Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/a25f89-639b-4f9e-ac9d-7d928c131724/1/8H-pjVIdhMKNrsion3SIu86AAhU.mft
File: 8H-pjVIdhMKNrsion3SIu86AAhU.mft (raw, json)
Hash identifier: /maOv6vXVWy2PLOrBOV0pUIB4NRf6wSh8zVKViHDn94=
Subject key identifier: 83:DD:31:16:86:08:60:B7:94:71:A9:BA:6F:B0:A6:72:50:31:A6:CA
Authority key identifier: F0:7F:A9:8D:52:1D:84:C2:8D:AE:C8:A8:9F:74:88:BB:CE:80:02:15
Certificate issuer: /CN=f07fa98d521d84c28daec8a89f7488bbce800215
Certificate serial: 0196550092ACD1DEA5A7A5E67946F29E50D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8H-pjVIdhMKNrsion3SIu86AAhU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/a25f89-639b-4f9e-ac9d-7d928c131724/1/8H-pjVIdhMKNrsion3SIu86AAhU.mft
Manifest number: 0121
Signing time: Sun 20 Apr 2025 21:00:22 +0000
Manifest this update: Sun 20 Apr 2025 21:00:22 +0000
Manifest next update: Mon 21 Apr 2025 21:00:22 +0000
Files and hashes: 1: 8H-pjVIdhMKNrsion3SIu86AAhU.crl (hash: yV98DHbZliaYDztn/N0votlUJIUNRIL223nMm+6Lxlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/a25f89-639b-4f9e-ac9d-7d928c131724/1/8H-pjVIdhMKNrsion3SIu86AAhU.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/a25f89-639b-4f9e-ac9d-7d928c131724/1/8H-pjVIdhMKNrsion3SIu86AAhU.mft
rsync://rpki.ripe.net/repository/DEFAULT/8H-pjVIdhMKNrsion3SIu86AAhU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 21:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:00:92:ac:d1:de:a5:a7:a5:e6:79:46:f2:9e:50:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f07fa98d521d84c28daec8a89f7488bbce800215
Validity
Not Before: Apr 20 21:00:22 2025 GMT
Not After : Apr 21 21:00:22 2025 GMT
Subject: CN=83dd3116860860b79471a9ba6fb0a6725031a6ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b7:c5:4a:53:6d:09:bd:7f:b3:5c:e3:15:38:
01:09:37:47:c3:41:06:0b:14:88:bb:bc:3a:48:38:
4a:72:f4:14:61:b0:99:99:d2:93:cc:a8:ea:9a:0c:
b9:38:fc:9f:3d:7c:5a:bc:6a:32:4a:93:43:21:b5:
be:19:8e:c4:05:55:c7:1e:7a:06:3a:f0:83:59:41:
5f:46:f9:3b:2f:86:61:4a:a6:d0:b3:47:db:01:10:
f7:9b:0d:6a:3c:07:73:ae:92:8e:f5:8d:e1:61:51:
2a:9c:16:ff:e9:a1:ad:08:59:e9:25:8a:e0:fe:5f:
aa:87:de:f9:d5:cc:f9:28:63:72:cd:f7:08:07:a1:
63:af:5c:b1:db:3d:fd:e3:09:19:a2:90:6b:2f:2b:
2d:cf:1d:3b:67:32:59:54:6b:9d:83:cf:f3:58:0b:
42:04:00:f0:a8:a6:c2:9c:d8:d4:c3:7e:e5:86:ea:
30:eb:c7:78:52:9e:b5:30:11:18:4b:4c:f4:22:c0:
78:29:23:0f:a6:fe:d1:2c:e7:cf:00:8b:f0:3b:8a:
93:cf:b4:5d:66:21:56:dd:f1:f8:d4:37:e6:a1:f9:
d1:9c:44:5e:f6:84:6f:1c:50:43:34:25:05:a7:ad:
f7:ac:cb:90:b1:99:ed:c0:a3:5f:12:87:8b:92:28:
ac:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:DD:31:16:86:08:60:B7:94:71:A9:BA:6F:B0:A6:72:50:31:A6:CA
X509v3 Authority Key Identifier:
keyid:F0:7F:A9:8D:52:1D:84:C2:8D:AE:C8:A8:9F:74:88:BB:CE:80:02:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8H-pjVIdhMKNrsion3SIu86AAhU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a25f89-639b-4f9e-ac9d-7d928c131724/1/8H-pjVIdhMKNrsion3SIu86AAhU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a25f89-639b-4f9e-ac9d-7d928c131724/1/8H-pjVIdhMKNrsion3SIu86AAhU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:d2:17:35:e9:e0:d2:42:8b:21:e2:a0:de:c2:a7:90:60:a0:
fb:39:bf:a8:50:27:49:5a:cc:da:88:aa:3d:bc:a1:8f:54:2d:
5b:38:d8:2d:42:4f:6c:5c:d2:ea:01:c2:51:36:fd:bf:a4:5f:
5d:f2:8e:3e:61:c1:68:8b:42:2f:de:92:de:4d:69:37:f1:66:
51:f0:1b:19:b9:9d:c1:77:a3:8f:a7:b4:32:80:9f:d7:06:cd:
90:de:67:79:2b:1d:70:f1:9d:d1:9f:17:e9:1f:01:e5:7f:3a:
e9:0b:35:a0:0b:fe:c9:de:d2:20:f1:20:43:b4:d5:12:9b:73:
39:0d:9a:57:5b:77:03:63:18:6b:69:26:6c:40:62:57:6d:cf:
e4:42:87:8d:cf:54:df:8c:b2:40:9c:d1:46:1c:3b:ef:45:34:
f9:55:a9:e4:7b:8c:7b:b8:b1:2b:3a:ff:cf:7c:2c:eb:37:82:
30:f7:49:86:16:df:4b:4c:72:1f:e0:ce:a2:ba:80:03:5e:bd:
21:d9:f6:f2:e3:ff:82:f3:37:09:94:e8:06:27:15:6e:43:36:
a4:ed:10:2e:4b:da:8a:b1:80:e5:51:bc:4e:da:98:f4:48:9c:
68:a8:b6:8a:ae:e7:0f:00:33:75:4e:1d:b1:dc:1f:bf:2e:72:
43:f3:4e:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 06:48:43 2025 by rpki-client