Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.mft
File: JAy7mUeWHigo2EdLysoem5FVZWA.mft (raw, json)
Hash identifier: Ku0dPK40i67ELB7Ww3XcPtFzxMPBJyoThe+ZbS4CIZI=
Subject key identifier: 84:8D:7D:78:0A:7A:DA:F9:33:42:A2:6E:08:32:E8:CC:FB:E3:E9:BA
Authority key identifier: 24:0C:BB:99:47:96:1E:28:28:D8:47:4B:CA:CA:1E:9B:91:55:65:60
Certificate issuer: /CN=240cbb9947961e2828d8474bcaca1e9b91556560
Certificate serial: 01958B84909F4CA8A2279A06F376F22D112F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JAy7mUeWHigo2EdLysoem5FVZWA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.mft
Manifest number: 11D1
Signing time: Wed 12 Mar 2025 18:01:15 +0000
Manifest this update: Wed 12 Mar 2025 18:01:15 +0000
Manifest next update: Thu 13 Mar 2025 18:01:15 +0000
Files and hashes: 1: JAy7mUeWHigo2EdLysoem5FVZWA.crl (hash: dHi0gkG9P+EtJhqK5NfnL3vb5gDX+Ksc+/Q4na86MYI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.mft
rsync://rpki.ripe.net/repository/DEFAULT/JAy7mUeWHigo2EdLysoem5FVZWA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 18:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:84:90:9f:4c:a8:a2:27:9a:06:f3:76:f2:2d:11:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=240cbb9947961e2828d8474bcaca1e9b91556560
Validity
Not Before: Mar 12 18:01:15 2025 GMT
Not After : Mar 13 18:01:15 2025 GMT
Subject: CN=848d7d780a7adaf93342a26e0832e8ccfbe3e9ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b2:3e:34:52:b9:4c:7a:3a:79:88:76:d9:4c:
55:17:68:72:c4:f6:63:ea:5e:2a:3f:3f:30:dc:bf:
17:b2:d3:e1:7f:37:57:50:24:4e:db:e8:eb:60:0c:
ad:af:5b:99:1d:4c:92:2c:83:42:c4:b2:b3:80:00:
9c:82:78:28:3d:07:31:b9:e8:34:29:18:0a:34:1b:
41:5b:c5:9e:09:a7:4e:ea:31:0a:fd:06:24:08:9e:
bc:f8:bd:f2:2a:43:76:40:7c:1a:93:07:77:ea:1f:
36:95:28:34:4b:82:e2:ce:b3:6f:c6:ac:c2:5a:f7:
c2:0d:59:2f:0c:fd:95:84:17:88:08:e4:2b:84:19:
26:11:e2:aa:03:cc:a5:6d:46:0e:bb:55:a1:9b:60:
57:bc:84:e1:84:87:87:54:95:7b:5c:fd:a9:46:a4:
35:fc:6c:3f:e2:30:91:f6:d3:0b:cb:bf:21:b4:67:
b4:1e:c2:c6:fc:1a:b2:87:e9:8d:8b:a0:ab:6b:0d:
b1:da:04:1c:35:f1:6a:14:6a:80:4d:38:71:2e:d3:
bc:6f:ce:73:fb:a2:f2:5a:a7:0e:d1:8c:7f:42:f2:
2b:31:dc:45:23:5a:47:99:17:fe:9d:40:a7:58:e9:
13:db:24:69:7c:87:3c:e2:de:81:9d:b2:74:71:23:
93:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:8D:7D:78:0A:7A:DA:F9:33:42:A2:6E:08:32:E8:CC:FB:E3:E9:BA
X509v3 Authority Key Identifier:
keyid:24:0C:BB:99:47:96:1E:28:28:D8:47:4B:CA:CA:1E:9B:91:55:65:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JAy7mUeWHigo2EdLysoem5FVZWA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:cd:f0:17:0a:a9:e4:cb:ac:9a:25:22:d0:84:94:4e:08:f2:
db:3a:4a:bc:53:b8:7b:d8:71:c5:fc:ea:34:a0:e6:b6:57:df:
ca:5e:91:71:1f:5b:60:d5:4b:e5:7a:e9:19:be:ba:1c:ab:a4:
2e:48:89:79:d7:fb:7c:84:23:44:4d:87:b6:bb:20:50:26:3c:
bc:c7:0e:1b:21:44:bf:08:d2:2f:64:51:23:7d:f6:68:be:e2:
fb:ba:a4:27:e9:77:fb:96:e2:c6:0e:9b:2d:2b:93:3f:23:49:
8b:88:e6:0d:33:3d:20:47:f3:0a:3b:a1:3c:b3:ef:f6:90:a3:
a4:5a:23:04:2f:ed:4a:59:a7:2a:2d:ac:df:fd:83:93:ac:c6:
c0:48:1f:91:35:1c:f5:31:f8:cb:eb:4e:cc:06:eb:c9:6a:fc:
1d:db:99:6d:6a:67:25:90:8d:64:7f:09:19:9d:b1:ac:e3:c4:
2d:2b:dc:7c:bb:17:4d:e5:09:23:a6:0c:fd:c0:66:4e:3d:37:
34:23:55:8b:7c:d3:20:19:b0:5b:2f:c6:ec:2f:15:fe:10:21:
5e:c1:37:80:f0:45:6d:fa:b1:b3:fd:4d:b9:76:87:ee:13:e4:
b6:b3:23:34:a3:a5:c6:9e:69:08:03:f8:8e:1e:a5:97:fb:f2:
58:44:fa:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:30:49 2025 by rpki-client