Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft
File: tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft (raw, json)
Hash identifier: Bj1247zKIcj4ZPExtSarR7D87apLGzonNMxA/lF6Dbo=
Subject key identifier: 5E:AE:88:91:F4:1E:79:B2:1D:3D:EA:10:E3:7C:FE:C8:F6:49:9F:FC
Authority key identifier: B6:9A:AE:F1:CE:A1:9F:2F:92:6F:57:09:61:54:5C:FE:4E:D6:9A:F6
Certificate issuer: /CN=b69aaef1cea19f2f926f570961545cfe4ed69af6
Certificate serial: 01965CF101040B52E63A623D7D7626F1EE73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpqu8c6hny-Sb1cJYVRc_k7WmvY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft
Manifest number: 04A1
Signing time: Tue 22 Apr 2025 10:00:20 +0000
Manifest this update: Tue 22 Apr 2025 10:00:20 +0000
Manifest next update: Wed 23 Apr 2025 10:00:20 +0000
Files and hashes: 1: tpqu8c6hny-Sb1cJYVRc_k7WmvY.crl (hash: vmXbjciroAvHeMS7/0N2yMWiaQltUkobfhBuWfs0nO0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft
rsync://rpki.ripe.net/repository/DEFAULT/tpqu8c6hny-Sb1cJYVRc_k7WmvY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 10:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:f1:01:04:0b:52:e6:3a:62:3d:7d:76:26:f1:ee:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b69aaef1cea19f2f926f570961545cfe4ed69af6
Validity
Not Before: Apr 22 10:00:20 2025 GMT
Not After : Apr 23 10:00:20 2025 GMT
Subject: CN=5eae8891f41e79b21d3dea10e37cfec8f6499ffc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:ce:c8:fe:2d:84:e9:af:b9:39:4f:b3:5f:81:
12:45:14:f9:71:cb:e6:30:85:61:70:62:4e:50:a1:
07:81:e7:fa:5a:4a:1a:96:ae:6f:26:c3:c2:16:65:
b4:4e:16:d9:af:c9:7f:dd:df:51:ba:c6:a0:35:40:
76:ba:16:58:7f:81:14:e2:4f:0b:fb:23:c1:64:6e:
f0:5a:60:0d:03:83:3d:77:82:7c:fb:14:e7:c2:4e:
6e:08:36:95:4b:c1:71:8c:42:8c:20:1b:97:36:c4:
6d:e7:3c:65:dd:5a:bd:5d:17:96:da:27:8c:22:0d:
36:f1:1d:8c:ba:11:f3:88:14:d8:c5:31:f2:2b:04:
3c:ca:f5:60:0a:53:53:fe:89:02:6e:30:92:bf:ee:
4d:ab:9d:39:16:fa:00:02:d8:6b:1f:66:e8:0d:7d:
bf:01:d7:6d:5e:de:ec:cf:e3:79:15:26:d1:32:32:
f9:96:e1:6a:dc:fa:cd:a7:60:13:bb:9b:c2:3c:2f:
c2:5b:b0:9e:cb:61:57:72:ac:9c:c4:ea:e4:4d:21:
3c:18:ce:ce:77:1e:6b:ff:73:a4:2a:4b:8b:f8:55:
14:94:3c:c2:9d:b3:8e:b8:bf:55:5e:f1:ac:bc:87:
82:9a:28:35:fe:94:ac:d9:be:41:6d:4c:c5:97:2f:
5f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:AE:88:91:F4:1E:79:B2:1D:3D:EA:10:E3:7C:FE:C8:F6:49:9F:FC
X509v3 Authority Key Identifier:
keyid:B6:9A:AE:F1:CE:A1:9F:2F:92:6F:57:09:61:54:5C:FE:4E:D6:9A:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpqu8c6hny-Sb1cJYVRc_k7WmvY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:98:57:6a:6b:70:7f:22:c6:b0:09:27:8a:76:6f:72:3a:44:
a5:8e:a4:84:01:9a:d8:8c:07:4d:28:41:89:69:3b:5f:d1:21:
67:64:84:b1:54:85:fb:9e:4b:4f:9c:9c:d1:e8:66:f9:dd:91:
49:64:56:bf:55:02:07:80:06:c2:32:8d:6a:db:77:22:57:99:
f2:bc:35:7e:3c:26:c5:54:00:c2:0c:b0:74:d8:e9:94:61:ee:
6a:b6:b3:f5:2f:64:96:5a:ec:f1:43:d1:79:d9:df:ec:f2:db:
3c:1d:b1:09:48:ac:f8:66:c5:cf:d1:33:37:38:7a:94:a2:cd:
0e:58:6d:af:58:f5:9c:e1:8a:e9:6e:dd:be:1e:3f:0b:82:d4:
a0:c5:5c:ce:88:39:f8:f9:cb:39:29:db:e9:89:7b:11:ee:19:
de:e5:35:ad:04:84:1a:bd:52:e7:8a:1d:09:d9:88:40:a3:d7:
df:87:f3:d2:4c:c7:d0:f2:65:c3:59:55:c6:e0:cd:68:a2:5f:
f6:d3:eb:dd:e8:7d:8e:ed:85:65:48:e6:00:78:60:69:78:3c:
18:dc:da:1e:77:42:22:e3:e5:bb:f6:e3:c1:f1:20:b9:34:4b:
8d:5f:b2:81:52:75:b8:2e:6b:f1:de:dd:6f:82:91:9c:d9:81:
20:ac:f9:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 19:42:43 2025 by rpki-client