Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
File: dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft (raw, json)
Hash identifier: s2iv8BP1cROw3wlkE98NCMBWp76YzOxfqbg30mvqOj0=
Subject key identifier: FC:1B:BE:EF:FB:28:1E:F2:27:C5:6F:9E:96:AF:5E:02:32:37:0F:BB
Authority key identifier: 76:07:F6:9D:EE:43:AC:01:D7:DF:EA:CA:9B:76:A2:40:EA:6E:F3:66
Certificate issuer: /CN=7607f69dee43ac01d7dfeaca9b76a240ea6ef366
Certificate serial: 01965CF1FB4A468322A7768248CEB7062C19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
Manifest number: 032D
Signing time: Tue 22 Apr 2025 10:01:24 +0000
Manifest this update: Tue 22 Apr 2025 10:01:24 +0000
Manifest next update: Wed 23 Apr 2025 10:01:24 +0000
Files and hashes: 1: dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl (hash: zIm8GLlTffMWCCK1TTdOSM7Oa4H2bp7Ojc3lEXPkLjA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 10:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:f1:fb:4a:46:83:22:a7:76:82:48:ce:b7:06:2c:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7607f69dee43ac01d7dfeaca9b76a240ea6ef366
Validity
Not Before: Apr 22 10:01:24 2025 GMT
Not After : Apr 23 10:01:24 2025 GMT
Subject: CN=fc1bbeeffb281ef227c56f9e96af5e0232370fbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f9:27:ce:8e:2b:ae:4d:73:bf:bc:ad:e6:73:
bf:b3:12:a0:48:fc:74:db:6e:b4:eb:38:33:0e:85:
49:2c:69:53:29:fe:e8:38:3a:c0:87:68:18:de:e8:
ff:9b:fe:1f:7a:81:8a:97:a8:ad:f1:73:bf:4a:59:
5b:6d:82:17:63:79:44:82:0a:46:b2:30:39:f2:7a:
12:65:9f:f1:74:70:38:09:93:98:6a:f3:45:a4:05:
ed:94:4b:8a:5b:d0:35:8b:c1:fc:51:de:0d:a8:fc:
69:20:ea:71:02:fc:0f:9f:2f:85:1a:a0:0f:c8:80:
8b:7e:20:93:6b:cb:f6:5e:39:1a:59:18:0a:22:0b:
9b:75:d6:77:ed:19:df:32:d8:a5:50:89:e5:59:06:
ca:5e:eb:b7:a1:68:98:af:0f:ec:f2:ed:c9:c3:8c:
be:d3:ed:f4:bc:95:d3:82:a0:80:cd:0d:00:20:8c:
dc:f0:64:a8:4c:d5:17:58:82:dc:04:06:a7:96:a4:
34:a7:2b:f6:73:f8:58:0d:94:69:65:42:c2:07:88:
7a:54:24:90:b5:e8:95:27:f3:9a:ee:85:05:bd:d2:
19:a5:1e:a5:af:a2:e7:f9:e8:ea:1c:e5:35:85:b9:
6a:a3:0f:14:d5:5d:a4:72:13:65:49:75:fb:2c:c2:
72:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:1B:BE:EF:FB:28:1E:F2:27:C5:6F:9E:96:AF:5E:02:32:37:0F:BB
X509v3 Authority Key Identifier:
keyid:76:07:F6:9D:EE:43:AC:01:D7:DF:EA:CA:9B:76:A2:40:EA:6E:F3:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dgf2ne5DrAHX3-rKm3aiQOpu82Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/2cdb3d-ab43-4526-8357-c0243a3bdafb/1/dgf2ne5DrAHX3-rKm3aiQOpu82Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:2b:b0:33:14:20:7b:37:47:da:9d:fe:5f:71:b1:0b:b1:bd:
3c:8e:9d:4a:70:1d:35:2d:b6:23:c1:ae:f0:15:72:45:82:d0:
13:5f:0e:95:73:5c:aa:e7:65:57:ed:b1:11:2e:32:ce:d9:a5:
c1:76:7e:24:73:13:e2:fd:85:0a:20:a9:b4:89:ed:dc:bf:8b:
67:b9:81:5d:96:1c:c2:7f:b8:e8:da:0a:5e:c0:c1:15:5b:86:
3b:d1:6f:1f:a2:c4:41:f9:56:9e:00:45:fd:3a:7b:12:6d:1f:
14:46:d7:61:b0:55:42:97:94:41:37:e7:8c:ea:67:1f:c1:b5:
c7:09:2d:15:c4:e0:39:e7:17:25:26:4b:66:6c:75:be:62:97:
dd:be:8c:45:91:51:a9:28:9f:26:d5:85:5b:e3:48:bc:96:87:
f4:2b:1d:9e:1c:d0:d0:e0:d3:42:9f:19:73:3e:5c:12:d8:fc:
95:6f:22:b6:f2:06:02:e2:68:94:99:4d:44:4e:3d:6f:86:68:
e4:00:c9:4b:1c:1f:bc:dd:a9:80:34:d8:42:38:c2:7f:52:aa:
75:97:80:57:36:ee:02:7b:03:d1:c4:34:17:7c:5f:66:2b:e8:
2d:10:dc:d8:9c:14:b5:ce:30:1a:b0:14:71:75:3e:9c:70:cf:
a7:58:a5:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 17:13:45 2025 by rpki-client