Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
File: dI6Zox81gkAKtd-nd8YNFqyu3bM.mft (raw, json)
Hash identifier: Xkk9duOwWvjOIa4E+EXPlN/OvUjoRm84tEP94iJ1iuE=
Subject key identifier: 9A:A8:45:58:91:C5:7F:D7:54:A5:8A:90:1F:94:9C:A3:64:29:94:D2
Authority key identifier: 74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3
Certificate issuer: /CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
Certificate serial: 01965349174E653343BB614294FE7A6D85D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
Manifest number: 06C8
Signing time: Sun 20 Apr 2025 13:00:21 +0000
Manifest this update: Sun 20 Apr 2025 13:00:21 +0000
Manifest next update: Mon 21 Apr 2025 13:00:21 +0000
Files and hashes: 1: dI6Zox81gkAKtd-nd8YNFqyu3bM.crl (hash: TNc3/DQNP+aEm/d98Ye1ey+3l69HyA76Z8Ve3iGkDjU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:49:17:4e:65:33:43:bb:61:42:94:fe:7a:6d:85:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
Validity
Not Before: Apr 20 13:00:21 2025 GMT
Not After : Apr 21 13:00:21 2025 GMT
Subject: CN=9aa8455891c57fd754a58a901f949ca3642994d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:cb:23:1d:b3:76:3a:c7:02:d1:06:4e:a5:7f:
39:11:09:94:3b:87:dc:7f:12:b8:30:c6:22:db:3e:
c3:82:a5:7f:a5:7d:7c:7f:95:24:2e:eb:08:50:58:
04:0d:e1:11:36:27:7a:0c:a1:b7:89:05:76:f4:5e:
5c:d8:d2:f1:88:70:7a:d9:75:47:33:ff:3a:fa:0a:
7a:06:55:8e:e2:5c:67:23:56:f1:f8:28:26:63:e2:
d7:d9:07:f8:42:49:17:83:cf:8b:55:73:e6:42:c6:
fe:22:4a:5f:d0:6c:27:a9:d5:b6:72:54:ee:b7:d0:
33:a3:ed:ce:22:ef:94:f7:d9:83:7e:ec:a3:c6:df:
6f:76:ca:9e:81:e5:94:cb:ff:3b:32:30:32:c8:b0:
56:e5:d2:7e:1e:88:16:5c:53:62:35:72:39:ba:cc:
65:19:e5:db:08:bf:77:e7:54:6a:f5:91:67:8c:94:
39:6a:dd:d9:7b:a9:af:c7:63:a6:b3:ba:dc:e7:5a:
72:96:58:4f:11:58:1c:52:2a:fa:9c:40:c1:cb:b0:
d4:e2:30:ff:55:aa:51:d6:59:11:55:72:41:60:e3:
9d:6b:87:94:96:1b:a8:2a:e7:b2:91:53:ad:6d:f5:
28:a4:7e:d8:4d:00:43:2e:bd:c4:84:d0:b1:a2:c9:
9a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:A8:45:58:91:C5:7F:D7:54:A5:8A:90:1F:94:9C:A3:64:29:94:D2
X509v3 Authority Key Identifier:
keyid:74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:64:f0:a0:e3:6f:e9:18:93:5d:1e:6f:17:7a:5b:74:e9:71:
6f:be:f5:e6:e9:60:7e:96:30:6f:c4:b6:a8:df:fb:cc:47:17:
3a:ba:bd:49:91:bc:08:a8:68:a7:b4:8d:fe:5d:82:4e:ae:69:
79:cd:44:4d:1c:28:59:82:34:c0:2c:6d:4d:b1:e9:5b:f9:3d:
e6:6b:e0:c8:d9:50:3d:76:07:3b:ef:75:94:1d:fa:10:0a:98:
f8:d4:11:42:f5:fb:c7:2c:5b:fe:18:5a:9e:6a:d9:94:83:c5:
1a:76:d8:10:95:25:3c:07:fa:85:14:4c:e9:ed:0d:fd:db:42:
15:68:5c:89:48:e9:89:16:f9:18:cd:59:16:5f:d1:28:d8:5a:
9f:92:f7:1b:19:80:11:64:de:38:77:2b:86:78:95:1c:5d:4a:
9a:72:48:de:54:35:d9:b2:1d:4e:36:2d:c7:fe:cb:69:54:13:
6c:80:17:5c:ae:50:30:6f:65:7e:1e:76:ee:ab:ee:42:b0:5d:
05:ac:9b:46:a9:89:ac:39:3e:c7:a0:f0:06:88:45:dc:9d:6c:
fe:b4:e6:11:7c:cd:ae:f1:94:5c:16:58:a4:65:e4:a9:3a:e9:
dd:ee:82:3e:44:15:31:18:9d:4a:35:da:45:e0:b8:da:67:bd:
b2:ac:bd:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 15:33:09 2025 by rpki-client