Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft
File: jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft (raw, json)
Hash identifier: sifxhOpQL1aHVDEUk+TYWKjQHh1TSU5HJEASiEi18fI=
Subject key identifier: 73:A4:D4:6A:1E:C6:87:5E:0B:E5:76:90:17:F7:92:AD:CC:C1:DA:B6
Authority key identifier: 8D:C2:97:EF:18:59:CA:33:75:97:06:BD:C6:EE:79:25:CF:A5:14:1D
Certificate issuer: /CN=8dc297ef1859ca33759706bdc6ee7925cfa5141d
Certificate serial: 019653497F7B0156F96C52E45ECFAA115150
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jcKX7xhZyjN1lwa9xu55Jc-lFB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft
Manifest number: 0CDA
Signing time: Sun 20 Apr 2025 13:00:47 +0000
Manifest this update: Sun 20 Apr 2025 13:00:47 +0000
Manifest next update: Mon 21 Apr 2025 13:00:47 +0000
Files and hashes: 1: jcKX7xhZyjN1lwa9xu55Jc-lFB0.crl (hash: IG4DQ8Bx7fFGfLzbZY2YQN+jzN6RAwTbuTIvzExzPl0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft
rsync://rpki.ripe.net/repository/DEFAULT/jcKX7xhZyjN1lwa9xu55Jc-lFB0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 13:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:49:7f:7b:01:56:f9:6c:52:e4:5e:cf:aa:11:51:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8dc297ef1859ca33759706bdc6ee7925cfa5141d
Validity
Not Before: Apr 20 13:00:47 2025 GMT
Not After : Apr 21 13:00:47 2025 GMT
Subject: CN=73a4d46a1ec6875e0be5769017f792adccc1dab6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:03:3a:34:e2:2b:22:b3:64:76:6a:23:9a:be:
a5:14:f8:ee:01:ec:5c:59:f5:0f:3d:bc:7e:6f:f2:
b1:f6:6a:3b:48:33:9e:12:da:64:5e:18:8b:08:35:
3c:38:41:ad:40:3c:1e:c9:23:8e:f0:ef:d0:38:db:
2a:87:f2:b4:a1:5f:38:03:e1:d5:40:ac:49:c7:54:
94:11:4d:81:cb:40:a8:d7:83:99:92:a4:15:ee:b9:
d2:a9:e1:62:2c:68:c3:b8:6a:8d:ab:cd:45:fc:2b:
93:f2:b2:c0:7c:a8:28:7d:d2:94:a7:d5:9f:4f:fe:
44:0a:23:ea:3b:9a:2b:11:43:78:b8:28:0f:8d:d3:
b6:54:9f:61:99:c9:f8:d0:05:04:7f:3d:4c:1a:a3:
9c:c8:97:45:9c:45:d9:be:f0:92:1a:22:f3:e8:df:
a3:a5:7b:ac:92:65:77:ad:b6:da:d0:49:03:60:4d:
da:96:e3:11:78:3e:fd:48:fc:46:aa:af:49:b7:0c:
c6:98:d9:c1:41:fc:af:86:62:c4:d5:92:08:eb:4b:
3f:1a:be:ac:e3:78:fe:76:df:f7:5d:f5:a4:40:7e:
f8:e8:72:28:da:b9:05:c4:63:ba:a5:89:73:d5:c9:
1a:e5:bb:ce:2d:5d:b2:e8:38:01:8f:41:48:73:7f:
b2:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:A4:D4:6A:1E:C6:87:5E:0B:E5:76:90:17:F7:92:AD:CC:C1:DA:B6
X509v3 Authority Key Identifier:
keyid:8D:C2:97:EF:18:59:CA:33:75:97:06:BD:C6:EE:79:25:CF:A5:14:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jcKX7xhZyjN1lwa9xu55Jc-lFB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/aaaf99-b1c5-4bb5-8928-b5bc74caa402/1/jcKX7xhZyjN1lwa9xu55Jc-lFB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:e8:c3:e3:16:76:d7:5d:36:ad:ef:f0:91:b6:e5:58:08:d7:
a5:40:07:7a:0f:5c:07:12:11:df:32:53:3a:40:a3:83:6c:9d:
06:89:2e:d0:72:2e:f8:61:b4:d3:b9:5c:a4:6e:35:24:9b:34:
18:01:54:4d:a1:53:67:75:a9:b2:58:13:fc:59:99:db:67:87:
1b:b9:4c:e9:e9:7f:54:c4:12:94:7a:e5:e2:1a:64:8a:85:02:
58:58:ad:ea:34:62:fe:38:3c:66:c7:f9:9c:b2:73:9d:6d:db:
a9:8f:33:0a:4c:8f:f5:b0:a9:91:6f:92:17:c7:8c:63:2c:f9:
88:80:ce:8a:cd:cb:ef:6e:8f:2f:28:f8:1f:76:d6:56:cc:ee:
a9:72:42:97:e3:c8:8b:42:21:41:d1:cf:37:7a:8a:34:25:44:
a9:26:85:32:7f:7c:2e:2a:df:6f:48:12:dc:3e:37:4d:ab:37:
32:87:c5:01:06:50:00:5a:f8:07:3e:8a:e9:da:ef:b2:f6:5c:
2a:29:5b:3b:ea:8b:9b:36:1b:ac:84:a5:88:84:a7:36:c7:83:
23:f6:67:1a:30:4c:60:3e:bc:8f:cc:6a:27:3d:4c:fc:78:73:
0a:77:d0:c1:ef:a0:4d:96:95:cd:7e:91:eb:b3:c0:48:64:4d:
42:81:56:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 20:03:23 2025 by rpki-client