Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft
File: 3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft (raw, json)
Hash identifier: ykWPnSk698o6RiX+aD9/3hfMnV0o78odEiCXj7NvuHs=
Subject key identifier: 2D:7F:6F:22:E5:AE:D2:E4:8A:6D:C0:56:AE:22:82:16:23:EA:64:20
Authority key identifier: DD:B7:B0:01:9E:19:F1:12:F4:D2:BC:FD:6E:A1:2D:90:81:FC:58:7E
Certificate issuer: /CN=ddb7b0019e19f112f4d2bcfd6ea12d9081fc587e
Certificate serial: 019655A64043A0AF3E68460BF1F6CD3857CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3bewAZ4Z8RL00rz9bqEtkIH8WH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft
Manifest number: 14F9
Signing time: Mon 21 Apr 2025 00:01:20 +0000
Manifest this update: Mon 21 Apr 2025 00:01:20 +0000
Manifest next update: Tue 22 Apr 2025 00:01:20 +0000
Files and hashes: 1: 3bewAZ4Z8RL00rz9bqEtkIH8WH4.crl (hash: wkCNX7fjMS7fyZjWmHgEbhi7UalJYj6ggC29yAWdOlw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft
rsync://rpki.ripe.net/repository/DEFAULT/3bewAZ4Z8RL00rz9bqEtkIH8WH4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 00:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:a6:40:43:a0:af:3e:68:46:0b:f1:f6:cd:38:57:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddb7b0019e19f112f4d2bcfd6ea12d9081fc587e
Validity
Not Before: Apr 21 00:01:20 2025 GMT
Not After : Apr 22 00:01:20 2025 GMT
Subject: CN=2d7f6f22e5aed2e48a6dc056ae22821623ea6420
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:69:da:70:8d:72:c5:cd:6f:39:23:b8:6f:bd:
12:44:6c:2d:f3:90:c2:86:27:3d:e3:c6:74:de:05:
ed:44:10:8c:15:a8:33:59:83:c7:14:59:fb:33:4b:
8b:10:1d:d3:ef:75:7c:ce:6e:7d:db:48:d7:dd:7f:
8c:db:9e:ac:7b:55:f9:35:2b:5a:11:f1:d8:55:fd:
3a:87:6f:00:b6:91:e3:b8:2b:fb:cb:94:df:25:22:
ae:3b:92:b6:24:c6:45:d1:35:95:e0:d8:e5:7d:8a:
1b:c9:cb:8b:6d:5d:2d:ee:96:ff:c4:dd:ec:e7:75:
e5:3a:05:7f:48:3f:f7:56:2a:b0:8f:49:d6:a4:ba:
2f:1c:f0:43:21:bc:53:02:cb:19:0c:7a:31:c0:ed:
53:fb:11:c6:65:70:69:24:ce:e6:48:35:c9:d2:e5:
2f:ad:63:6d:f0:1d:95:91:dd:05:45:4a:8f:25:90:
bb:cd:7c:49:7e:8e:3b:7e:70:34:69:97:83:5e:c6:
42:87:2e:20:2c:d6:1f:36:55:ba:e4:53:e9:70:e3:
e8:3f:37:c0:ae:c3:52:f6:78:6f:d0:54:02:ea:40:
10:d2:5f:fa:b1:2d:49:08:d7:29:70:d3:ec:33:7b:
f8:0e:f6:fe:27:e4:d1:df:f3:ec:cb:35:cd:0b:d1:
0e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:7F:6F:22:E5:AE:D2:E4:8A:6D:C0:56:AE:22:82:16:23:EA:64:20
X509v3 Authority Key Identifier:
keyid:DD:B7:B0:01:9E:19:F1:12:F4:D2:BC:FD:6E:A1:2D:90:81:FC:58:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3bewAZ4Z8RL00rz9bqEtkIH8WH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/efa3f1-7671-4ce3-9fe1-a86df983a74c/1/3bewAZ4Z8RL00rz9bqEtkIH8WH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:5c:c4:60:11:af:6e:ad:98:bf:04:22:5f:f3:9d:77:9c:e7:
22:69:e9:1c:84:36:b8:1e:d2:1b:c3:46:bd:3c:0c:c2:9f:40:
81:5b:59:d9:8d:10:85:c8:9c:4c:a1:d2:90:a3:b9:c9:45:44:
7f:16:e6:bd:43:45:37:e8:62:1a:25:ef:b6:c2:ed:51:a1:a6:
56:3a:f2:9a:b1:48:e6:74:63:f3:0b:13:80:46:36:fe:7c:c8:
6a:3f:9f:2a:fc:4a:3f:8a:be:a3:77:27:97:32:11:d5:d8:e1:
aa:07:58:4d:29:9b:c3:2b:c2:73:30:e4:66:78:0b:11:84:1a:
fc:34:28:c4:ac:06:fc:30:f7:9d:a4:42:90:ef:e7:fb:7a:5d:
55:b0:c9:f3:56:11:c6:14:9a:b0:2e:cc:1f:02:25:d9:0b:56:
78:62:57:62:93:df:e6:44:69:84:f7:76:38:3b:c2:4a:67:00:
f9:d0:99:08:73:6b:d9:8c:a5:7a:e2:77:cb:11:8c:aa:5e:74:
be:ce:be:04:7a:b7:ee:eb:f5:d3:a6:76:f4:38:ac:2b:95:47:
dc:41:56:b2:b0:8d:e6:79:c9:90:49:09:aa:2a:83:62:89:24:
49:e9:b7:96:6d:d7:e7:11:b7:30:86:f4:87:91:31:c3:ca:6c:
08:1d:9f:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 06:47:07 2025 by rpki-client