Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/f907aa-2acd-4dc7-9f0d-d7b08948f7c7/1/r-iiApeGib2NX15X_MG_64Z8Mio.mft
File: r-iiApeGib2NX15X_MG_64Z8Mio.mft (raw, json)
Hash identifier: r7RWpXd+p5ORf+r3WMPcpmvgF6BHS8A6NnuCSKR6YH0=
Subject key identifier: 21:37:37:3B:E7:1B:02:DC:5C:5F:09:DD:3B:F7:3C:EA:CC:7B:B6:D2
Authority key identifier: AF:E8:A2:02:97:86:89:BD:8D:5F:5E:57:FC:C1:BF:EB:86:7C:32:2A
Certificate issuer: /CN=afe8a202978689bd8d5f5e57fcc1bfeb867c322a
Certificate serial: 019643D6531740D9F99648658A444C7EC7CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r-iiApeGib2NX15X_MG_64Z8Mio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/f907aa-2acd-4dc7-9f0d-d7b08948f7c7/1/r-iiApeGib2NX15X_MG_64Z8Mio.mft
Manifest number: 14F1
Signing time: Thu 17 Apr 2025 13:00:41 +0000
Manifest this update: Thu 17 Apr 2025 13:00:41 +0000
Manifest next update: Fri 18 Apr 2025 13:00:41 +0000
Files and hashes: 1: r-iiApeGib2NX15X_MG_64Z8Mio.crl (hash: ayHVeyvCWUKsO0Jumk3p62TgpxZqfOcMe2pbjzPUN4U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/f907aa-2acd-4dc7-9f0d-d7b08948f7c7/1/r-iiApeGib2NX15X_MG_64Z8Mio.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/f907aa-2acd-4dc7-9f0d-d7b08948f7c7/1/r-iiApeGib2NX15X_MG_64Z8Mio.mft
rsync://rpki.ripe.net/repository/DEFAULT/r-iiApeGib2NX15X_MG_64Z8Mio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 13:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:d6:53:17:40:d9:f9:96:48:65:8a:44:4c:7e:c7:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afe8a202978689bd8d5f5e57fcc1bfeb867c322a
Validity
Not Before: Apr 17 13:00:41 2025 GMT
Not After : Apr 18 13:00:41 2025 GMT
Subject: CN=2137373be71b02dc5c5f09dd3bf73ceacc7bb6d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:92:32:73:81:7c:69:64:ce:2b:2f:e3:75:a4:
0d:59:1f:1c:d1:a3:d6:21:b1:d4:76:27:50:4c:ab:
22:b6:c2:56:2a:5c:8f:1e:05:ff:c3:ba:b8:d8:5d:
18:d2:44:3a:8c:08:71:df:54:65:16:a8:43:b6:78:
97:f0:2c:30:c4:7f:c8:d4:fe:7f:77:5c:20:ce:86:
7a:9f:2c:90:7e:fa:75:e8:44:1e:e6:1c:8e:ed:b9:
ae:25:62:c9:06:65:89:67:6c:a0:46:4f:75:7f:52:
77:b9:67:93:14:c4:16:72:07:96:4d:14:8e:ce:02:
0e:b2:4f:2c:e0:84:f0:12:b7:7f:1c:7b:a0:83:8e:
aa:b5:c7:e1:64:ae:52:66:4f:62:3b:ff:d4:b9:8c:
a1:44:2d:f9:e4:f7:f9:e5:a3:48:4d:4c:68:c0:6f:
6f:03:4b:53:90:83:fe:bb:bd:26:a0:e1:a1:08:f2:
93:2d:3d:2b:ba:52:68:82:6c:16:17:d7:2e:f9:25:
2a:f5:02:07:91:ec:e3:df:85:f2:0b:66:6f:d5:ac:
82:59:c1:91:8e:cf:2d:a2:0a:c1:23:d5:a0:0b:12:
be:69:73:0a:0a:14:57:06:ab:19:89:a6:24:22:c5:
06:e4:f2:8f:97:73:fd:5a:81:52:f6:60:ab:d5:5c:
87:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:37:37:3B:E7:1B:02:DC:5C:5F:09:DD:3B:F7:3C:EA:CC:7B:B6:D2
X509v3 Authority Key Identifier:
keyid:AF:E8:A2:02:97:86:89:BD:8D:5F:5E:57:FC:C1:BF:EB:86:7C:32:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r-iiApeGib2NX15X_MG_64Z8Mio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f907aa-2acd-4dc7-9f0d-d7b08948f7c7/1/r-iiApeGib2NX15X_MG_64Z8Mio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f907aa-2acd-4dc7-9f0d-d7b08948f7c7/1/r-iiApeGib2NX15X_MG_64Z8Mio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:fc:a7:cd:ac:1b:34:6b:19:42:66:60:32:db:b4:20:d2:58:
ac:6f:ab:06:9d:4e:ff:20:eb:62:8a:0f:af:79:33:85:29:05:
04:82:a3:8c:12:20:61:a9:4d:29:31:40:e4:b2:65:e3:6f:3d:
05:db:6a:d9:1f:d9:ab:18:14:f7:21:6b:62:10:45:08:22:90:
38:c0:43:2b:0a:14:e5:ad:ba:b3:b8:22:a7:07:4f:16:17:98:
a9:71:c7:f6:bd:da:0a:8b:76:09:13:e5:14:8a:b1:30:cf:30:
70:ab:58:08:d4:26:1f:2a:60:14:fe:1f:0f:47:f5:4e:e0:08:
11:a6:01:87:b5:3e:90:89:4d:1b:aa:fe:54:26:b5:6a:e4:48:
ae:62:1e:69:4f:9c:7b:a1:c0:7a:cf:e5:34:7b:c2:e6:45:7a:
82:e4:4a:cf:4d:b3:50:79:ae:e6:91:7a:7a:eb:d2:94:bc:0b:
7b:db:15:e0:b3:c1:64:76:fd:36:6e:83:b2:89:c6:1d:3e:9d:
31:30:9d:31:cc:70:67:b7:1b:d3:aa:6f:6e:69:08:f3:54:fc:
dd:6a:c2:84:6c:ae:19:71:4f:a6:b9:d3:fc:bf:a9:91:63:f0:
21:da:a0:71:dc:fb:2e:76:5c:a8:6e:72:86:f8:25:82:90:60:
d8:85:fa:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:24:24 2025 by rpki-client