Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
File: JQou0RQnyhZIM4Ur1JydtT1j5js.mft (raw, json)
Hash identifier: 1cvmdZ/pr5+hPWUOAairMISx3p5TTSZ7AZacWZC/qO0=
Subject key identifier: 81:71:EC:37:00:01:30:44:D6:01:0F:CA:A4:1E:35:95:93:C3:32:EC
Authority key identifier: 25:0A:2E:D1:14:27:CA:16:48:33:85:2B:D4:9C:9D:B5:3D:63:E6:3B
Certificate issuer: /CN=250a2ed11427ca164833852bd49c9db53d63e63b
Certificate serial: 0196564A9510620784651C84B32E326A303C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JQou0RQnyhZIM4Ur1JydtT1j5js.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
Manifest number: 9B
Signing time: Mon 21 Apr 2025 03:00:50 +0000
Manifest this update: Mon 21 Apr 2025 03:00:50 +0000
Manifest next update: Tue 22 Apr 2025 03:00:50 +0000
Files and hashes: 1: JQou0RQnyhZIM4Ur1JydtT1j5js.crl (hash: Fb0FRxShpKQ2StGwzJhEH5wonFd2OF5Huxuda7qhqlo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
rsync://rpki.ripe.net/repository/DEFAULT/JQou0RQnyhZIM4Ur1JydtT1j5js.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:4a:95:10:62:07:84:65:1c:84:b3:2e:32:6a:30:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=250a2ed11427ca164833852bd49c9db53d63e63b
Validity
Not Before: Apr 21 03:00:50 2025 GMT
Not After : Apr 22 03:00:50 2025 GMT
Subject: CN=8171ec3700013044d6010fcaa41e359593c332ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4e:28:b3:2e:1e:a3:9d:de:d6:07:1e:85:7b:
ed:32:3b:6c:20:8e:bc:80:a4:36:0e:54:57:fb:f8:
aa:7e:a3:81:22:44:67:9e:bf:8f:bf:b4:a1:18:fd:
31:8c:d5:09:20:60:89:32:42:e4:d0:aa:17:66:79:
f4:0f:8a:87:72:b1:76:36:3b:df:91:fa:d9:17:df:
a4:64:37:01:c7:0d:c2:e7:d6:6a:13:47:c0:ae:ad:
4e:4c:0f:a9:78:8b:b2:69:69:18:6c:13:2f:f2:a8:
04:ff:3e:0c:5f:c5:2a:22:e3:c7:57:d2:a9:bc:c0:
7c:c6:12:f4:05:a9:14:a5:5a:a4:94:72:03:0e:c8:
4c:83:4f:37:b3:53:1c:90:d6:fe:1a:c0:72:e5:67:
c8:88:1c:a1:42:11:97:1c:d0:cf:0d:08:ec:4b:af:
90:62:1b:60:eb:09:31:46:12:19:35:cf:07:18:ed:
c0:a5:49:e1:d3:19:eb:bc:c9:78:d7:f6:c9:7e:52:
d3:56:04:d3:d8:54:54:fb:46:b1:c2:d5:8e:c8:8c:
77:ff:98:8d:06:b1:a1:75:31:83:43:9b:c2:6b:3c:
d0:34:50:55:15:42:96:70:72:17:5d:f9:94:9e:6c:
2c:0d:ec:a6:76:7b:18:c2:e6:91:81:52:20:83:d1:
6f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:71:EC:37:00:01:30:44:D6:01:0F:CA:A4:1E:35:95:93:C3:32:EC
X509v3 Authority Key Identifier:
keyid:25:0A:2E:D1:14:27:CA:16:48:33:85:2B:D4:9C:9D:B5:3D:63:E6:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JQou0RQnyhZIM4Ur1JydtT1j5js.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:87:30:2d:f8:39:ac:49:57:62:be:2d:71:d4:60:19:c9:79:
46:f3:c6:26:58:e8:ac:8b:32:61:10:25:6c:1b:f5:49:a2:8b:
65:d3:6f:a7:c2:cc:1e:e2:2a:e7:61:75:d6:0f:bd:8d:59:bd:
6b:5a:a8:e6:07:c1:9f:cc:5f:9c:be:74:73:25:2c:de:1d:61:
c7:b3:42:59:54:5c:65:3f:c0:25:10:a3:e0:7e:c7:84:1f:4f:
f0:fb:e5:e6:a1:65:f8:be:d0:a0:30:15:4b:90:d1:17:9a:37:
d4:0a:69:7a:37:a8:fd:c1:ac:a4:06:df:6f:78:8b:92:1b:f2:
e6:16:ba:3b:3c:4f:af:12:ea:c2:29:ba:0f:85:98:fc:ac:f7:
d1:fb:3f:12:4f:e4:33:79:43:ae:b3:22:57:df:09:87:57:ba:
24:ef:9c:d1:8b:55:ec:1e:eb:2a:02:be:0f:46:19:70:49:50:
41:44:56:ec:7d:1f:7a:18:85:7a:86:2b:74:4b:b4:76:98:ad:
cb:b2:d4:41:92:1a:47:6b:8f:aa:81:41:e3:f2:23:5a:ae:23:
2c:ad:93:e6:31:46:bb:c7:80:5c:3d:be:cb:3e:e9:2a:6a:a9:
d6:85:e1:5f:83:25:7f:b3:74:82:77:c6:ae:ca:02:45:7b:06:
fb:ae:e1:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:39:17 2025 by rpki-client