Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
File: K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft (raw, json)
Hash identifier: uiS6Ti02/ICOcvTGB8P6C+1lBseObxXKt78sikoFOnQ=
Subject key identifier: 60:B4:3A:D0:C6:C2:C3:43:96:2A:BB:A0:B0:DC:86:B7:49:2A:04:C5
Authority key identifier: 2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
Certificate issuer: /CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Certificate serial: 01958EF383C30BD404A32D8FBB492A535A13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
Manifest number: 0664
Signing time: Thu 13 Mar 2025 10:01:18 +0000
Manifest this update: Thu 13 Mar 2025 10:01:18 +0000
Manifest next update: Fri 14 Mar 2025 10:01:18 +0000
Files and hashes: 1: K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl (hash: K6VBFpaD+UVvxba+xEIDFKlM0nwygGJ3w2pLKybkQbA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8e:f3:83:c3:0b:d4:04:a3:2d:8f:bb:49:2a:53:5a:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Validity
Not Before: Mar 13 10:01:18 2025 GMT
Not After : Mar 14 10:01:18 2025 GMT
Subject: CN=60b43ad0c6c2c343962abba0b0dc86b7492a04c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:04:39:ac:9f:5f:c4:38:56:09:52:bd:65:b7:
01:5f:c8:25:c7:bf:17:e7:43:c8:70:16:3d:cd:b6:
f2:8a:44:4a:0f:28:45:83:bb:6e:0f:d5:32:9c:d7:
1c:d6:52:57:1a:0c:ec:fe:e9:da:f0:5a:dd:76:df:
84:3b:89:a2:c1:36:51:4c:0f:8d:eb:99:a1:fc:76:
92:6a:33:e5:43:3e:ce:ab:4f:3f:8a:7c:55:68:e3:
fd:30:d8:fe:84:dd:4b:3f:90:09:19:9a:ed:73:60:
e3:85:1b:1e:ef:96:58:8c:07:4f:9e:c1:90:b7:26:
3a:79:40:a8:8c:54:44:fc:be:76:4a:00:c7:d6:cf:
71:f6:9f:9e:20:ce:a3:d9:2b:c6:9d:cc:b4:1f:17:
b3:23:8d:11:9f:07:95:af:92:21:5c:53:2a:47:a9:
18:ed:33:9c:7b:82:40:9c:17:53:b1:5f:c2:d1:76:
15:16:fc:b8:a6:59:a0:75:a6:35:0b:e2:14:36:5f:
58:f3:1e:8b:e5:7d:0e:c2:0b:29:20:62:b9:9e:7f:
21:75:a6:1c:ca:a9:4d:78:32:ed:02:fa:eb:8d:dc:
ae:0b:67:e7:38:a2:30:ec:7f:c4:dd:a8:54:e4:27:
48:bb:0d:50:55:e8:37:a7:46:6f:60:d1:66:8d:bd:
f5:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:B4:3A:D0:C6:C2:C3:43:96:2A:BB:A0:B0:DC:86:B7:49:2A:04:C5
X509v3 Authority Key Identifier:
keyid:2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:b5:40:b1:9c:dc:5a:86:be:1c:e1:b2:c5:3f:d1:ab:90:15:
d3:16:9a:9d:65:9c:2e:17:28:6e:4a:67:4d:a5:30:e9:5a:87:
f6:31:aa:cf:82:f5:49:e9:3d:20:f1:27:9b:24:90:0d:f8:46:
20:b5:21:d2:7e:cd:9b:f5:15:92:be:75:34:6d:a3:6f:d2:5c:
e3:a1:15:30:41:fb:60:69:dd:fa:f3:51:b4:3e:89:a0:b8:e2:
4f:cb:d8:ac:db:b6:86:11:52:0d:36:ea:e7:6e:99:d4:2f:c6:
55:ed:a2:91:9f:02:47:60:de:13:5e:ff:9f:c7:d9:90:1a:40:
a5:ec:7d:34:8e:52:60:b2:16:c1:72:58:29:b2:fb:50:9b:bc:
87:7d:e0:d1:98:2c:ff:37:00:37:6b:2b:d8:02:6a:36:61:e0:
d3:56:27:e6:0a:53:63:80:a8:e4:76:dd:6b:83:4b:96:ac:22:
84:e5:5d:a2:ab:81:6f:52:47:32:0c:2c:1a:6f:26:cc:bb:26:
4f:0d:44:1b:37:1e:32:ea:2e:c9:48:8f:5c:62:0f:79:ee:df:
c3:12:f4:c1:ce:ac:0d:7a:80:89:14:7e:d7:03:bc:fd:e0:0c:
cf:89:c7:a7:ea:23:ac:74:d0:da:7a:88:ab:4f:ae:d1:0f:16:
e7:15:75:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:10:49 2025 by rpki-client