Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
File: CUSqrH8uuymBwkdj6z1gRe-9bwY.mft (raw, json)
Hash identifier: uyD3FQDFhTC2tjLM5nkMcjrqLqAHAglTnF10k0R9twE=
Subject key identifier: 9A:1E:BC:5A:38:77:14:BD:B3:22:5D:C2:F8:33:A8:80:1A:09:D3:55
Authority key identifier: 09:44:AA:AC:7F:2E:BB:29:81:C2:47:63:EB:3D:60:45:EF:BD:6F:06
Certificate issuer: /CN=0944aaac7f2ebb2981c24763eb3d6045efbd6f06
Certificate serial: 01965C4CC24F085A3D82651943E218B03AFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
Manifest number: 0B41
Signing time: Tue 22 Apr 2025 07:00:56 +0000
Manifest this update: Tue 22 Apr 2025 07:00:56 +0000
Manifest next update: Wed 23 Apr 2025 07:00:56 +0000
Files and hashes: 1: CUSqrH8uuymBwkdj6z1gRe-9bwY.crl (hash: GvwZKga6//Pzv6taAYCv6vR4KbjvtW814nwxzbNCGzs=)
2: U0OBxV0NmzWdhOROB_4XE_nOuxo.roa (hash: R0oHniHcgRLjr+xP295YEa+yjJ7+h87sW92ahFuO7CI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:4c:c2:4f:08:5a:3d:82:65:19:43:e2:18:b0:3a:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0944aaac7f2ebb2981c24763eb3d6045efbd6f06
Validity
Not Before: Apr 22 07:00:56 2025 GMT
Not After : Apr 23 07:00:56 2025 GMT
Subject: CN=9a1ebc5a387714bdb3225dc2f833a8801a09d355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7a:ef:81:0e:67:0c:2c:f0:b1:cb:d3:2c:ca:
7d:62:80:e7:4f:7f:2d:75:88:dd:77:5d:9d:3e:78:
24:22:9c:eb:6c:a7:e3:ad:03:c3:b8:34:e1:8b:76:
51:dc:fd:af:25:04:79:bd:5f:f4:e5:1f:6b:7d:b0:
2d:c2:8e:a6:d1:18:47:ad:b9:52:a2:71:d7:78:cb:
9e:a2:da:3e:b3:3d:04:a9:1b:3c:42:1e:00:46:eb:
1c:f7:22:0c:65:b3:8d:d2:3c:d9:36:aa:d7:4a:6b:
d7:5e:0f:b0:92:f5:7f:7b:25:84:1e:f2:d4:8d:46:
f7:33:8f:1b:2b:d1:8a:69:4d:d1:14:28:2c:7c:e6:
9a:bc:e9:29:1a:38:f8:1f:90:61:03:b5:98:d6:3a:
12:a7:f2:80:74:c1:00:e4:64:e7:90:e7:2e:bf:d7:
41:df:a0:2e:6f:ef:4f:1e:03:8e:08:2a:76:bf:64:
fa:d8:39:c4:d8:ca:d6:11:b0:4a:67:6d:67:e2:6d:
7d:1b:69:a8:69:64:50:04:af:df:c3:91:1d:76:53:
da:2b:03:1e:72:47:08:9d:5c:bd:9d:0d:5e:77:e7:
2c:ce:5b:3e:65:6c:39:d2:5c:04:76:f8:69:dd:58:
f8:db:99:0f:c7:29:7a:f0:11:4c:4f:f4:cc:23:e0:
07:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:1E:BC:5A:38:77:14:BD:B3:22:5D:C2:F8:33:A8:80:1A:09:D3:55
X509v3 Authority Key Identifier:
keyid:09:44:AA:AC:7F:2E:BB:29:81:C2:47:63:EB:3D:60:45:EF:BD:6F:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CUSqrH8uuymBwkdj6z1gRe-9bwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/434849-89da-43ae-b2be-66cd01961e46/1/CUSqrH8uuymBwkdj6z1gRe-9bwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:fc:f6:e2:b6:14:7c:fe:34:61:99:cc:c2:a4:25:66:4f:14:
79:ea:bf:89:d1:51:ca:36:f2:4a:05:4a:11:e8:6f:e2:53:7b:
0e:3d:d7:fd:53:bb:9d:91:c6:54:62:4b:a7:a9:77:da:50:51:
ec:43:23:55:c6:d4:fe:b8:e5:e2:10:9d:2f:ee:e4:6c:23:ec:
13:ae:8c:3d:ff:ee:57:d5:72:01:9b:ab:13:e7:0f:a0:90:67:
c9:e2:3a:45:1b:23:be:27:7b:a9:a9:7e:55:72:d9:1d:98:ff:
79:e5:0d:04:ba:74:8b:a8:c7:f6:85:76:68:e0:3a:cf:e3:ac:
e1:53:8b:05:8a:2d:e1:12:c2:64:40:77:ac:62:44:33:c6:f0:
01:98:d8:73:58:21:48:ed:99:0f:a0:a8:1c:77:76:87:35:61:
97:ca:63:05:73:de:89:ed:2a:4e:ec:35:f5:d8:24:c6:db:1f:
a3:f0:2d:56:87:c7:d8:58:9f:c8:83:be:3c:7d:26:48:a9:4d:
d7:64:b3:85:e8:5d:7f:3b:2e:5d:7d:6e:41:af:b6:61:54:ad:
ba:8d:3c:25:ba:f4:40:13:7a:c4:13:a9:f4:b9:b7:08:61:d4:
c5:ce:22:87:02:c5:44:a2:f2:4b:e4:77:b7:4c:88:0b:65:73:
b2:cd:8f:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 13:47:39 2025 by rpki-client