Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ff50ec-b12d-4798-89fa-22d1bcfa1eda/1/g76BmaF8rKps1S15QSNtpuVuG-o.mft
File: g76BmaF8rKps1S15QSNtpuVuG-o.mft (raw, json)
Hash identifier: 02EoD9EjWQpkn0inrfJBLfyTiko6hpHXkIemLxpdr1g=
Subject key identifier: 9D:73:14:93:40:7F:C1:71:13:87:A1:59:D2:2D:6B:DD:1D:78:FE:83
Authority key identifier: 83:BE:81:99:A1:7C:AC:AA:6C:D5:2D:79:41:23:6D:A6:E5:6E:1B:EA
Certificate issuer: /CN=83be8199a17cacaa6cd52d7941236da6e56e1bea
Certificate serial: 01964D7E6BABF11AA838DD23F2BBEF680E31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g76BmaF8rKps1S15QSNtpuVuG-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/ff50ec-b12d-4798-89fa-22d1bcfa1eda/1/g76BmaF8rKps1S15QSNtpuVuG-o.mft
Manifest number: 087E
Signing time: Sat 19 Apr 2025 10:00:52 +0000
Manifest this update: Sat 19 Apr 2025 10:00:52 +0000
Manifest next update: Sun 20 Apr 2025 10:00:52 +0000
Files and hashes: 1: g76BmaF8rKps1S15QSNtpuVuG-o.crl (hash: 2NfaK+928P1pVl6+jpMp9j3w+TBE4rrY8D+cqy29LC4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/ff50ec-b12d-4798-89fa-22d1bcfa1eda/1/g76BmaF8rKps1S15QSNtpuVuG-o.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/ff50ec-b12d-4798-89fa-22d1bcfa1eda/1/g76BmaF8rKps1S15QSNtpuVuG-o.mft
rsync://rpki.ripe.net/repository/DEFAULT/g76BmaF8rKps1S15QSNtpuVuG-o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7e:6b:ab:f1:1a:a8:38:dd:23:f2:bb:ef:68:0e:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83be8199a17cacaa6cd52d7941236da6e56e1bea
Validity
Not Before: Apr 19 10:00:52 2025 GMT
Not After : Apr 20 10:00:52 2025 GMT
Subject: CN=9d731493407fc1711387a159d22d6bdd1d78fe83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:df:05:96:6f:39:26:c4:e8:d0:35:9e:c7:a3:
54:be:25:9c:4a:5e:a6:93:04:54:b2:14:04:b1:91:
81:2f:13:62:e2:28:7f:4f:1e:96:da:b3:b2:66:33:
1c:43:d9:10:f4:85:df:4d:a6:f4:f0:3a:0d:de:3d:
7b:d1:a2:5f:c1:2e:5a:12:44:1e:68:43:fd:15:0d:
61:f1:58:8a:a7:54:15:77:d8:f9:3d:cf:c5:ca:5c:
6e:24:df:6b:8f:e7:e0:c9:26:20:51:3b:02:2e:fd:
c9:99:c2:8b:9d:d4:19:ca:e1:83:21:48:84:4d:fc:
a4:de:70:11:3f:29:f7:0d:46:06:6b:c9:c9:7e:6e:
65:20:84:96:4f:19:e2:35:77:3c:d6:6b:ad:dd:3b:
e8:31:cd:d6:6b:bf:3d:57:ca:7e:82:de:cc:41:30:
96:bc:75:d5:ed:b1:6a:95:9b:0f:b1:77:a7:85:da:
dc:6c:83:26:71:2a:ac:63:8d:4d:e0:8f:af:6d:07:
45:fc:e7:b1:dd:2c:63:94:99:96:47:bc:fd:cb:68:
3b:6b:93:cc:9d:9f:d8:fd:6a:9d:33:b0:88:26:4c:
ba:81:dc:65:0c:cc:db:1a:6e:d6:55:32:eb:88:d2:
06:4a:31:46:a2:1e:ee:cf:87:bf:d2:4a:6f:df:d0:
01:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:73:14:93:40:7F:C1:71:13:87:A1:59:D2:2D:6B:DD:1D:78:FE:83
X509v3 Authority Key Identifier:
keyid:83:BE:81:99:A1:7C:AC:AA:6C:D5:2D:79:41:23:6D:A6:E5:6E:1B:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g76BmaF8rKps1S15QSNtpuVuG-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ff50ec-b12d-4798-89fa-22d1bcfa1eda/1/g76BmaF8rKps1S15QSNtpuVuG-o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ff50ec-b12d-4798-89fa-22d1bcfa1eda/1/g76BmaF8rKps1S15QSNtpuVuG-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:95:bf:da:62:eb:9b:e4:66:83:7f:fb:8a:7f:9e:e1:7a:65:
78:16:72:fb:eb:14:81:17:7c:6d:33:88:26:39:16:4b:18:6d:
0a:b3:1d:a9:d5:9e:6f:1d:0e:d6:42:56:b3:2d:35:bf:bd:a0:
03:1c:e8:90:d6:29:67:54:9e:a4:b6:7c:27:e1:60:96:c7:14:
7c:1e:99:b9:d7:e4:b6:03:73:3a:1d:24:6c:8b:66:97:f0:4d:
52:c9:49:c9:fc:0b:9d:ac:b4:b5:cc:96:2d:34:48:38:b9:e2:
10:80:0d:bd:33:df:3f:90:15:ca:51:5d:b1:d8:df:10:c8:37:
d2:03:d5:a4:78:fd:1e:e1:8b:40:f9:b9:3a:75:57:83:f8:9d:
3f:59:c3:8c:eb:1f:49:e6:0f:6a:a2:ea:50:5c:6d:91:29:e6:
eb:43:ec:09:69:c9:f3:60:28:bd:50:59:1a:12:f9:71:ba:02:
25:76:24:25:aa:ad:50:15:e4:a4:5b:59:7f:db:a4:51:77:0d:
57:d3:37:b6:c7:a0:ca:3f:68:27:db:fa:39:20:72:39:b7:59:
f3:17:2b:43:72:56:19:58:13:01:38:b4:66:cf:d2:c3:7f:55:
e2:5e:d5:d4:73:d2:e6:65:01:95:fc:bf:82:c4:43:51:72:05:
11:16:22:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 16:01:24 2025 by rpki-client