Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
File: 04BE23ZiygAUgai9swt6vRi86ao.mft (raw, json)
Hash identifier: lHamspGQyVT9/teTyK7/3UPBc0zP7Knojq6lpo9Tr5k=
Subject key identifier: A1:47:22:CE:43:BA:E5:22:98:81:4E:B0:CE:C8:AA:3E:53:59:9C:ED
Authority key identifier: D3:80:44:DB:76:62:CA:00:14:81:A8:BD:B3:0B:7A:BD:18:BC:E9:AA
Certificate issuer: /CN=d38044db7662ca001481a8bdb30b7abd18bce9aa
Certificate serial: 01958EF325F3B98155C893481B08EABDDD2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04BE23ZiygAUgai9swt6vRi86ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
Manifest number: 0F5A
Signing time: Thu 13 Mar 2025 10:00:54 +0000
Manifest this update: Thu 13 Mar 2025 10:00:54 +0000
Manifest next update: Fri 14 Mar 2025 10:00:54 +0000
Files and hashes: 1: 04BE23ZiygAUgai9swt6vRi86ao.crl (hash: Bv/FRKzPyouiETuakhrqhf9qtcj26B3uGzH5hNk3jV0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
rsync://rpki.ripe.net/repository/DEFAULT/04BE23ZiygAUgai9swt6vRi86ao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:f3:25:f3:b9:81:55:c8:93:48:1b:08:ea:bd:dd:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d38044db7662ca001481a8bdb30b7abd18bce9aa
Validity
Not Before: Mar 13 10:00:54 2025 GMT
Not After : Mar 14 10:00:54 2025 GMT
Subject: CN=a14722ce43bae52298814eb0cec8aa3e53599ced
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:dd:21:8d:82:37:86:4a:48:2e:6b:04:14:62:
1e:8f:ef:d5:ca:38:54:3f:fa:ab:82:71:c2:8e:6a:
5a:5f:f2:39:91:fd:ab:5e:ef:79:41:da:8e:74:ed:
1c:3f:89:16:2d:af:d8:b2:f3:ac:20:75:b1:c3:94:
bb:fd:31:f4:0d:56:c3:18:5d:7e:d9:6a:c7:58:5c:
8a:ef:99:16:86:0b:51:d8:3b:25:5d:af:01:f5:7f:
1b:ed:2f:1d:c2:82:e3:04:6b:ef:08:6f:7c:c1:07:
3c:a9:96:2c:78:ed:e5:61:c0:f3:1a:c0:a2:92:42:
a9:20:9d:69:97:4d:2c:b2:b6:10:07:9c:7b:ec:01:
3d:ec:19:16:be:a1:d9:f5:3c:bf:d8:bf:fa:1e:b0:
4e:17:4f:5a:e3:ca:66:44:25:ad:15:08:b8:cb:c6:
74:1d:27:5e:5a:f9:de:86:b8:53:44:be:dd:af:99:
34:1a:55:78:f7:28:2f:58:e0:7a:5f:a3:2b:ce:9d:
34:d4:78:a6:e9:07:2d:ac:1d:b1:df:b5:8d:2f:44:
dc:f3:a7:00:43:11:04:a3:ba:0e:a7:a6:cf:99:b5:
69:48:bc:4a:eb:87:14:f1:12:c5:b7:78:85:39:24:
87:b2:08:22:6d:22:a6:12:ce:a2:0d:09:ec:86:26:
58:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:47:22:CE:43:BA:E5:22:98:81:4E:B0:CE:C8:AA:3E:53:59:9C:ED
X509v3 Authority Key Identifier:
keyid:D3:80:44:DB:76:62:CA:00:14:81:A8:BD:B3:0B:7A:BD:18:BC:E9:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04BE23ZiygAUgai9swt6vRi86ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/14e977-346f-44ad-b0df-0a10b881c3ac/1/04BE23ZiygAUgai9swt6vRi86ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:a7:9a:bc:ad:56:cf:99:2c:18:5f:e9:64:59:26:59:fe:a9:
72:43:4b:e5:94:86:77:6a:a8:77:5e:32:a7:bf:fb:42:7d:a1:
85:e9:1e:bd:45:74:ee:32:a4:c2:ff:08:7d:3d:66:2c:97:90:
67:b0:d6:25:4a:99:d7:1b:19:46:1c:e0:fa:18:b2:e1:11:e1:
73:18:3b:f2:7d:38:08:8e:e7:71:6f:3c:8a:b5:86:ca:1c:a4:
ec:33:e5:b6:c5:e6:88:1d:4e:6e:d1:0c:d9:13:2b:f7:de:37:
f5:69:9a:51:4c:92:02:76:26:bd:51:14:62:4e:68:18:85:46:
60:a6:64:9a:98:d6:ea:65:19:a8:bc:9e:a4:33:b4:8e:76:8f:
6e:e0:32:07:b7:3d:e3:77:56:5b:1f:d4:78:1a:0a:45:41:35:
56:bc:15:c4:e9:1d:20:bb:c2:85:ac:05:ce:34:b2:4e:c1:62:
fb:f8:f9:e5:7f:4d:0d:74:2e:89:f3:a4:23:06:71:f6:43:84:
3d:47:01:64:07:b7:1a:29:11:67:6f:77:d8:25:c8:a3:18:66:
ce:1a:a1:ef:21:87:3e:4c:71:0a:4a:e0:42:bb:54:e0:16:cb:
90:b0:f8:3a:0c:0b:95:51:c7:3f:16:82:7d:d9:63:c1:1a:c1:
cd:3e:63:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:36:08 2025 by rpki-client