Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.mft
File: rDWoN7KvW2-xjKNdFguamhgiBO8.mft (raw, json)
Hash identifier: IM4fT0VCmFGOKcxSzHKlQweM0V03f/bLhzClD/idZbE=
Subject key identifier: 78:2B:A9:9A:D9:3F:36:05:96:4B:A4:5E:5D:3B:DA:84:14:E4:73:5A
Authority key identifier: AC:35:A8:37:B2:AF:5B:6F:B1:8C:A3:5D:16:0B:9A:9A:18:22:04:EF
Certificate issuer: /CN=ac35a837b2af5b6fb18ca35d160b9a9a182204ef
Certificate serial: 0196591575395C1C11E607DAA6108B7A600B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rDWoN7KvW2-xjKNdFguamhgiBO8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.mft
Manifest number: 0FE9
Signing time: Mon 21 Apr 2025 16:01:40 +0000
Manifest this update: Mon 21 Apr 2025 16:01:40 +0000
Manifest next update: Tue 22 Apr 2025 16:01:40 +0000
Files and hashes: 1: rDWoN7KvW2-xjKNdFguamhgiBO8.crl (hash: aXJT+hD0KDEKJnmI4h+A8wN57O+PYxl+LfMpHgz24SI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rDWoN7KvW2-xjKNdFguamhgiBO8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:15:75:39:5c:1c:11:e6:07:da:a6:10:8b:7a:60:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac35a837b2af5b6fb18ca35d160b9a9a182204ef
Validity
Not Before: Apr 21 16:01:40 2025 GMT
Not After : Apr 22 16:01:40 2025 GMT
Subject: CN=782ba99ad93f3605964ba45e5d3bda8414e4735a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:72:84:88:ec:4d:21:58:b4:40:5f:a4:58:5c:
87:c5:dd:11:ff:4b:65:50:0b:94:aa:9c:e5:01:e1:
7e:f8:b1:d7:5f:36:53:e7:11:05:00:51:ff:69:f1:
2e:c0:c3:42:4e:37:38:04:70:7a:da:9a:1c:34:e8:
99:db:e8:98:c8:6c:f8:8a:26:fe:18:73:2a:3a:4d:
ab:6a:ed:44:9b:ba:60:77:45:9e:de:e0:74:25:ab:
28:53:10:43:9e:6a:7a:3c:4f:03:95:e8:de:fb:9b:
54:ba:50:2e:10:cd:1c:63:07:11:4a:6f:6d:04:3f:
10:66:e3:4d:34:0c:45:ce:ab:3d:1d:b2:92:9a:ff:
8e:2e:42:1c:e2:04:08:c6:ed:3f:a4:d9:3e:9a:2d:
8d:73:52:11:a8:fd:d6:a7:a6:4b:94:79:0d:bc:de:
c5:f6:cf:98:bb:5c:0c:c4:bf:37:d5:7a:bc:e7:c5:
b8:95:32:49:2b:80:2d:ca:a0:b4:cd:c3:4a:cf:f2:
af:93:64:0a:0b:bd:df:20:66:49:9f:d2:37:25:9e:
ee:e2:c5:a3:6c:ba:15:02:00:8f:51:55:c1:d6:fb:
3e:64:7b:22:a7:00:db:ec:bb:98:6e:24:86:92:15:
24:8a:a9:d3:60:7e:ad:06:ab:b9:d2:6c:2f:50:fe:
d4:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:2B:A9:9A:D9:3F:36:05:96:4B:A4:5E:5D:3B:DA:84:14:E4:73:5A
X509v3 Authority Key Identifier:
keyid:AC:35:A8:37:B2:AF:5B:6F:B1:8C:A3:5D:16:0B:9A:9A:18:22:04:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rDWoN7KvW2-xjKNdFguamhgiBO8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:f3:13:8b:b4:2e:28:8a:57:45:48:db:36:e4:dc:72:47:e7:
bc:bf:ce:c1:bf:b1:c3:da:12:b4:f9:0d:d2:ce:68:e6:c6:a4:
9c:4b:fa:14:42:de:68:cb:42:22:b2:43:ef:c9:73:1c:90:4b:
62:3c:b4:b1:72:15:d1:0f:e5:82:67:21:7a:f0:25:a3:dd:bd:
51:4a:44:9c:76:54:41:af:d6:ed:df:24:e1:44:a3:27:c9:69:
f0:95:35:75:18:5d:8d:e1:cb:ff:9e:98:13:11:d6:30:80:02:
64:b4:1d:d9:1c:4e:c4:42:c7:cc:80:01:ce:1e:b7:5c:ec:71:
eb:4e:a6:65:5d:55:82:84:41:83:a8:5a:9d:14:35:e6:91:1a:
bc:d1:18:27:b5:6c:61:a9:5b:78:49:fe:c8:15:16:44:20:09:
22:5a:cb:d8:9b:8a:7c:f4:8e:d2:d4:7e:b8:f3:16:db:6f:07:
58:2a:90:ad:93:e6:d0:0a:14:42:f3:8c:e2:7d:51:92:12:ee:
aa:31:18:ca:09:9e:87:59:e9:8f:6c:ab:6b:c7:5a:67:5f:12:
6d:9e:ac:27:0a:ec:20:88:19:87:3b:95:ba:c5:48:4d:64:1e:
57:c8:3e:01:0f:0b:09:1d:91:75:94:25:63:83:b2:17:6c:cf:
d1:f9:54:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:22:24 2025 by rpki-client