Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.mft
File: FHVOhj0RfOYhDylUYajGqgQ8bIA.mft (raw, json)
Hash identifier: 9JqVI7YFXcQRfcb/dcPd2+kiDWIREjqoCuyZ267NQ7s=
Subject key identifier: BB:F7:4B:41:DA:E3:3F:A2:C8:F3:F2:87:96:ED:27:1B:DE:80:5E:FA
Authority key identifier: 14:75:4E:86:3D:11:7C:E6:21:0F:29:54:61:A8:C6:AA:04:3C:6C:80
Certificate issuer: /CN=14754e863d117ce6210f295461a8c6aa043c6c80
Certificate serial: 019655A610E11ACDC8F86DE5D5D8DCEAFB3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FHVOhj0RfOYhDylUYajGqgQ8bIA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.mft
Manifest number: 14FA
Signing time: Mon 21 Apr 2025 00:01:08 +0000
Manifest this update: Mon 21 Apr 2025 00:01:08 +0000
Manifest next update: Tue 22 Apr 2025 00:01:08 +0000
Files and hashes: 1: FHVOhj0RfOYhDylUYajGqgQ8bIA.crl (hash: 7enEOxqzBSuXylkPjMdUVrzOrBT9s0gK7Vqj+MItCsE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.mft
rsync://rpki.ripe.net/repository/DEFAULT/FHVOhj0RfOYhDylUYajGqgQ8bIA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 00:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:a6:10:e1:1a:cd:c8:f8:6d:e5:d5:d8:dc:ea:fb:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14754e863d117ce6210f295461a8c6aa043c6c80
Validity
Not Before: Apr 21 00:01:08 2025 GMT
Not After : Apr 22 00:01:08 2025 GMT
Subject: CN=bbf74b41dae33fa2c8f3f28796ed271bde805efa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:38:f6:32:a1:9b:f6:14:40:2a:5f:4e:0a:b1:
d9:82:32:af:d8:cc:56:e8:1e:51:0a:1e:23:22:d4:
4b:eb:6f:ff:76:e7:3a:2d:9b:4d:48:16:71:38:49:
ff:c5:ff:c4:ce:68:e7:d9:eb:61:bc:6a:0b:f5:0f:
b1:ee:af:99:73:06:7c:1b:95:67:69:42:dc:2e:7d:
3d:87:4c:63:93:ac:16:ce:60:49:ea:95:77:2f:5d:
42:c7:01:d0:7b:d1:61:d1:7d:36:77:d9:27:19:f2:
bf:d4:a2:53:43:c5:70:15:de:0e:29:10:ac:fd:dd:
3c:45:d8:4b:5f:c6:2a:88:ce:3a:30:80:93:f7:71:
23:4f:76:06:04:7b:7f:aa:c2:fb:b8:a0:21:1b:d6:
60:cc:e8:ab:20:a5:94:df:3c:b9:d4:59:df:77:a1:
95:ad:7e:a2:b3:f5:77:18:88:82:c5:99:c8:46:54:
21:26:ef:ec:2a:98:5b:7a:1d:67:a3:06:36:bd:8b:
84:c6:1a:69:36:7e:12:4d:56:8f:c4:84:b6:66:45:
4f:a3:17:a9:a1:9f:06:f6:6c:90:3a:a0:79:8a:08:
f2:2e:9d:90:81:ad:a8:83:a5:5c:4d:d8:53:31:70:
2c:fd:44:05:2a:d5:19:62:b8:c3:df:4f:fe:c2:4f:
4d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:F7:4B:41:DA:E3:3F:A2:C8:F3:F2:87:96:ED:27:1B:DE:80:5E:FA
X509v3 Authority Key Identifier:
keyid:14:75:4E:86:3D:11:7C:E6:21:0F:29:54:61:A8:C6:AA:04:3C:6C:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FHVOhj0RfOYhDylUYajGqgQ8bIA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/d9c3c0-2eaf-4326-8ee2-a7d80e600844/1/FHVOhj0RfOYhDylUYajGqgQ8bIA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:e9:e5:64:82:8e:10:5f:4b:2c:f9:c7:0a:c4:43:4f:7d:e2:
78:58:7a:b9:7e:ed:29:b4:d1:24:15:92:84:00:5a:41:83:41:
3e:1e:5e:f2:0c:d9:5a:16:b7:38:74:fe:65:fb:d1:3c:5c:e6:
12:ef:24:c8:ee:f7:47:2f:12:5b:72:7b:d5:50:d1:58:32:12:
2b:0e:5e:a8:75:bf:f7:14:08:3c:8d:24:c6:8b:c4:f5:6b:5c:
2c:6b:04:23:26:d6:0b:41:35:7d:21:80:a5:bf:fb:98:71:61:
ef:57:95:75:d1:22:81:95:ec:9e:1a:27:40:0e:81:e8:e0:d4:
d9:dc:36:55:34:d9:49:be:c6:0a:02:16:76:7c:70:e3:e6:fd:
48:9d:67:e6:82:81:18:91:bf:22:98:de:90:f6:30:af:ad:cd:
ec:2f:0a:2a:35:92:1e:3e:61:82:2d:2a:69:58:cf:75:e3:2f:
e4:e7:21:81:3a:95:cf:ee:51:56:92:c4:bb:92:ac:f6:71:07:
8b:51:29:f6:c6:b3:17:19:9d:15:30:09:cc:9b:b7:ad:c7:bd:
10:4e:13:2f:de:00:f6:68:19:d0:68:29:01:11:7c:b0:42:8d:
ed:ac:d6:d3:45:9b:f7:38:33:28:d1:94:82:db:f7:df:3c:a5:
30:81:e3:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 07:19:05 2025 by rpki-client