Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
File: cub9InHd4QiG2X_xRwPlgaIEtl4.mft (raw, json)
Hash identifier: hg5shcaDZc/GK0FIeB4x3D50A5g9ZEId4Ey3OBXQXv8=
Subject key identifier: 64:93:32:F2:22:47:DF:B4:41:62:7A:ED:67:5C:61:FF:34:F4:84:FF
Authority key identifier: 72:E6:FD:22:71:DD:E1:08:86:D9:7F:F1:47:03:E5:81:A2:04:B6:5E
Certificate issuer: /CN=72e6fd2271dde10886d97ff14703e581a204b65e
Certificate serial: 019651C8A63857F245E922BF7E1DA3AF4C62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
Manifest number: 04D0
Signing time: Sun 20 Apr 2025 06:00:26 +0000
Manifest this update: Sun 20 Apr 2025 06:00:26 +0000
Manifest next update: Mon 21 Apr 2025 06:00:26 +0000
Files and hashes: 1: cub9InHd4QiG2X_xRwPlgaIEtl4.crl (hash: vyxDohaLqNcQ0x7mS9XcOiP9SyjWBqsOiFPwWVq4q28=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:c8:a6:38:57:f2:45:e9:22:bf:7e:1d:a3:af:4c:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72e6fd2271dde10886d97ff14703e581a204b65e
Validity
Not Before: Apr 20 06:00:26 2025 GMT
Not After : Apr 21 06:00:26 2025 GMT
Subject: CN=649332f22247dfb441627aed675c61ff34f484ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:39:77:f5:f6:1f:e6:46:2a:5f:53:aa:b9:3e:
dd:62:e9:64:9c:b0:a8:1d:24:f5:10:80:15:88:05:
8c:4d:dd:d3:ca:3b:9a:46:8d:36:45:a7:d7:1c:2f:
c9:bd:c1:6a:5e:c8:9e:2e:de:ca:7b:4f:56:4d:75:
c7:8a:47:ab:ca:7f:5a:14:88:4b:d4:49:66:1d:7a:
55:f7:ea:d1:0c:40:78:77:48:0a:89:24:fc:df:f3:
12:7f:9e:e7:a8:6f:d1:44:1f:5a:ad:33:bc:d7:d0:
78:9c:e5:fb:b3:5f:89:0c:68:68:ec:e3:f7:a6:f5:
8d:83:91:1d:d6:16:49:00:a3:63:6d:2c:d8:4b:09:
a4:5a:43:4a:0e:97:5f:e3:bc:a7:65:09:f5:96:02:
1b:4f:68:9d:d2:d4:db:8b:aa:53:a4:19:f1:87:e3:
b3:42:91:f7:8b:98:e1:c8:29:7d:db:f8:95:20:b9:
c3:5e:65:e2:a6:25:ca:f5:0e:5d:33:b6:28:37:c7:
d3:dd:6e:79:10:77:1e:ba:91:ea:32:71:e4:07:00:
5d:8b:49:d0:43:41:ab:fd:2f:97:3f:f1:93:ca:3d:
1d:8c:10:2f:46:27:1b:8d:6a:31:af:67:ee:65:40:
cb:78:44:e5:e2:67:78:29:ba:cc:6f:07:f7:3f:2e:
b7:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:93:32:F2:22:47:DF:B4:41:62:7A:ED:67:5C:61:FF:34:F4:84:FF
X509v3 Authority Key Identifier:
keyid:72:E6:FD:22:71:DD:E1:08:86:D9:7F:F1:47:03:E5:81:A2:04:B6:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:97:31:a9:24:da:73:41:df:2c:7c:36:71:4e:9e:a7:c0:5f:
b2:36:de:72:2b:ca:5a:28:50:cb:13:5a:76:7e:09:6b:fe:72:
08:8a:c6:11:c3:2f:8c:33:ff:e9:81:c0:cf:97:17:e4:03:58:
89:f9:ad:40:be:6e:e0:9e:d8:c8:b2:b4:b1:69:ee:a2:65:94:
19:11:91:71:7b:4a:ac:23:f0:7f:79:f4:8d:86:88:d7:b7:ea:
fb:57:04:c8:c1:d2:92:8c:d1:f3:ac:7c:fa:f5:9b:d7:6c:2b:
d4:7f:bb:c3:b8:7d:e5:a9:f1:8e:80:ac:25:15:1f:f2:b1:9a:
66:af:5f:b7:41:d5:09:4d:d6:a9:60:50:4f:dc:31:af:8a:03:
08:47:c3:b7:81:81:25:c3:74:05:2f:4c:42:fd:29:e8:24:1c:
55:5b:11:20:a0:17:ad:8b:4a:c9:1e:7d:a0:aa:c2:a0:31:d2:
ad:14:8a:19:70:f3:ea:40:a7:a6:bc:f9:aa:39:06:00:56:e1:
94:d4:e4:6c:db:76:f3:39:29:6b:c2:39:27:59:3e:cf:fb:3a:
6b:62:a5:de:b4:7e:c7:b1:a1:9f:3a:6f:5e:ad:47:3e:d3:b2:
c9:2e:b2:54:fe:48:e1:10:ac:74:0f:26:15:c6:b7:5b:8f:94:
bc:f7:61:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:59:26 2025 by rpki-client