a:1d:b5:53:41:e5:29:49:f5:98:
b6:28:c9:a4:82:29:b1:9f:fe:40:f7:4d:30:ad:00:4c:3b:98:
5c:37:f0:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 9 11:44:43 2025 by rpki-client