Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.mft
File: bSsrfHiimiI-pZxnydqj3H7bHnQ.mft (raw, json)
Hash identifier: 4qNLv0DcX6Ytp/DqQwO+HecV+TJ0zS0ds9eJIKFd9bw=
Subject key identifier: E1:D8:78:29:A1:0C:E8:58:6E:DC:0A:B3:28:1F:8E:2A:22:9A:69:75
Authority key identifier: 6D:2B:2B:7C:78:A2:9A:22:3E:A5:9C:67:C9:DA:A3:DC:7E:DB:1E:74
Certificate issuer: /CN=6d2b2b7c78a29a223ea59c67c9daa3dc7edb1e74
Certificate serial: 01964A46B0B5654F85A819BD581E89AE41A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSsrfHiimiI-pZxnydqj3H7bHnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.mft
Manifest number: C2
Signing time: Fri 18 Apr 2025 19:01:08 +0000
Manifest this update: Fri 18 Apr 2025 19:01:08 +0000
Manifest next update: Sat 19 Apr 2025 19:01:08 +0000
Files and hashes: 1: bSsrfHiimiI-pZxnydqj3H7bHnQ.crl (hash: 2OSu/VnvWJFAuSYwQPOKY9zlnipfgk6vKcnqJvTngqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSsrfHiimiI-pZxnydqj3H7bHnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:46:b0:b5:65:4f:85:a8:19:bd:58:1e:89:ae:41:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d2b2b7c78a29a223ea59c67c9daa3dc7edb1e74
Validity
Not Before: Apr 18 19:01:08 2025 GMT
Not After : Apr 19 19:01:08 2025 GMT
Subject: CN=e1d87829a10ce8586edc0ab3281f8e2a229a6975
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:51:7a:7d:5a:60:8d:a4:d9:a0:c4:0b:ba:92:
17:14:4d:01:28:2b:db:95:26:65:07:a3:49:8a:0c:
db:7e:63:fe:cd:bc:fd:39:6a:e1:27:96:96:55:97:
1e:f4:40:10:c7:e8:06:5d:b5:5c:55:94:88:c8:a3:
44:c0:97:7a:ad:dd:2b:3f:af:1d:30:f2:13:e9:dc:
5a:41:8d:0d:10:b5:97:a4:22:25:2b:13:a1:dd:6b:
af:7f:b5:3e:63:8c:e7:9a:d0:bc:c0:63:27:82:5c:
f8:9a:13:7a:60:22:49:44:f4:44:77:6b:c1:6c:bd:
db:a2:c4:2a:4e:7f:99:56:8d:59:a4:46:2c:b5:66:
e9:d5:31:fc:7b:ef:e6:a1:a7:03:6c:af:28:38:2c:
39:b0:d6:41:d1:41:8b:b1:53:5b:3e:19:4c:67:b7:
1f:a3:a0:98:3e:cc:80:49:22:d1:67:71:f7:82:cf:
75:49:e3:99:52:62:51:d4:8c:f3:7c:d9:91:d3:6b:
0b:4b:e1:8b:4a:bb:73:e9:81:48:5e:14:ad:97:af:
93:88:6b:f4:04:91:38:9a:bc:1b:0d:af:bf:8b:7c:
ec:ef:99:22:30:c8:66:eb:5c:77:5d:45:a9:f8:89:
59:b2:c8:16:5e:01:c4:a1:fe:fd:43:e7:04:ea:5f:
e3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:D8:78:29:A1:0C:E8:58:6E:DC:0A:B3:28:1F:8E:2A:22:9A:69:75
X509v3 Authority Key Identifier:
keyid:6D:2B:2B:7C:78:A2:9A:22:3E:A5:9C:67:C9:DA:A3:DC:7E:DB:1E:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSsrfHiimiI-pZxnydqj3H7bHnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:37:61:d9:94:fd:76:13:60:3e:ef:cc:ae:57:6a:e3:3f:7e:
ec:07:30:de:a2:20:f4:9c:9c:e6:93:77:df:ff:7d:c4:62:31:
58:8d:da:db:91:4f:d2:72:ff:b9:08:39:59:55:34:64:f5:3d:
91:e0:77:f3:3c:74:38:ea:4b:27:90:56:5f:23:de:e5:d9:28:
00:6f:0d:f4:38:4c:c9:46:2c:ec:9e:5c:2d:b0:26:05:3c:22:
2c:8e:10:65:14:cc:50:ab:dd:9b:a1:fa:0f:a1:f3:37:d1:1d:
a6:da:67:18:0d:98:1d:9b:a1:af:0f:21:56:aa:5f:d6:d9:c5:
cc:7e:ec:60:2b:fa:ef:b6:fc:17:6f:0d:1c:e3:9d:d5:5e:85:
d8:03:2a:c6:19:58:34:11:5f:3a:0b:06:33:02:43:0c:6d:dd:
e8:c7:46:d1:c9:8f:da:fc:e7:1a:b8:d1:2c:8f:d6:71:ff:cb:
cc:2d:32:b1:c2:51:71:4c:d2:c5:fe:51:bb:ac:51:c7:59:55:
d5:f1:39:fd:d5:b1:c5:97:10:4f:7f:27:1f:78:85:87:9a:e1:
85:df:b0:25:30:b5:7a:ea:28:22:83:87:6b:f2:8f:f5:08:bc:
5f:be:47:1c:54:05:48:d2:41:ad:f8:a5:36:99:75:f7:c1:ab:
77:43:f0:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 01:34:22 2025 by rpki-client