Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/3b222e-a4b3-4fbe-839f-363a558e19be/1/rTaQk6MtG34Ou-MkRRxY10iuzUI.mft
File: rTaQk6MtG34Ou-MkRRxY10iuzUI.mft (raw, json)
Hash identifier: 9Hud+R4MARO19ucQ6MKwuzSUJrFV/hqp+airhdCXAmk=
Subject key identifier: 06:4C:2B:60:9E:9B:01:A8:2F:7C:9B:E0:0E:1F:3F:6B:C0:C0:C2:AC
Authority key identifier: AD:36:90:93:A3:2D:1B:7E:0E:BB:E3:24:45:1C:58:D7:48:AE:CD:42
Certificate issuer: /CN=ad369093a32d1b7e0ebbe324451c58d748aecd42
Certificate serial: 019646A07360E2FF74B2188F130A853FA4A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rTaQk6MtG34Ou-MkRRxY10iuzUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/3b222e-a4b3-4fbe-839f-363a558e19be/1/rTaQk6MtG34Ou-MkRRxY10iuzUI.mft
Manifest number: 040C
Signing time: Fri 18 Apr 2025 02:00:42 +0000
Manifest this update: Fri 18 Apr 2025 02:00:42 +0000
Manifest next update: Sat 19 Apr 2025 02:00:42 +0000
Files and hashes: 1: rTaQk6MtG34Ou-MkRRxY10iuzUI.crl (hash: ih49jDqOmGd1/CzyRJvUuddY8d0vFxcXkxnu2pE7NFc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/3b222e-a4b3-4fbe-839f-363a558e19be/1/rTaQk6MtG34Ou-MkRRxY10iuzUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/3b222e-a4b3-4fbe-839f-363a558e19be/1/rTaQk6MtG34Ou-MkRRxY10iuzUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/rTaQk6MtG34Ou-MkRRxY10iuzUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:46:a0:73:60:e2:ff:74:b2:18:8f:13:0a:85:3f:a4:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad369093a32d1b7e0ebbe324451c58d748aecd42
Validity
Not Before: Apr 18 02:00:42 2025 GMT
Not After : Apr 19 02:00:42 2025 GMT
Subject: CN=064c2b609e9b01a82f7c9be00e1f3f6bc0c0c2ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:05:68:70:cb:d8:ad:13:6a:51:e4:ce:dd:ba:
e6:5c:a0:b0:a4:bf:c6:f1:7e:ac:7e:ef:1b:2c:be:
2c:b0:ea:46:65:cf:7a:f8:be:ba:f8:a3:54:3b:85:
34:0f:08:f7:73:7a:ff:4e:f6:c8:9a:f6:76:f3:51:
6c:c8:18:9a:62:28:31:a0:7f:79:dc:35:73:e5:e6:
18:7e:7f:78:65:8a:39:03:45:3e:c5:e5:3e:ce:c5:
54:18:f6:06:e6:9a:cf:d7:a8:e7:d2:6b:71:4f:c5:
dd:18:6d:a9:a3:20:49:69:06:91:d2:fe:a7:b1:d0:
48:f3:dc:03:db:f4:77:c5:fc:99:95:7e:8e:02:b4:
35:60:12:83:bf:e6:90:b5:39:77:6f:11:2e:1e:a1:
52:72:11:84:92:db:d9:03:21:d2:ee:d7:95:6e:7d:
5c:96:0c:11:0c:92:7e:2f:29:c1:76:46:6e:77:b7:
ab:e8:a0:b1:f9:15:21:a3:b9:27:7e:15:bd:7d:f0:
96:a3:2c:9c:ee:81:89:63:77:e1:b4:44:10:ac:ce:
49:7c:6c:cb:48:27:fb:e1:98:a5:db:53:ee:49:52:
52:7c:39:d7:e4:7f:c2:a8:9e:da:55:f7:bc:f9:04:
78:61:ee:70:b0:ed:0a:51:99:bc:a1:ce:8c:9e:03:
46:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:4C:2B:60:9E:9B:01:A8:2F:7C:9B:E0:0E:1F:3F:6B:C0:C0:C2:AC
X509v3 Authority Key Identifier:
keyid:AD:36:90:93:A3:2D:1B:7E:0E:BB:E3:24:45:1C:58:D7:48:AE:CD:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rTaQk6MtG34Ou-MkRRxY10iuzUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/3b222e-a4b3-4fbe-839f-363a558e19be/1/rTaQk6MtG34Ou-MkRRxY10iuzUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/3b222e-a4b3-4fbe-839f-363a558e19be/1/rTaQk6MtG34Ou-MkRRxY10iuzUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:88:89:f5:1c:f2:0c:1c:71:2e:62:54:c6:b3:ca:62:3b:c9:
ab:d6:a6:68:35:ba:42:40:a4:cc:74:28:1a:1b:5b:a9:fe:ad:
e6:d6:0c:08:ea:2c:44:78:6e:f0:e0:3a:80:74:d3:f8:ae:64:
16:b9:29:21:f5:2d:80:69:b9:23:93:06:0c:bc:cd:c3:86:c1:
e4:17:f1:9f:88:96:d1:d1:c0:61:bf:cb:fd:1a:b7:52:be:67:
f8:f4:9d:b5:04:d5:5f:9f:ea:d2:35:5f:5f:d4:a8:62:23:00:
dd:a8:46:ae:e3:40:ac:5b:17:e5:fb:a7:24:1b:a7:c9:0a:1b:
8c:8b:c3:2d:fb:05:a5:16:cb:2d:b5:d8:aa:ac:90:89:5d:47:
0c:05:00:3b:5c:9b:64:2e:eb:90:74:75:90:90:c7:7d:f2:17:
1c:fc:35:a5:74:ff:84:a0:20:1b:57:4c:60:f8:75:8a:6c:b5:
88:bf:12:c2:9c:d2:92:04:e3:ba:6f:90:f7:b7:3c:d3:79:5d:
c9:04:93:a0:15:dc:7d:e0:b3:52:f0:ed:63:63:df:04:34:23:
f8:09:48:5c:00:3e:a2:31:25:60:ea:55:7e:32:bf:38:63:5a:
6b:6d:ae:d8:5d:69:8f:82:1d:2a:47:fc:48:ea:88:de:eb:b6:
37:ca:1c:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 11:30:16 2025 by rpki-client