Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/20cfa4-e08b-4b70-9362-97dc7b535b1d/1/JfgKOI5PDiZBTOq-q036hBkdgUA.mft
File: JfgKOI5PDiZBTOq-q036hBkdgUA.mft (raw, json)
Hash identifier: MsGGIQ74ELZe7OHbMi6FV7+S/hLir/nwHJscOaAJhnY=
Subject key identifier: DE:03:AC:C8:AB:71:A5:09:6A:50:94:9A:9E:47:75:D5:7D:43:C9:D1
Authority key identifier: 25:F8:0A:38:8E:4F:0E:26:41:4C:EA:BE:AB:4D:FA:84:19:1D:81:40
Certificate issuer: /CN=25f80a388e4f0e26414ceabeab4dfa84191d8140
Certificate serial: 01964632F3BDA059B4F8220B7D257649AEDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JfgKOI5PDiZBTOq-q036hBkdgUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/20cfa4-e08b-4b70-9362-97dc7b535b1d/1/JfgKOI5PDiZBTOq-q036hBkdgUA.mft
Manifest number: 13FE
Signing time: Fri 18 Apr 2025 00:01:06 +0000
Manifest this update: Fri 18 Apr 2025 00:01:06 +0000
Manifest next update: Sat 19 Apr 2025 00:01:06 +0000
Files and hashes: 1: JfgKOI5PDiZBTOq-q036hBkdgUA.crl (hash: B7/2D3VEvZgKw4CcovVXVhiV8NIwa6rqywSK5oPEWmc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/20cfa4-e08b-4b70-9362-97dc7b535b1d/1/JfgKOI5PDiZBTOq-q036hBkdgUA.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/20cfa4-e08b-4b70-9362-97dc7b535b1d/1/JfgKOI5PDiZBTOq-q036hBkdgUA.mft
rsync://rpki.ripe.net/repository/DEFAULT/JfgKOI5PDiZBTOq-q036hBkdgUA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 18:56:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:46:32:f3:bd:a0:59:b4:f8:22:0b:7d:25:76:49:ae:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25f80a388e4f0e26414ceabeab4dfa84191d8140
Validity
Not Before: Apr 18 00:01:06 2025 GMT
Not After : Apr 19 00:01:06 2025 GMT
Subject: CN=de03acc8ab71a5096a50949a9e4775d57d43c9d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:73:3c:97:44:d5:db:ef:2d:11:97:7e:a0:14:
b0:f5:ef:2b:91:b5:e6:2f:f8:0e:af:54:3b:9b:f2:
15:4e:f2:1b:a6:d4:d7:63:8c:41:f3:e2:e9:f8:2d:
a3:0b:e3:28:dd:1a:31:0a:59:51:68:7c:c3:b7:88:
bd:e1:f1:0a:57:e6:0d:52:9a:44:82:e8:83:f3:06:
f9:a0:68:be:8e:23:8d:c5:5c:d6:c2:a4:0e:5d:5b:
20:56:36:5f:1e:77:d8:6c:33:02:f3:f5:0b:a0:d0:
f5:ef:72:4c:1d:36:57:27:8d:d0:c3:15:cb:50:0c:
11:1e:7e:c9:d7:68:88:73:4a:1c:74:6d:51:70:5c:
aa:c4:77:61:8e:7e:a9:d0:97:dc:89:55:a3:f7:91:
65:a1:f5:e7:d8:84:6f:ec:56:71:81:ff:37:af:80:
a4:fa:ad:8b:2c:16:e4:b8:9d:a9:75:61:3c:98:81:
bc:ef:ac:23:90:e2:48:d7:c4:7d:30:45:4e:83:2f:
ef:c3:06:c5:03:5d:be:05:d0:b7:2f:d1:d0:b3:fe:
57:ae:77:6f:eb:e4:ff:83:ab:c8:18:5f:15:68:dd:
e8:f8:62:60:88:0e:f3:79:ae:a6:a4:e6:ab:57:f6:
17:6b:fd:62:6a:2d:cd:f0:df:a4:dd:ac:22:10:ba:
79:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:03:AC:C8:AB:71:A5:09:6A:50:94:9A:9E:47:75:D5:7D:43:C9:D1
X509v3 Authority Key Identifier:
keyid:25:F8:0A:38:8E:4F:0E:26:41:4C:EA:BE:AB:4D:FA:84:19:1D:81:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JfgKOI5PDiZBTOq-q036hBkdgUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20cfa4-e08b-4b70-9362-97dc7b535b1d/1/JfgKOI5PDiZBTOq-q036hBkdgUA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/20cfa4-e08b-4b70-9362-97dc7b535b1d/1/JfgKOI5PDiZBTOq-q036hBkdgUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:ac:87:68:a0:d0:c3:19:84:c9:c5:5a:9c:72:11:39:5a:f4:
ae:b1:f1:de:82:c3:10:b8:5a:a4:e2:2d:8f:4b:00:50:a8:a2:
9c:a2:3f:dc:68:f9:bc:5d:69:9d:8e:0f:0f:13:0a:47:25:d8:
db:7b:bf:41:05:12:aa:e1:68:76:eb:1c:0d:ee:cd:ba:06:d8:
65:f8:c6:33:20:b9:47:e8:d4:05:ec:43:a4:af:c4:79:d3:5b:
17:e9:d3:bb:77:44:87:93:f6:74:fb:bd:07:d4:6a:26:ff:08:
a8:f2:bc:f6:28:7b:cf:3c:5f:9d:6a:e6:5b:53:b7:04:c9:e2:
b6:2b:0c:ba:e7:89:85:e4:5a:99:02:52:a7:ec:df:37:20:65:
86:db:f4:7e:0b:39:66:c6:f1:48:3d:04:54:dc:70:af:e3:7b:
f0:e7:2c:b0:5b:56:1e:99:50:e1:0c:74:c8:d9:11:9a:bc:9c:
fc:75:c9:73:7b:54:eb:06:2f:d6:ef:87:cf:f0:87:4f:65:ca:
ee:a6:a9:b0:15:b8:ef:95:02:bc:02:ce:2b:8d:b8:3a:9a:37:
02:bb:dc:89:ca:f7:17:26:02:94:f8:74:bf:72:fa:3e:b9:64:
f5:b6:57:a1:6b:d0:a3:03:84:a0:db:0a:ec:59:92:f2:a7:f8:
7f:09:0e:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 04:08:57 2025 by rpki-client