Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/daf850-f587-44b2-8de4-a8585ff93546/1/ItxuR0PtXMhDAyhSiW7xX0iS7bA.mft
File: ItxuR0PtXMhDAyhSiW7xX0iS7bA.mft (raw, json)
Hash identifier: onCGykfOJJ0i546nqohk/ggsfFIGz8yKxwshwb8NaSE=
Subject key identifier: 38:52:70:CA:16:95:DE:BF:B7:EC:D2:E0:30:2E:2B:5B:1F:12:86:A3
Authority key identifier: 22:DC:6E:47:43:ED:5C:C8:43:03:28:52:89:6E:F1:5F:48:92:ED:B0
Certificate issuer: /CN=22dc6e4743ed5cc843032852896ef15f4892edb0
Certificate serial: 0196447AF0C0A3004711B45FB769C6F078C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ItxuR0PtXMhDAyhSiW7xX0iS7bA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/daf850-f587-44b2-8de4-a8585ff93546/1/ItxuR0PtXMhDAyhSiW7xX0iS7bA.mft
Manifest number: 0AF9
Signing time: Thu 17 Apr 2025 16:00:29 +0000
Manifest this update: Thu 17 Apr 2025 16:00:29 +0000
Manifest next update: Fri 18 Apr 2025 16:00:29 +0000
Files and hashes: 1: ItxuR0PtXMhDAyhSiW7xX0iS7bA.crl (hash: 8/WeD+TGOkbMobwn4TVs1y4SWi3EZQszFuP2yOpgSV0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/daf850-f587-44b2-8de4-a8585ff93546/1/ItxuR0PtXMhDAyhSiW7xX0iS7bA.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/daf850-f587-44b2-8de4-a8585ff93546/1/ItxuR0PtXMhDAyhSiW7xX0iS7bA.mft
rsync://rpki.ripe.net/repository/DEFAULT/ItxuR0PtXMhDAyhSiW7xX0iS7bA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:7a:f0:c0:a3:00:47:11:b4:5f:b7:69:c6:f0:78:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22dc6e4743ed5cc843032852896ef15f4892edb0
Validity
Not Before: Apr 17 16:00:29 2025 GMT
Not After : Apr 18 16:00:29 2025 GMT
Subject: CN=385270ca1695debfb7ecd2e0302e2b5b1f1286a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6f:12:41:1d:bc:e2:e0:24:2b:f2:c6:c4:b6:
26:00:4b:f3:cd:fc:cb:fa:e5:89:e0:6e:c0:bf:8b:
95:5b:33:72:92:dd:35:d6:57:02:a2:b4:f2:8b:46:
4e:d8:19:98:fb:d0:29:1c:ba:c0:c4:d8:73:c2:99:
10:fa:dc:8b:98:8c:b1:0a:77:ce:1e:e2:d8:0f:fd:
31:7d:d3:34:9e:61:cc:68:4d:68:f4:4d:c6:dd:b1:
bf:73:6a:00:37:91:83:2a:78:e8:45:ab:9e:e3:f3:
28:79:12:05:29:78:1b:21:3a:29:94:6f:04:71:55:
13:78:52:f4:5e:68:54:2a:37:1a:40:fc:b9:6a:66:
b7:8b:42:28:4a:2b:7e:60:64:9e:c5:0e:ff:0e:88:
0b:69:6a:d9:b3:a0:0c:25:d1:c2:45:45:fb:36:41:
90:de:28:7b:e5:d5:c2:82:23:5f:a5:42:bc:a8:f3:
78:54:10:ac:d1:f7:48:f7:46:11:8d:16:18:bc:f4:
9e:03:c4:61:2f:84:b3:ef:30:26:68:d2:d0:13:68:
2a:27:3b:05:1d:04:5e:2f:8a:0d:51:21:4a:99:0f:
39:5c:25:78:80:e7:62:1c:66:4e:30:0a:1e:43:e3:
1b:e6:aa:e4:19:bd:ee:85:67:a2:27:db:00:4d:59:
a6:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:52:70:CA:16:95:DE:BF:B7:EC:D2:E0:30:2E:2B:5B:1F:12:86:A3
X509v3 Authority Key Identifier:
keyid:22:DC:6E:47:43:ED:5C:C8:43:03:28:52:89:6E:F1:5F:48:92:ED:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ItxuR0PtXMhDAyhSiW7xX0iS7bA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/daf850-f587-44b2-8de4-a8585ff93546/1/ItxuR0PtXMhDAyhSiW7xX0iS7bA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/daf850-f587-44b2-8de4-a8585ff93546/1/ItxuR0PtXMhDAyhSiW7xX0iS7bA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:1b:99:92:90:e0:f4:dc:1f:64:d2:3a:fa:1f:67:21:4a:d1:
3d:53:38:74:e7:3c:52:eb:03:24:13:81:d0:18:94:cc:92:6c:
47:b6:80:38:73:a6:07:39:b7:b8:72:28:ee:47:9c:c7:0f:af:
89:a4:e6:4e:f7:5b:7f:57:d0:4e:65:c4:cf:2a:3d:00:dc:4b:
69:50:54:80:72:b3:1d:23:70:b5:d6:32:26:40:99:50:22:2e:
61:81:ab:71:f3:19:16:16:b8:be:5e:1d:03:10:0d:5f:df:d1:
9a:30:f1:1e:6f:c1:e6:79:cc:6e:37:9c:b6:e7:99:21:cb:92:
e3:25:0b:e7:d4:a2:26:8c:97:b3:2c:43:3c:df:af:81:3d:b4:
0b:33:23:15:d0:dc:54:f4:fe:fc:b3:95:8b:82:22:2f:ca:fd:
94:ec:d3:95:25:49:13:40:98:6f:59:ba:62:3c:38:21:10:54:
56:1f:de:bd:bd:a0:3e:35:64:29:f9:08:71:b6:7c:c2:a0:04:
15:52:4f:bd:3f:e4:a3:09:6d:ec:b5:ff:06:55:ac:2c:0e:e1:
72:7b:4e:fd:30:ff:67:94:34:c3:98:c1:af:c6:d2:5d:5f:19:
e8:6a:51:02:4f:7c:26:66:be:54:51:ca:63:9d:e7:c8:81:bd:
20:9c:57:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 19:52:17 2025 by rpki-client