Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.mft
File: Dj8xyerObwpezNuN8rAcc1FWhoY.mft (raw, json)
Hash identifier: A5DsuxCHe597deqsobTVId+zN6RFZXvN8c4RohRfgPU=
Subject key identifier: DD:65:58:41:B4:F0:E5:88:9D:94:04:03:92:5C:44:78:65:C3:CB:97
Authority key identifier: 0E:3F:31:C9:EA:CE:6F:0A:5E:CC:DB:8D:F2:B0:1C:73:51:56:86:86
Certificate issuer: /CN=0e3f31c9eace6f0a5eccdb8df2b01c7351568686
Certificate serial: 0196534912A9E47413B9F75A95E6835A0BFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dj8xyerObwpezNuN8rAcc1FWhoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.mft
Manifest number: 14B7
Signing time: Sun 20 Apr 2025 13:00:19 +0000
Manifest this update: Sun 20 Apr 2025 13:00:19 +0000
Manifest next update: Mon 21 Apr 2025 13:00:19 +0000
Files and hashes: 1: Dj8xyerObwpezNuN8rAcc1FWhoY.crl (hash: xVSs0CEfPikyq9+Je9qkUFOwxtC9TQR9E7XToHE/bPk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dj8xyerObwpezNuN8rAcc1FWhoY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 13:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:49:12:a9:e4:74:13:b9:f7:5a:95:e6:83:5a:0b:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e3f31c9eace6f0a5eccdb8df2b01c7351568686
Validity
Not Before: Apr 20 13:00:19 2025 GMT
Not After : Apr 21 13:00:19 2025 GMT
Subject: CN=dd655841b4f0e5889d940403925c447865c3cb97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:2a:b4:46:f3:75:c3:74:b8:02:83:4b:2d:81:
6c:9f:78:70:7a:3f:ba:81:b8:a9:70:d6:81:bb:96:
6d:d8:99:67:30:24:7a:68:57:3c:1a:8a:26:3f:c0:
0d:cf:45:e1:0b:ef:93:f8:b4:13:9c:bb:50:38:4e:
84:3d:3b:ac:1d:6d:5c:54:1a:7d:78:0d:95:cb:27:
8f:ed:a5:af:23:a8:2c:3c:f0:8c:84:9e:c8:80:35:
46:08:f6:ba:47:08:86:10:7d:ad:db:aa:3f:30:33:
97:3e:4f:43:0c:43:b8:b1:55:e4:40:12:d6:d7:7f:
cf:a6:86:c4:72:b0:f3:f3:6e:c4:c1:47:2f:e4:6f:
22:e8:b1:1b:be:dd:f8:fd:fd:41:e6:55:0d:54:04:
37:b8:f6:22:11:86:8a:0e:b0:0e:e5:74:52:72:a8:
5f:e0:97:36:b3:9e:6b:32:23:56:a4:15:70:56:de:
03:a3:e1:bb:11:9a:87:15:bf:b4:16:9e:81:a0:9b:
a4:6e:94:05:b4:26:3e:0a:64:37:e6:f8:07:a3:89:
36:24:66:56:bc:5f:30:17:72:81:75:45:68:88:42:
08:ac:3d:15:92:97:3b:66:19:e2:bd:05:9b:25:39:
7a:35:ec:5e:54:3d:80:12:e0:ba:47:65:5c:77:95:
e2:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:65:58:41:B4:F0:E5:88:9D:94:04:03:92:5C:44:78:65:C3:CB:97
X509v3 Authority Key Identifier:
keyid:0E:3F:31:C9:EA:CE:6F:0A:5E:CC:DB:8D:F2:B0:1C:73:51:56:86:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dj8xyerObwpezNuN8rAcc1FWhoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:c7:64:92:7a:e7:ad:03:10:c3:75:ab:4d:de:f8:61:95:b1:
ed:d1:92:a8:79:0e:ca:44:5f:94:09:32:46:ff:2c:b5:21:62:
a8:d0:20:1a:0e:d3:10:07:fd:c4:8c:e8:42:9e:8d:a3:65:09:
65:51:e7:cf:f3:98:5b:8f:48:01:09:36:c4:4f:29:4c:2f:c0:
d3:6c:86:5d:b1:78:6c:f3:c1:a2:19:db:a2:5c:5b:a9:73:b3:
40:f1:70:a7:a1:63:2b:ee:11:35:fb:2b:ec:28:75:59:46:6c:
8c:a7:84:34:0f:6f:25:30:92:7e:8f:f4:1e:ec:c4:75:f2:6f:
21:7e:80:a8:f2:22:e8:c3:65:b4:99:63:c5:fa:8e:4b:f1:24:
29:fe:11:cf:09:86:87:4e:57:c0:d2:76:8e:e6:4e:ac:34:91:
c9:33:2b:bc:b1:b2:ad:b1:7f:ad:f4:63:cf:d5:fa:3e:b8:04:
aa:c5:ae:e8:62:91:6f:ae:60:ce:f4:a2:6f:f1:88:7e:db:fc:
bf:52:02:d9:8a:98:d8:54:5d:7d:e3:64:13:fc:42:57:78:7b:
07:76:90:1b:be:e4:7a:22:02:62:eb:a7:a1:01:ec:75:a7:23:
e3:cb:cd:a4:ff:a8:55:2d:f9:95:63:97:92:6e:02:55:f5:ca:
d7:6e:a8:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 21:39:03 2025 by rpki-client