Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/b09218-89e7-4859-b32c-60e9b7dc550b/1/D48Gw1SUYI2azOsHCkzRarlf9qY.mft
File: D48Gw1SUYI2azOsHCkzRarlf9qY.mft (raw, json)
Hash identifier: WwfK/DOpS9gQl5DbARbliatTh1eT0PVpnWikxjinYkg=
Subject key identifier: 21:6E:F8:FE:EF:EC:63:48:0D:4D:85:D8:AE:9C:EC:AF:34:B7:5F:7D
Authority key identifier: 0F:8F:06:C3:54:94:60:8D:9A:CC:EB:07:0A:4C:D1:6A:B9:5F:F6:A6
Certificate issuer: /CN=0f8f06c35494608d9acceb070a4cd16ab95ff6a6
Certificate serial: 01965191FCE55A33012B842B789F81326BF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D48Gw1SUYI2azOsHCkzRarlf9qY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/b09218-89e7-4859-b32c-60e9b7dc550b/1/D48Gw1SUYI2azOsHCkzRarlf9qY.mft
Manifest number: 0102
Signing time: Sun 20 Apr 2025 05:00:44 +0000
Manifest this update: Sun 20 Apr 2025 05:00:44 +0000
Manifest next update: Mon 21 Apr 2025 05:00:44 +0000
Files and hashes: 1: D48Gw1SUYI2azOsHCkzRarlf9qY.crl (hash: aUio0iO9dzZH6IfFf2jS9rIk4tFERBZVf5OMrLt0by0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/b09218-89e7-4859-b32c-60e9b7dc550b/1/D48Gw1SUYI2azOsHCkzRarlf9qY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/b09218-89e7-4859-b32c-60e9b7dc550b/1/D48Gw1SUYI2azOsHCkzRarlf9qY.mft
rsync://rpki.ripe.net/repository/DEFAULT/D48Gw1SUYI2azOsHCkzRarlf9qY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 05:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:91:fc:e5:5a:33:01:2b:84:2b:78:9f:81:32:6b:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f8f06c35494608d9acceb070a4cd16ab95ff6a6
Validity
Not Before: Apr 20 05:00:44 2025 GMT
Not After : Apr 21 05:00:44 2025 GMT
Subject: CN=216ef8feefec63480d4d85d8ae9cecaf34b75f7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:99:e9:7c:9e:4d:46:93:54:a2:c7:9b:cd:48:
b0:ca:eb:96:c3:4d:fa:42:6b:ce:44:4f:ea:38:91:
25:44:4c:6f:df:2b:29:f3:ba:90:86:68:cf:1f:29:
d1:fd:29:3c:f0:f4:ed:7d:26:ea:8b:9d:26:49:c2:
87:cf:c3:7d:87:22:71:06:ed:df:8b:92:7d:a5:a4:
7a:8d:2b:13:4a:5c:72:2b:6a:ce:39:04:a4:16:eb:
cf:27:07:c2:72:fb:fb:14:a7:16:bb:a8:82:d1:6a:
77:21:43:8f:6c:5b:67:90:61:2d:30:1c:6c:b6:8d:
66:eb:ff:23:03:46:ed:39:e4:16:bb:13:c7:6c:bb:
bf:b9:4d:1f:22:7d:2d:22:a2:f4:cd:c6:81:d7:70:
84:36:c0:3c:fd:97:bd:9c:2d:1e:3c:80:7a:a8:97:
27:0b:9e:a8:43:c9:ca:da:b8:3d:54:08:8e:10:67:
d2:ad:a5:da:b4:9e:a4:9c:e1:0f:dd:4a:6a:05:84:
ea:5b:ac:9c:a0:d2:79:c8:83:08:32:c0:1f:f8:9c:
c7:c5:21:87:eb:1d:a8:2a:24:d9:41:a3:31:6a:4e:
ee:66:f1:49:e6:15:ec:c6:1e:44:85:01:5d:7f:19:
f2:10:4e:43:37:a1:7e:d1:e0:be:23:4a:b1:4a:78:
6a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:6E:F8:FE:EF:EC:63:48:0D:4D:85:D8:AE:9C:EC:AF:34:B7:5F:7D
X509v3 Authority Key Identifier:
keyid:0F:8F:06:C3:54:94:60:8D:9A:CC:EB:07:0A:4C:D1:6A:B9:5F:F6:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D48Gw1SUYI2azOsHCkzRarlf9qY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/b09218-89e7-4859-b32c-60e9b7dc550b/1/D48Gw1SUYI2azOsHCkzRarlf9qY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/b09218-89e7-4859-b32c-60e9b7dc550b/1/D48Gw1SUYI2azOsHCkzRarlf9qY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:0b:e5:ba:f7:a5:3f:63:34:6f:15:96:a4:bb:81:50:24:81:
e9:3d:da:94:aa:9e:84:03:65:68:ea:28:3b:38:9e:85:bc:9b:
43:43:cb:ea:2c:ae:89:c4:a9:84:8c:58:13:bd:f2:dc:d5:84:
7c:04:a8:9e:cc:e2:76:c7:3b:80:32:24:ac:1f:00:b5:d8:d9:
7a:1a:5b:41:b2:2c:77:5e:64:02:ca:d3:0b:ec:2e:b3:a0:b1:
cf:ab:24:8c:6e:24:85:d6:6b:52:b2:0a:3b:3d:c1:50:a9:b2:
5d:cd:4f:fe:de:9a:b7:90:ed:fc:8c:d2:d4:92:14:b4:64:e4:
62:90:45:e3:c5:89:b0:f4:a3:f8:a9:2d:91:f0:0b:21:a8:5d:
ea:b2:27:51:ba:ea:af:e7:72:61:a6:5b:ae:36:b3:20:ba:ca:
45:85:fc:7d:0c:97:75:69:3e:48:dc:e0:b3:10:35:c6:62:1d:
42:77:8b:8f:cc:8b:34:ef:c1:86:8e:ae:38:d3:34:1d:15:80:
e3:31:2a:99:a4:21:05:b0:4e:3b:3f:85:be:c3:2f:47:c4:cf:
44:62:30:2b:d7:21:b1:ef:17:de:16:6a:22:d2:61:b7:cf:9d:
d0:04:a6:14:7f:89:cc:d0:68:90:6a:8a:2a:31:25:a4:aa:99:
3a:d1:02:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:55:45 2025 by rpki-client