Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
File: rKcX8QfgYizkyz71KwFU-n-baS0.mft (raw, json)
Hash identifier: iUmR6o3pqFaWsEYiAuHeKH3CQ6++brD0P0thxpTQFTE=
Subject key identifier: 65:51:87:56:18:69:6C:5F:E1:8F:1D:08:9B:AD:32:87:8B:06:02:45
Authority key identifier: AC:A7:17:F1:07:E0:62:2C:E4:CB:3E:F5:2B:01:54:FA:7F:9B:69:2D
Certificate issuer: /CN=aca717f107e0622ce4cb3ef52b0154fa7f9b692d
Certificate serial: 01963E0B921BC63CF8EF667495A58656B82F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKcX8QfgYizkyz71KwFU-n-baS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
Manifest number: 1070
Signing time: Wed 16 Apr 2025 10:01:07 +0000
Manifest this update: Wed 16 Apr 2025 10:01:07 +0000
Manifest next update: Thu 17 Apr 2025 10:01:07 +0000
Files and hashes: 1: rKcX8QfgYizkyz71KwFU-n-baS0.crl (hash: onlsgxppcmocr8EZjdEvv6u/iiEgLhCBBa/deyQimwQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKcX8QfgYizkyz71KwFU-n-baS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 10:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3e:0b:92:1b:c6:3c:f8:ef:66:74:95:a5:86:56:b8:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca717f107e0622ce4cb3ef52b0154fa7f9b692d
Validity
Not Before: Apr 16 10:01:07 2025 GMT
Not After : Apr 17 10:01:07 2025 GMT
Subject: CN=6551875618696c5fe18f1d089bad32878b060245
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:2c:f3:a9:96:e4:8d:cd:45:a3:52:70:2d:1f:
e3:7f:e2:e2:53:78:0a:97:41:ec:0d:64:d3:b9:8a:
56:ac:c4:4b:dc:a5:e7:23:d7:ec:5b:b2:b9:57:75:
44:02:03:2d:e2:3f:21:ce:98:76:c6:fd:d0:ea:bc:
4b:b1:62:ba:2c:b0:0c:06:26:a6:43:e6:f1:79:a9:
6d:b9:32:e4:fe:f1:d0:11:6f:ed:f2:90:9f:bc:6c:
0d:7e:5b:eb:53:db:14:1e:05:f7:7f:2d:91:bc:9d:
07:ab:ba:73:ed:f7:2a:69:05:fa:52:e4:0c:47:65:
c4:45:dc:c1:20:36:77:0f:99:ce:6b:94:ea:19:99:
28:b8:2f:bf:fa:54:d5:04:8f:31:de:f1:f0:17:8d:
eb:1f:48:a9:af:e6:1e:06:8c:b0:f3:2c:c0:39:b3:
47:12:29:bc:7a:f3:3a:e5:3c:d7:f1:ee:e8:fa:53:
51:a9:dc:8d:40:8b:f2:bd:76:e9:ca:7d:bc:14:28:
f5:e2:d1:bb:d9:f3:b7:d3:db:6c:08:0e:b5:2e:26:
f2:4b:e3:cf:d3:40:c0:5c:f9:da:91:b6:14:72:26:
7d:77:d8:97:f0:85:76:67:38:03:d6:7e:ac:ef:f1:
5a:b9:c9:ff:d2:9f:ab:41:3d:0b:68:e2:38:ce:ec:
d4:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:51:87:56:18:69:6C:5F:E1:8F:1D:08:9B:AD:32:87:8B:06:02:45
X509v3 Authority Key Identifier:
keyid:AC:A7:17:F1:07:E0:62:2C:E4:CB:3E:F5:2B:01:54:FA:7F:9B:69:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKcX8QfgYizkyz71KwFU-n-baS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:6a:11:3a:da:cb:76:38:ec:cb:c7:e8:d5:f3:86:b9:a0:c6:
59:af:83:d9:9b:67:df:55:4a:92:ef:67:e1:72:49:eb:21:9f:
3f:96:f4:3f:55:bc:94:a8:a7:fe:ec:a0:fc:a3:27:00:2b:d1:
9a:33:7d:51:84:c6:42:6e:be:2c:59:7c:59:b4:5d:fa:de:4d:
5a:89:77:b9:a8:be:f6:63:0e:2c:41:e2:c1:0a:ec:e2:60:32:
64:c1:21:b4:4b:7f:96:7c:34:c1:39:be:af:06:61:55:26:8b:
59:a5:d1:1e:92:1f:24:e7:62:21:45:51:24:03:c5:06:69:4f:
a8:bf:df:ad:b5:cb:6d:49:01:90:c0:58:08:3e:df:7a:08:ae:
f4:01:1c:d8:31:18:b5:a8:bd:48:d2:cb:1b:66:dd:de:10:48:
66:72:33:20:7a:3a:42:69:ff:55:0f:ba:f9:d5:31:3c:8e:63:
cb:3b:30:77:5d:58:ad:50:fc:29:4a:be:1d:03:6c:20:c3:a7:
41:20:af:97:a0:55:da:51:af:46:73:b8:c7:5d:37:a6:56:f6:
88:2e:7d:d4:0b:72:8f:f0:e0:06:1c:20:30:a3:96:20:40:a4:
a6:4e:47:9c:2e:bd:4a:4b:09:b3:f5:6c:62:32:0e:51:ea:45:
f1:ab:ae:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 21:52:23 2025 by rpki-client