Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
File: tY6n73bYACz8pmxSD3ybYIo5XZU.mft (raw, json)
Hash identifier: DckGlBUvdNEmqr8+jKplowh2yrXBqtYvX1o1xJtapo8=
Subject key identifier: 87:A1:71:EC:83:58:76:A2:43:D1:42:EC:F0:BD:83:83:22:D6:09:2B
Authority key identifier: B5:8E:A7:EF:76:D8:00:2C:FC:A6:6C:52:0F:7C:9B:60:8A:39:5D:95
Certificate issuer: /CN=b58ea7ef76d8002cfca66c520f7c9b608a395d95
Certificate serial: 01964EC78B43534349DEFDDA616AB75D95B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
Manifest number: 048B
Signing time: Sat 19 Apr 2025 16:00:22 +0000
Manifest this update: Sat 19 Apr 2025 16:00:22 +0000
Manifest next update: Sun 20 Apr 2025 16:00:22 +0000
Files and hashes: 1: tY6n73bYACz8pmxSD3ybYIo5XZU.crl (hash: 9jD1D9VV22+2zTMG/oFF8Yh4DDZRqMf8Jvl9Ad2YNX4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:c7:8b:43:53:43:49:de:fd:da:61:6a:b7:5d:95:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b58ea7ef76d8002cfca66c520f7c9b608a395d95
Validity
Not Before: Apr 19 16:00:22 2025 GMT
Not After : Apr 20 16:00:22 2025 GMT
Subject: CN=87a171ec835876a243d142ecf0bd838322d6092b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:3b:9b:e8:1f:03:3b:be:19:3b:1b:68:4d:75:
56:07:5e:f2:8e:76:ec:f8:00:86:e3:5f:5b:ab:f2:
30:ef:86:75:d0:fc:a3:b4:80:d0:b6:5f:8d:8b:2b:
3b:1a:6d:20:e0:64:49:2c:15:eb:c0:0e:87:b3:b3:
fc:c0:ae:32:c0:cb:1e:87:d9:34:83:ab:6f:40:c4:
bb:f4:98:64:5c:48:6b:54:fb:5a:e7:a6:24:8d:83:
51:d0:d7:7a:a3:51:96:dd:76:3c:f5:54:05:12:5d:
d7:9c:4c:7d:f7:eb:1e:52:14:e9:56:fc:c8:5e:a6:
69:a0:ff:e1:3d:4b:7c:d4:b9:c5:22:07:81:8d:ea:
35:83:90:77:c9:51:68:57:47:2c:1a:b5:a0:bf:3a:
81:fb:b0:5c:7a:5b:a8:86:46:86:30:7b:d2:ec:85:
c3:f5:28:72:d1:b6:21:d1:75:e2:d8:31:4c:3a:c5:
0e:ca:7b:74:bb:d6:dd:72:9e:01:b7:6c:d1:8a:5a:
ae:b3:40:53:18:0d:fe:7d:ea:84:01:07:14:30:07:
a8:e2:4a:42:f4:78:ce:6b:74:6c:c8:ba:68:b6:57:
ee:17:24:98:41:35:e3:9d:e7:f0:a9:f8:c7:0e:69:
5e:79:fc:f7:82:57:7f:31:dc:f1:52:f5:d0:6a:ce:
fb:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:A1:71:EC:83:58:76:A2:43:D1:42:EC:F0:BD:83:83:22:D6:09:2B
X509v3 Authority Key Identifier:
keyid:B5:8E:A7:EF:76:D8:00:2C:FC:A6:6C:52:0F:7C:9B:60:8A:39:5D:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:9a:13:b9:ad:fa:aa:82:0e:dd:ea:6a:fe:76:e4:a4:8c:bf:
a0:9a:c4:c2:33:a6:07:18:8e:85:90:7a:17:12:05:f3:e6:f6:
14:4c:9c:d6:80:aa:12:48:91:7f:41:88:19:ab:83:a7:1f:8f:
4d:bf:86:f2:59:3e:f8:fa:3a:b7:4a:ab:39:af:d1:5b:9d:59:
4e:45:78:9a:1f:1a:0e:7e:9d:de:ef:af:a9:bf:3d:67:54:e4:
be:f6:61:5f:6b:3d:fb:22:8b:0c:3d:00:0f:d8:02:d9:8b:c5:
12:4d:4e:cf:85:b0:f8:b5:cc:04:7a:ea:93:23:a2:d1:5f:9b:
ca:4c:5c:ea:5b:a2:c7:52:18:7b:f4:63:d2:6a:83:cb:d7:0e:
74:f5:f8:4d:23:a9:48:0e:25:31:75:d9:73:48:e0:90:ee:4d:
d7:c1:c6:99:3a:d8:3d:51:07:73:99:0d:3f:4b:11:80:c6:52:
77:de:1b:a6:04:13:1a:76:d6:3b:78:61:63:84:7b:bd:f5:bc:
ee:93:ce:12:37:15:50:03:48:74:a2:2e:b7:1f:ac:c4:fd:88:
a6:07:74:3e:6e:d0:fb:cd:c7:09:a6:28:91:52:90:62:d9:b0:
7e:cb:06:5c:de:46:d8:98:d5:7a:44:f5:53:46:7a:b6:e8:ae:
0e:73:d3:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 01:59:15 2025 by rpki-client