Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft
File: 14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft (raw, json)
Hash identifier: 274E6kGFIGpRoevQV0bSh50nP62xKjQeJEirU6GQu+o=
Subject key identifier: 02:70:F8:DE:A8:9D:15:1B:D6:2E:FD:75:81:24:0C:CD:43:37:D2:63
Authority key identifier: D7:88:85:19:81:CF:B3:C1:56:24:B6:E9:7F:60:A3:D9:91:D6:D9:69
Certificate issuer: /CN=d788851981cfb3c15624b6e97f60a3d991d6d969
Certificate serial: 0196550073874016F674421AE3E2E76BFF58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft
Manifest number: 03D4
Signing time: Sun 20 Apr 2025 21:00:15 +0000
Manifest this update: Sun 20 Apr 2025 21:00:15 +0000
Manifest next update: Mon 21 Apr 2025 21:00:15 +0000
Files and hashes: 1: 14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.crl (hash: 0QCb5xKOAVRUC7D7RqrKhhlDd7KZI5iewCqf86iYjrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft
rsync://rpki.ripe.net/repository/DEFAULT/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:00:73:87:40:16:f6:74:42:1a:e3:e2:e7:6b:ff:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d788851981cfb3c15624b6e97f60a3d991d6d969
Validity
Not Before: Apr 20 21:00:15 2025 GMT
Not After : Apr 21 21:00:15 2025 GMT
Subject: CN=0270f8dea89d151bd62efd7581240ccd4337d263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:34:7d:05:37:76:94:2f:a5:3a:f0:48:e7:9f:
3f:50:b3:b8:29:42:52:3a:41:19:6c:b6:05:6d:c6:
a2:c1:17:97:17:96:66:6c:d3:78:42:af:23:66:c4:
9a:57:f5:0e:f9:c4:df:30:c1:3c:1c:e6:94:12:9c:
c4:4e:ed:16:50:20:df:0c:6b:36:8d:af:91:c8:fc:
3a:85:9d:ea:5a:00:ba:e2:46:3b:55:af:40:22:9c:
86:f1:13:35:1c:6e:50:b8:7d:98:a4:1d:e3:f0:d2:
cd:6b:a7:32:47:ff:ac:18:25:02:eb:cf:2e:65:5a:
bd:88:37:f7:04:3e:ed:4b:30:2c:79:cf:1f:43:58:
46:20:16:7a:fc:42:60:87:ee:a3:41:7a:24:7f:c7:
d8:5d:cb:cc:ec:8c:fa:e1:e3:b4:c3:4a:60:3b:e9:
64:2f:14:8d:40:6d:c9:00:be:ed:40:9c:0a:2d:d7:
36:c6:b2:34:3d:d5:23:ff:24:cd:03:30:3b:81:25:
da:1c:79:9a:50:9d:92:38:09:d1:53:6a:df:5b:5f:
36:af:ac:d9:23:d2:55:91:2d:07:e0:d2:d7:e0:43:
b0:8b:73:e5:5b:10:8b:01:f2:e4:51:24:b0:a2:90:
ab:d1:f3:8e:ad:47:a7:6e:ce:29:a3:35:fd:6c:75:
53:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:70:F8:DE:A8:9D:15:1B:D6:2E:FD:75:81:24:0C:CD:43:37:D2:63
X509v3 Authority Key Identifier:
keyid:D7:88:85:19:81:CF:B3:C1:56:24:B6:E9:7F:60:A3:D9:91:D6:D9:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:8d:4c:f3:05:ee:a5:4e:82:18:67:40:86:41:ab:d8:4a:d1:
83:8f:8b:21:84:d8:a5:96:52:96:3f:11:04:4a:6e:89:d3:38:
38:18:03:b5:ee:0a:ac:23:56:41:4e:10:58:c5:45:c7:13:03:
01:19:f9:2c:e0:ce:6c:52:c3:7d:f2:01:bd:99:d6:97:f7:e2:
9c:e7:55:a2:4b:c7:05:78:8c:76:bf:34:e4:86:90:4c:f1:44:
8c:fb:a4:5f:dc:4f:31:2a:09:5f:73:7a:89:bc:ba:b4:bc:09:
5b:16:54:b3:f3:76:08:35:64:4e:25:c3:94:72:2e:80:8d:27:
07:3a:db:44:05:6d:64:a6:42:f5:ff:8b:2c:82:7c:20:72:7d:
a5:13:1d:4f:da:cb:dc:a1:14:68:a5:3a:c0:f0:df:b9:3e:63:
f2:97:f5:31:73:63:d5:4f:55:c4:7f:f5:ec:3f:76:59:3a:4f:
1a:89:b3:f7:d3:73:57:98:db:12:05:1a:20:f0:26:ea:a6:49:
04:d5:2d:07:c1:40:59:c6:1b:99:0c:77:a4:9b:25:3a:59:2b:
77:9c:2d:76:be:df:cc:bf:fb:8e:b8:4f:18:09:85:bd:dd:8e:
fd:9e:e2:4d:b6:35:1f:1a:8f:82:34:b4:54:28:80:a5:03:c9:
ca:84:07:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:26:04 2025 by rpki-client