Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
File: xIzPWOSy4trdSoSDPAZ87iuXRek.mft (raw, json)
Hash identifier: 0Of7yV5q+ODHF0IWhkfo+CwwFMnrO4LfihFXafwUopA=
Subject key identifier: 03:A1:C4:6B:2B:07:F5:95:49:46:5F:FE:3B:4F:87:1B:FD:91:38:0F
Authority key identifier: C4:8C:CF:58:E4:B2:E2:DA:DD:4A:84:83:3C:06:7C:EE:2B:97:45:E9
Certificate issuer: /CN=c48ccf58e4b2e2dadd4a84833c067cee2b9745e9
Certificate serial: 01964AEB0EBDC7BFFBA828ABABBC99D1D1DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xIzPWOSy4trdSoSDPAZ87iuXRek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
Manifest number: 0728
Signing time: Fri 18 Apr 2025 22:00:40 +0000
Manifest this update: Fri 18 Apr 2025 22:00:40 +0000
Manifest next update: Sat 19 Apr 2025 22:00:40 +0000
Files and hashes: 1: xIzPWOSy4trdSoSDPAZ87iuXRek.crl (hash: 2PYOQp5+om5nbG+E49921x+lTRh1BLXSN4+nAoLTyfg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
rsync://rpki.ripe.net/repository/DEFAULT/xIzPWOSy4trdSoSDPAZ87iuXRek.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 22:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:eb:0e:bd:c7:bf:fb:a8:28:ab:ab:bc:99:d1:d1:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c48ccf58e4b2e2dadd4a84833c067cee2b9745e9
Validity
Not Before: Apr 18 22:00:40 2025 GMT
Not After : Apr 19 22:00:40 2025 GMT
Subject: CN=03a1c46b2b07f59549465ffe3b4f871bfd91380f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5e:6f:88:61:7c:dd:05:69:fb:c8:18:26:c0:
61:d8:5c:77:f5:91:33:d5:b0:24:e9:89:d3:79:36:
69:5d:1f:93:bf:55:a0:f1:e9:c9:e9:69:6c:ac:41:
31:36:05:eb:96:9b:6e:31:e2:2e:88:c9:5c:18:d3:
43:ee:c9:52:b5:25:0a:a1:ff:95:c5:80:2a:84:bc:
39:18:e0:c1:ff:7e:a9:26:77:b1:30:ef:c2:01:af:
56:62:8f:a6:c3:d2:4f:a8:e8:97:d3:83:65:6d:0f:
72:3d:48:aa:85:84:77:46:e4:1e:4c:49:71:9d:a1:
be:54:2b:e0:8f:2b:4e:e8:15:b6:7a:d0:4e:76:95:
6a:5b:42:3c:9a:43:86:60:95:92:e6:0c:e8:25:7c:
1e:e5:b2:48:e0:b5:31:43:25:8b:25:65:75:3a:0e:
a5:b2:f0:8c:12:85:a0:cc:c0:6f:50:8e:1e:51:4e:
a0:38:2b:45:52:12:22:3a:2e:4f:29:bb:34:a4:4d:
2e:82:81:4f:39:92:87:85:cc:0e:36:29:94:1f:d9:
45:26:bf:52:32:0a:65:f5:14:15:70:88:51:15:a3:
b0:70:54:cd:b2:a4:00:a7:9d:99:b9:7e:f7:72:3d:
1f:bc:5b:d1:59:5b:54:70:cf:e5:44:a2:af:09:58:
9d:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:A1:C4:6B:2B:07:F5:95:49:46:5F:FE:3B:4F:87:1B:FD:91:38:0F
X509v3 Authority Key Identifier:
keyid:C4:8C:CF:58:E4:B2:E2:DA:DD:4A:84:83:3C:06:7C:EE:2B:97:45:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xIzPWOSy4trdSoSDPAZ87iuXRek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/cbe005-2689-4379-9a7e-a50e32de0823/1/xIzPWOSy4trdSoSDPAZ87iuXRek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:5b:3a:c2:4a:34:de:29:0d:55:62:13:69:b1:f6:ed:78:10:
79:4e:5c:22:3d:a9:f2:40:15:fe:cf:d4:81:fc:32:a2:ee:32:
eb:8c:31:4f:d4:56:6f:c6:66:3d:50:32:73:4e:72:45:ac:9e:
a8:64:a7:ee:fb:fa:6e:80:16:c6:ac:35:9d:d9:56:06:34:4a:
08:3f:2b:1f:78:e8:e3:70:19:47:5a:3e:23:51:15:a8:07:73:
5e:7f:32:46:b2:d0:ab:dc:f1:f7:8f:36:62:8f:5e:7c:c3:8d:
25:fd:9a:d0:53:f8:f7:b0:e4:24:57:29:6b:3c:d6:6b:54:00:
9e:28:6a:ad:cd:91:68:1c:11:6b:36:19:e9:7d:bb:46:4f:8e:
65:8e:5c:82:fc:24:00:b8:58:8a:3d:63:00:1f:97:37:58:7e:
00:30:0e:d6:24:87:6f:bc:e3:4f:fc:1a:d0:5e:ad:85:49:3e:
15:fe:71:ab:87:e4:38:cd:86:c2:83:e7:fd:61:3a:82:92:54:
32:cb:ca:69:b3:6f:6c:f3:36:78:a7:14:03:e3:d2:11:fe:90:
e7:6e:17:19:59:70:55:2e:55:94:e4:19:12:81:e7:09:3e:db:
55:03:0a:6e:62:e0:38:9e:f2:c0:a8:f4:e4:12:f4:6e:0e:7a:
73:82:74:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 06:22:03 2025 by rpki-client