Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.mft
File: Iycd4-AQWavm0aWTxKJP9uGI1k8.mft (raw, json)
Hash identifier: ujvQR82dX36JA2N4Y2o/qEFlIRbD4DYrTWbIBHa/tQg=
Subject key identifier: A2:CF:F6:B9:83:43:29:FC:A2:5F:5D:AB:BA:BF:F7:E2:C7:A9:BC:73
Authority key identifier: 23:27:1D:E3:E0:10:59:AB:E6:D1:A5:93:C4:A2:4F:F6:E1:88:D6:4F
Certificate issuer: /CN=23271de3e01059abe6d1a593c4a24ff6e188d64f
Certificate serial: 01958C29327E6F3190B5D62584DAD0DC3995
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iycd4-AQWavm0aWTxKJP9uGI1k8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.mft
Manifest number: 0C96
Signing time: Wed 12 Mar 2025 21:01:04 +0000
Manifest this update: Wed 12 Mar 2025 21:01:04 +0000
Manifest next update: Thu 13 Mar 2025 21:01:04 +0000
Files and hashes: 1: Iycd4-AQWavm0aWTxKJP9uGI1k8.crl (hash: 4uaw/QHcZ+uZMiuf+GkJ00hPwFe0D1en+d5rN4BjppM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Iycd4-AQWavm0aWTxKJP9uGI1k8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:29:32:7e:6f:31:90:b5:d6:25:84:da:d0:dc:39:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23271de3e01059abe6d1a593c4a24ff6e188d64f
Validity
Not Before: Mar 12 21:01:04 2025 GMT
Not After : Mar 13 21:01:04 2025 GMT
Subject: CN=a2cff6b9834329fca25f5dabbabff7e2c7a9bc73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:50:9f:65:b8:84:b6:26:e4:fd:66:6f:2e:50:
b7:e2:c6:69:18:95:f7:e5:f7:ab:5a:e5:db:2a:21:
59:fb:9b:c0:3e:85:b2:32:19:19:d9:7a:7c:20:18:
d4:d2:47:b6:86:35:8b:21:5d:d1:94:89:a1:c9:7b:
95:a8:3e:75:cc:3b:92:5f:78:0f:3a:19:cc:83:73:
f3:af:6d:3e:ab:cf:51:d7:4f:70:ee:67:04:50:8b:
f5:ee:bf:8a:a8:d4:83:84:94:14:7f:3a:6a:f4:3f:
d3:88:75:3c:bd:48:49:e3:0b:e1:3e:76:8d:18:1e:
36:30:bb:de:19:90:35:6a:ba:e5:eb:0f:73:ee:66:
7a:c6:7a:bf:d5:ed:0e:1c:5e:fd:8e:19:16:ea:46:
bc:61:23:f0:07:6b:45:31:80:2d:87:48:15:ac:6c:
68:aa:7a:60:1a:ee:0f:f9:a7:33:f9:c3:45:10:7e:
07:24:18:df:f0:03:e7:4e:fc:9b:54:da:7d:b0:97:
dc:89:75:8a:e1:f3:71:dd:4d:6c:f5:1a:a7:0f:a4:
d1:4b:9d:55:58:ca:ca:3b:0c:c9:eb:47:54:4d:b0:
cf:d7:e2:38:c3:b2:74:40:b5:e0:89:17:f4:31:56:
8f:a5:ca:71:9e:6f:fb:f8:8d:3c:3a:d7:af:47:88:
5e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:CF:F6:B9:83:43:29:FC:A2:5F:5D:AB:BA:BF:F7:E2:C7:A9:BC:73
X509v3 Authority Key Identifier:
keyid:23:27:1D:E3:E0:10:59:AB:E6:D1:A5:93:C4:A2:4F:F6:E1:88:D6:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iycd4-AQWavm0aWTxKJP9uGI1k8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3f7a06-2b45-4a0b-ba6c-958c376506ed/1/Iycd4-AQWavm0aWTxKJP9uGI1k8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:6e:a7:13:20:e5:b3:ff:2c:c9:53:84:41:0e:3c:fa:e6:03:
c7:5c:37:82:fb:26:b2:35:17:7d:95:d4:dc:c4:56:50:93:c0:
d3:53:c2:f0:a5:ba:4d:de:39:c2:ce:4d:4c:b8:d9:84:fa:46:
9d:c8:e3:df:88:68:a6:ff:7b:8a:0e:83:6b:7a:b5:20:41:0f:
00:13:1d:d1:fb:c8:79:cf:dd:39:e0:32:bf:c4:32:76:ec:31:
64:a9:f7:38:1f:88:77:e9:0f:96:25:54:af:1a:fa:a4:24:eb:
13:fe:87:b8:95:65:8c:9d:a8:d0:84:d9:e1:18:27:bb:13:ee:
99:71:d6:45:d0:44:24:9f:20:cc:99:e9:2b:63:42:cc:31:98:
a8:c9:44:00:53:04:07:e5:10:fc:99:90:c7:04:c7:1e:c2:b9:
c5:ab:f2:91:e0:ef:99:f1:37:9f:01:6d:64:e9:b1:1f:1f:ca:
a6:65:e1:47:62:02:6a:cd:00:84:8f:1d:22:14:f0:62:ce:40:
09:09:9d:3a:b6:48:a2:c1:f9:8b:bd:b2:f9:46:ae:69:77:29:
56:73:1a:14:6c:6e:df:b6:61:94:d5:cf:ec:63:d6:48:a5:f8:
9f:13:26:df:7f:f6:39:ba:a8:6e:7c:92:f1:dc:e8:85:5d:37:
12:09:62:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:45:52 2025 by rpki-client