Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
File: Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft (raw, json)
Hash identifier: 47OwZpOZkqjHMBkGvvaWeLXgI3Y+zio04QQLlBxK+aU=
Subject key identifier: 35:86:90:51:AC:B4:79:E9:B6:A9:79:1C:51:C0:BA:FA:4C:75:0B:BB
Authority key identifier: 4A:EF:BC:FA:7F:05:9F:F1:07:27:EA:61:9E:59:13:9D:A3:74:18:EF
Certificate issuer: /CN=4aefbcfa7f059ff10727ea619e59139da37418ef
Certificate serial: 0194C3875FE26BAF1688A8ECD48F3D210F08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
Manifest number: 142A
Signing time: Sat 01 Feb 2025 22:00:16 +0000
Manifest this update: Sat 01 Feb 2025 22:00:16 +0000
Manifest next update: Sun 02 Feb 2025 22:00:16 +0000
Files and hashes: 1: Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl (hash: mqsCoNlPzN5VGEUrulh0mwGHlnfbCCvFahp0oJyYK2Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 22:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:87:5f:e2:6b:af:16:88:a8:ec:d4:8f:3d:21:0f:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4aefbcfa7f059ff10727ea619e59139da37418ef
Validity
Not Before: Feb 1 22:00:16 2025 GMT
Not After : Feb 2 22:00:16 2025 GMT
Subject: CN=35869051acb479e9b6a9791c51c0bafa4c750bbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:6c:0c:b7:ff:93:a6:86:ce:38:d6:cf:0c:35:
62:b1:57:0e:6b:77:2f:81:66:f1:9e:86:c3:62:c3:
02:8b:1f:45:2b:a2:10:10:54:f1:ce:85:24:dc:cd:
a5:44:05:c3:9f:36:3a:17:fc:b1:93:e0:f3:73:9a:
37:94:1f:6d:1e:b8:43:7e:df:d3:62:3b:46:f2:8d:
95:56:8b:82:fe:9a:ac:76:76:ec:08:b5:f2:40:04:
03:ad:96:11:87:7a:ae:e9:0b:6c:9f:7e:eb:3f:c4:
1d:df:a7:09:10:aa:2f:43:2a:b6:d1:ae:d9:62:aa:
19:6b:84:8c:cd:df:73:5c:44:57:b6:e5:ce:ae:1f:
a1:eb:d5:a1:c5:f2:39:d6:ea:81:b8:90:a5:b6:25:
5a:d1:01:a4:54:ac:07:12:a0:5b:5c:d5:09:ca:66:
01:95:5e:0c:bb:e5:21:49:a7:fe:fb:82:eb:02:5b:
c5:0a:9f:0d:6b:93:50:e5:5a:42:b4:a6:07:29:d7:
c2:6d:10:0b:25:f4:b4:1c:f2:41:33:99:44:4b:a7:
16:4e:76:ea:de:95:08:01:c8:ef:58:68:9e:98:46:
6c:70:30:44:1c:5e:3e:ab:50:e4:8c:a7:ed:1f:04:
f9:4f:14:47:36:8f:51:64:8e:a5:4a:e8:fc:db:d8:
3a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:86:90:51:AC:B4:79:E9:B6:A9:79:1C:51:C0:BA:FA:4C:75:0B:BB
X509v3 Authority Key Identifier:
keyid:4A:EF:BC:FA:7F:05:9F:F1:07:27:EA:61:9E:59:13:9D:A3:74:18:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:fb:b4:58:4f:50:b1:4f:29:f8:a5:85:e7:d5:e3:b2:4a:1e:
24:b0:1d:f0:f2:54:82:b4:3c:b2:d4:e4:00:95:4b:0b:61:db:
60:ce:4f:a8:96:ea:e1:3e:a3:40:1d:d0:70:36:0c:12:84:cb:
02:fa:45:08:5c:c1:29:43:d9:3b:f8:81:f8:23:d9:5f:c4:8b:
d9:64:43:41:54:ce:64:28:52:e2:2f:ef:b3:02:94:4d:3e:f5:
4c:86:28:8c:85:ad:58:9d:d8:cb:8d:b3:87:ff:54:1b:a3:a0:
2d:81:df:b8:03:a2:2f:d4:b5:92:d6:d3:8d:96:8b:bc:67:ef:
e2:ae:0b:16:e9:1a:d8:07:52:f8:9e:81:cb:85:8f:e9:3a:cf:
da:48:01:6a:fb:08:b5:78:5d:77:69:c7:7d:ef:b9:a0:fa:b3:
39:6c:c9:3e:79:b0:3b:c7:e0:ec:62:b8:9c:73:9d:cf:b3:7d:
10:7c:88:36:59:dc:e3:b0:a5:6f:ab:a0:aa:69:ac:e3:57:2b:
ef:8a:49:d0:c6:81:ff:dc:e9:d8:38:d8:41:7f:33:dd:28:f4:
99:e1:f6:91:e4:5d:5b:59:dc:e7:6c:35:87:da:21:c8:82:02:
91:00:7a:b6:d3:95:45:a2:55:a4:2e:8a:8c:22:44:97:34:b8:
f2:1b:a0:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:41:47 2025 by rpki-client