Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
File: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft (raw, json)
Hash identifier: pK7DGJrjRuxZIYq2zyFL8W0j5cRYwB3OtVOxXepj9uw=
Subject key identifier: 66:08:CE:85:15:21:2A:C2:E4:D7:09:89:0E:DD:D3:0B:B9:33:3D:CE
Authority key identifier: 53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6
Certificate issuer: /CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6
Certificate serial: 019651FFACCAD44FF3B24C202558970E383B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
Manifest number: 121F
Signing time: Sun 20 Apr 2025 07:00:32 +0000
Manifest this update: Sun 20 Apr 2025 07:00:32 +0000
Manifest next update: Mon 21 Apr 2025 07:00:32 +0000
Files and hashes: 1: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl (hash: JN4wF/mj+n+9fbghkZ6bPLXRvlDUj3WV0unI83lYwDw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:ff:ac:ca:d4:4f:f3:b2:4c:20:25:58:97:0e:38:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6
Validity
Not Before: Apr 20 07:00:32 2025 GMT
Not After : Apr 21 07:00:32 2025 GMT
Subject: CN=6608ce8515212ac2e4d709890eddd30bb9333dce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:8e:49:0c:bb:51:9f:f2:92:43:47:5a:e1:c2:
0a:a2:ea:36:a5:08:5c:72:4b:c8:52:d5:82:e4:d5:
4a:9a:2f:a8:37:e2:18:77:13:5d:b9:7a:ed:5f:75:
1d:5f:ff:59:58:98:26:8d:8e:2f:fd:85:e5:59:2d:
cc:5e:b2:0d:e2:e6:e6:49:1a:c3:0a:eb:19:d4:8b:
7b:e7:07:14:c6:1c:a0:5b:09:18:4e:5c:38:33:db:
cf:44:72:0d:3f:3b:34:76:8f:de:df:cb:37:45:6c:
a0:46:f1:52:dd:60:27:c3:2d:93:11:f1:68:7b:80:
be:12:0e:59:b8:13:34:60:d1:a4:75:b9:55:94:de:
5a:4e:c4:b0:9f:fb:c4:7e:2a:c2:12:76:0d:32:7b:
2d:b1:0e:fe:fd:83:7e:ae:f6:05:e2:38:f1:f5:5a:
39:fe:b3:73:60:06:8c:b7:f7:2c:f4:de:7b:53:f0:
e1:b4:99:78:09:47:a3:a2:9a:b8:41:fb:0b:fe:2e:
e5:5c:8c:2c:74:18:a5:ff:0e:94:2a:c3:4e:64:cb:
d7:70:3d:54:d6:6b:44:90:a0:3c:70:2e:1c:a5:92:
d2:b8:6a:42:67:b8:87:72:0e:04:3d:59:41:2f:d5:
53:09:68:5b:d7:2f:5c:6d:7d:82:79:41:7a:1c:cf:
01:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:08:CE:85:15:21:2A:C2:E4:D7:09:89:0E:DD:D3:0B:B9:33:3D:CE
X509v3 Authority Key Identifier:
keyid:53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:56:9c:a6:fc:c2:4c:db:68:61:4a:a8:a0:8a:95:08:ec:21:
25:49:61:4e:66:b6:a8:f5:26:0a:34:fb:92:b3:5c:0c:f1:c7:
35:d6:72:49:1f:7c:e2:70:72:46:00:85:4d:2e:44:1a:b9:f4:
d4:5b:be:4d:0e:f6:b8:bb:66:77:30:04:10:8d:e9:eb:03:07:
72:52:fd:71:82:5b:01:33:5c:08:63:84:4d:d3:bd:cc:ac:e0:
e9:15:cc:94:f7:4d:8e:fb:3f:bc:fb:04:61:ba:44:07:40:22:
2b:50:9f:d0:bb:a5:16:07:e9:07:10:34:db:5e:bf:88:26:56:
c4:e3:d8:37:f0:13:cc:ab:ef:6f:bc:bd:96:ca:38:c3:56:27:
36:03:35:69:41:95:fd:11:a6:52:2a:4f:80:7c:52:25:37:52:
e3:f2:07:62:2a:9c:4e:7a:bf:50:ee:89:47:d5:55:d4:74:c2:
52:df:d2:6b:c2:bb:09:86:fe:9b:b5:74:e3:fc:d5:c4:21:eb:
00:9c:2e:49:a7:c1:39:41:e9:88:6c:9e:f9:6e:2d:0d:c2:81:
07:8b:a2:4b:63:d7:83:82:e9:18:d7:5f:5a:e9:ec:08:2e:70:
eb:b4:aa:c6:58:87:28:76:7a:be:fa:e4:eb:ff:f0:ad:44:7f:
77:c8:64:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:15:15 2025 by rpki-client