Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/9ee6c8-f3e2-4fae-998a-591a2a4194cd/1/SDQ4fr_s2mN6duERmeHNAwfC9Mo.mft
File: SDQ4fr_s2mN6duERmeHNAwfC9Mo.mft (raw, json)
Hash identifier: hccWe6FAFEq7YKLNdvmFDUHzcT3yXS417UTZp+sON1o=
Subject key identifier: E9:5C:8F:17:4B:8C:44:31:55:0C:ED:67:8C:81:46:B2:66:88:4A:DD
Authority key identifier: 48:34:38:7E:BF:EC:DA:63:7A:76:E1:11:99:E1:CD:03:07:C2:F4:CA
Certificate issuer: /CN=4834387ebfecda637a76e11199e1cd0307c2f4ca
Certificate serial: 019510C6E36FD6B180B21A76C45A6F7080EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SDQ4fr_s2mN6duERmeHNAwfC9Mo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/9ee6c8-f3e2-4fae-998a-591a2a4194cd/1/SDQ4fr_s2mN6duERmeHNAwfC9Mo.mft
Manifest number: 0DE6
Signing time: Sun 16 Feb 2025 22:00:24 +0000
Manifest this update: Sun 16 Feb 2025 22:00:24 +0000
Manifest next update: Mon 17 Feb 2025 22:00:24 +0000
Files and hashes: 1: SDQ4fr_s2mN6duERmeHNAwfC9Mo.crl (hash: RjAc7LXVBzizVnEKz/Wr0CW7mZLy/fYdvdoE88o8Xpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/9ee6c8-f3e2-4fae-998a-591a2a4194cd/1/SDQ4fr_s2mN6duERmeHNAwfC9Mo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/9ee6c8-f3e2-4fae-998a-591a2a4194cd/1/SDQ4fr_s2mN6duERmeHNAwfC9Mo.mft
rsync://rpki.ripe.net/repository/DEFAULT/SDQ4fr_s2mN6duERmeHNAwfC9Mo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c6:e3:6f:d6:b1:80:b2:1a:76:c4:5a:6f:70:80:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4834387ebfecda637a76e11199e1cd0307c2f4ca
Validity
Not Before: Feb 16 22:00:24 2025 GMT
Not After : Feb 17 22:00:24 2025 GMT
Subject: CN=e95c8f174b8c4431550ced678c8146b266884add
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:dc:31:42:dc:da:b7:e0:a4:c0:1e:d0:23:c0:
7b:48:86:6b:c0:fa:5c:d2:7a:b9:6d:cc:e1:64:41:
82:0b:0c:f3:3c:f2:f0:fd:de:00:4c:9a:b5:6f:e7:
ad:ee:e0:b3:55:2c:4a:1b:e2:9e:86:76:b1:d0:1a:
70:b6:34:f7:d7:be:ae:1e:db:c1:6f:6b:50:3c:73:
e9:c9:67:8c:9c:e1:fb:12:d4:6a:48:9a:f1:61:21:
4f:ad:2a:bb:81:2a:d7:59:10:e4:e5:11:f3:6f:cc:
59:de:b9:28:0f:fa:12:23:01:40:d7:eb:5a:e0:9e:
b9:2d:a1:1e:a8:20:f3:24:b5:a7:bf:4a:a9:01:2d:
db:14:02:bd:c0:c6:9a:25:3d:08:82:30:14:86:a0:
a5:2c:3f:27:3a:e2:8b:11:de:70:0e:5b:7f:4c:6e:
3f:4d:06:dc:96:f7:8e:bf:dc:90:d3:1b:16:36:de:
74:2b:64:c4:f3:ee:f6:77:53:42:05:fc:d6:22:26:
ac:a5:d7:99:99:0a:58:6a:44:c5:dd:f0:d6:7c:a3:
0c:19:41:55:16:9e:8a:01:ad:88:76:f0:30:36:e7:
23:bf:ce:38:01:bf:3c:9a:4c:6a:6a:09:30:22:3c:
0a:f3:98:8a:a3:26:88:32:26:67:fa:a3:f8:a9:eb:
88:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:5C:8F:17:4B:8C:44:31:55:0C:ED:67:8C:81:46:B2:66:88:4A:DD
X509v3 Authority Key Identifier:
keyid:48:34:38:7E:BF:EC:DA:63:7A:76:E1:11:99:E1:CD:03:07:C2:F4:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SDQ4fr_s2mN6duERmeHNAwfC9Mo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9ee6c8-f3e2-4fae-998a-591a2a4194cd/1/SDQ4fr_s2mN6duERmeHNAwfC9Mo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/9ee6c8-f3e2-4fae-998a-591a2a4194cd/1/SDQ4fr_s2mN6duERmeHNAwfC9Mo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:e8:b8:fe:e1:df:e3:ee:f8:94:6a:4d:ba:4a:55:d9:56:b4:
e3:c7:ae:a3:57:ec:87:da:a0:49:bf:5a:b3:32:16:ee:c2:18:
75:04:89:0b:7f:f6:8d:66:a1:ad:55:c2:4d:23:3e:fe:20:77:
1d:7f:26:14:e7:f1:ad:b4:71:94:99:a5:b2:67:89:50:68:27:
49:52:f3:36:53:a6:5c:69:b7:2b:2a:e4:a8:72:b2:b4:f7:5a:
f1:dc:b7:33:a1:d0:2d:06:78:ba:ac:2f:25:99:45:ed:86:b6:
f5:fc:4c:34:dd:8b:9b:72:bb:98:f0:95:8a:69:23:9c:96:ce:
37:da:f0:38:87:a0:1d:08:09:94:35:61:5d:1c:4e:16:a2:5c:
90:af:9b:3c:3c:ad:ca:1e:64:46:99:c0:1e:c2:0b:1d:92:2b:
61:e8:f9:e6:dd:27:53:0c:33:64:54:2a:a7:72:b6:54:7f:34:
64:6c:cd:84:44:ff:2b:b9:96:5b:b5:29:52:31:ed:eb:e3:ef:
5a:7f:93:24:28:0d:a5:65:23:d5:8c:f9:5a:8b:7b:b0:9f:3e:
96:aa:e8:fe:a3:16:38:61:f6:e3:a8:a1:cc:7c:cb:63:12:c8:
8e:02:e7:48:69:94:bf:d4:76:7d:f3:5e:e6:16:a4:52:30:ca:
6f:32:55:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:14:17 2025 by rpki-client