Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.mft
File: MlPNw--1IdnV5wqcxeRxsBWGA2o.mft (raw, json)
Hash identifier: t6YObBCEIV503QH3xSDEcWEMoxOq+XNe0Y9nLpin2ls=
Subject key identifier: 4C:52:4A:27:C5:9D:F7:F1:2F:D5:E2:87:73:10:AF:6D:EC:24:E7:86
Authority key identifier: 32:53:CD:C3:EF:B5:21:D9:D5:E7:0A:9C:C5:E4:71:B0:15:86:03:6A
Certificate issuer: /CN=3253cdc3efb521d9d5e70a9cc5e471b01586036a
Certificate serial: 01965CF1B8146C781032122A4A7A941129C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MlPNw--1IdnV5wqcxeRxsBWGA2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.mft
Manifest number: 0826
Signing time: Tue 22 Apr 2025 10:01:07 +0000
Manifest this update: Tue 22 Apr 2025 10:01:07 +0000
Manifest next update: Wed 23 Apr 2025 10:01:07 +0000
Files and hashes: 1: MlPNw--1IdnV5wqcxeRxsBWGA2o.crl (hash: uDIi42lky6JblOfh9H0Ba9waHXmaDS7dKLWUuEsgA+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.mft
rsync://rpki.ripe.net/repository/DEFAULT/MlPNw--1IdnV5wqcxeRxsBWGA2o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 10:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:f1:b8:14:6c:78:10:32:12:2a:4a:7a:94:11:29:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3253cdc3efb521d9d5e70a9cc5e471b01586036a
Validity
Not Before: Apr 22 10:01:07 2025 GMT
Not After : Apr 23 10:01:07 2025 GMT
Subject: CN=4c524a27c59df7f12fd5e2877310af6dec24e786
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ca:bf:d5:47:da:19:da:33:f0:6d:b0:fb:d3:
ec:ba:e7:8b:4f:9f:ee:d5:0d:20:33:ac:db:c1:c2:
6f:c4:dd:47:9d:13:f4:36:bd:e5:b8:c6:91:71:ea:
79:51:7d:05:12:22:60:f6:82:a1:47:dc:cb:52:9a:
8e:5a:3d:9c:ad:e3:c5:97:03:14:f9:12:3e:11:da:
eb:1f:54:8c:b7:ae:b8:bf:80:01:49:f1:de:0d:49:
14:73:d4:4c:84:e5:9c:70:38:7f:3c:78:39:76:3c:
1a:15:5d:9f:44:90:95:5b:5c:6b:3a:ee:5b:2c:b1:
f6:4a:53:1c:7d:a3:78:61:dc:5c:cc:b9:c7:33:8c:
7e:66:97:25:8e:45:0c:c0:9a:79:02:3d:12:eb:7f:
e5:76:7c:d8:80:54:7a:56:79:b8:f8:8c:5e:00:e9:
22:5a:76:ba:c1:89:8f:5f:e1:d7:bc:0e:a7:39:a8:
cd:66:a1:f0:e1:0c:09:84:e5:48:57:ba:7f:71:bc:
27:1f:f0:25:00:b1:64:42:be:0c:ca:05:a3:83:74:
39:72:67:23:13:c1:d8:dd:bc:05:cb:61:dd:0b:19:
6b:37:17:d5:76:c0:da:7d:35:2d:ee:69:a8:9b:44:
f9:04:66:84:32:e0:d5:c5:cd:87:94:d7:88:a3:7a:
f8:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:52:4A:27:C5:9D:F7:F1:2F:D5:E2:87:73:10:AF:6D:EC:24:E7:86
X509v3 Authority Key Identifier:
keyid:32:53:CD:C3:EF:B5:21:D9:D5:E7:0A:9C:C5:E4:71:B0:15:86:03:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MlPNw--1IdnV5wqcxeRxsBWGA2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:01:b1:8a:42:38:70:fa:71:8a:ed:3f:8b:c6:ce:34:5b:f4:
98:dd:f4:7f:06:c3:3e:da:c8:25:b7:1c:f2:95:f3:09:d6:a6:
13:ae:fc:12:08:91:bb:0a:3b:f0:f3:a5:fb:09:7f:99:7e:34:
eb:7c:d8:b9:9e:cc:66:05:66:b7:b0:73:05:9f:78:9a:b1:b7:
c5:8c:f3:88:0b:70:b5:5f:b5:98:86:2b:5c:cf:9e:01:88:8d:
e1:ab:8e:5b:13:5d:b9:96:4e:bc:45:91:53:4a:ac:02:a1:fa:
8c:4c:25:de:25:45:4a:ab:af:0d:23:51:65:2d:41:6c:46:01:
dd:2e:75:6b:16:82:4d:11:8d:fe:ad:4c:70:13:25:bf:62:8b:
9d:60:5f:7a:aa:4b:57:87:f1:76:67:53:ca:26:30:06:a1:c7:
3a:e9:84:26:29:f1:db:1f:7f:93:31:7a:2e:54:90:34:c1:0d:
45:a2:6f:e4:06:82:e9:98:4f:8b:ee:24:82:41:fa:ba:54:d2:
54:0c:51:21:17:b4:e8:5d:54:07:eb:fe:b1:1f:7f:b9:93:b0:
4e:73:67:8c:d9:3a:a1:cf:35:60:b8:9c:1c:6f:fd:66:52:53:
4a:0d:06:22:5f:dd:04:10:9f:98:86:65:f6:14:9a:29:18:fe:
4c:af:5f:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 19:37:24 2025 by rpki-client