Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
File: 5qi5LUxZf2wET3clKFSPnJEpoNM.mft (raw, json)
Hash identifier: n18XED5cgI6mGkTQ15ZCukLRGLGXn03gKR7Vom2QZew=
Subject key identifier: BC:4C:D2:5A:7D:7E:72:23:77:8F:05:C8:93:4A:10:27:3D:FC:4E:AE
Authority key identifier: E6:A8:B9:2D:4C:59:7F:6C:04:4F:77:25:28:54:8F:9C:91:29:A0:D3
Certificate issuer: /CN=e6a8b92d4c597f6c044f772528548f9c9129a0d3
Certificate serial: 01964FDA2409FEA9698567B8A9AB3AA81C83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
Manifest number: 11D9
Signing time: Sat 19 Apr 2025 21:00:18 +0000
Manifest this update: Sat 19 Apr 2025 21:00:18 +0000
Manifest next update: Sun 20 Apr 2025 21:00:18 +0000
Files and hashes: 1: 5qi5LUxZf2wET3clKFSPnJEpoNM.crl (hash: 4K6kuryw061hsjmAD5vvH0nqsksgEylqWJFxEdC6NGU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:da:24:09:fe:a9:69:85:67:b8:a9:ab:3a:a8:1c:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6a8b92d4c597f6c044f772528548f9c9129a0d3
Validity
Not Before: Apr 19 21:00:18 2025 GMT
Not After : Apr 20 21:00:18 2025 GMT
Subject: CN=bc4cd25a7d7e7223778f05c8934a10273dfc4eae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:45:eb:4f:6d:de:50:be:1d:d5:a1:40:f6:72:
26:96:73:c5:55:bf:2f:ea:13:8f:16:0a:9a:00:c5:
23:24:64:33:55:3f:b8:fa:87:cc:5b:9e:50:af:0f:
be:24:0c:86:a2:42:db:39:fa:30:05:c3:f5:f4:61:
c1:59:47:5e:83:67:1c:36:14:76:ea:fc:0d:87:f9:
9f:16:6e:39:a0:30:b6:88:b0:29:3f:02:f7:34:1d:
ae:a3:27:c5:ea:91:62:28:b6:16:20:1d:dd:84:f0:
c6:f9:64:e2:72:7a:c4:ce:47:15:6c:f6:b1:71:5e:
e0:33:b9:08:25:9b:b7:8d:39:df:2f:eb:8f:9f:e7:
ae:05:a9:11:cd:09:dd:3f:9b:6c:3e:75:4c:bc:f6:
0c:36:22:79:8c:5c:a3:13:8c:90:cf:e8:44:0d:3c:
91:16:77:a1:f4:64:b6:ea:24:51:aa:58:e3:b9:09:
8a:9a:9a:41:2b:43:52:b1:df:87:70:e7:d2:25:8e:
65:82:2a:42:77:e1:39:46:d4:6a:4c:0a:40:22:17:
b1:5d:af:58:2e:97:f1:9a:a2:a5:4b:1d:cc:2e:b9:
13:9e:97:54:44:5e:ee:a0:0c:5f:e7:88:13:ce:d8:
f9:c2:fb:c4:bf:3d:11:24:44:29:b3:26:83:d3:ee:
eb:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:4C:D2:5A:7D:7E:72:23:77:8F:05:C8:93:4A:10:27:3D:FC:4E:AE
X509v3 Authority Key Identifier:
keyid:E6:A8:B9:2D:4C:59:7F:6C:04:4F:77:25:28:54:8F:9C:91:29:A0:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:d2:3d:e4:c5:ae:69:47:07:eb:89:3d:a7:79:37:32:84:c5:
78:b1:bc:97:bc:ba:35:e5:69:d3:35:6a:57:0b:d4:64:a9:19:
9c:c7:ad:41:94:c0:be:13:b2:6a:cb:bd:4b:56:92:f8:19:5c:
b1:1d:02:0c:e6:86:6d:9e:a3:8d:54:aa:5c:f3:56:4c:f1:e4:
c7:74:80:62:ce:cb:d2:0c:08:32:5c:4f:26:47:79:ac:9c:0f:
a5:a9:bf:f1:50:fe:61:e7:62:7b:d3:65:81:82:f7:6a:83:b9:
46:64:82:21:7e:a6:44:76:bf:30:82:65:4b:a5:0e:c0:1b:3c:
6d:bc:54:23:58:5b:50:52:e0:a1:b0:7e:8e:0f:ea:06:da:53:
eb:0b:26:d4:19:7a:3a:42:95:0d:c3:35:e7:ff:c0:18:ab:c1:
ad:e6:a8:d8:de:fe:b1:50:73:ed:ae:29:9b:da:49:c1:8e:ee:
33:f5:2e:9a:d9:65:48:ec:b4:1e:4d:8d:34:f4:47:39:3e:15:
f4:21:4a:f5:46:7f:7a:04:52:63:9c:87:8d:fa:46:1b:10:cd:
93:08:97:5b:fe:61:6d:b6:2b:a5:e6:9f:a3:66:3f:9a:6e:bb:
7a:93:28:e2:c2:eb:07:80:c7:60:97:54:2b:2b:9d:34:4e:58:
20:1e:9a:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:17:29 2025 by rpki-client