Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/8f5e59-7f71-4cf2-a619-3f0295eee951/1/fgdwhBDMdkNEuM-k8-NopeJStlA.mft
File: fgdwhBDMdkNEuM-k8-NopeJStlA.mft (raw, json)
Hash identifier: erC53081k9BPUOer7j9I3gn2hMwIWuO+hQzWOvxLPc4=
Subject key identifier: 13:49:BB:DD:D3:26:0C:6B:1D:CF:19:60:C9:E0:28:B1:F0:BE:BC:65
Authority key identifier: 7E:07:70:84:10:CC:76:43:44:B8:CF:A4:F3:E3:68:A5:E2:52:B6:50
Certificate issuer: /CN=7e07708410cc764344b8cfa4f3e368a5e252b650
Certificate serial: 01958B4E05C4945C7F6EFE7B23BC189CD28C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fgdwhBDMdkNEuM-k8-NopeJStlA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/8f5e59-7f71-4cf2-a619-3f0295eee951/1/fgdwhBDMdkNEuM-k8-NopeJStlA.mft
Manifest number: 08BC
Signing time: Wed 12 Mar 2025 17:01:41 +0000
Manifest this update: Wed 12 Mar 2025 17:01:41 +0000
Manifest next update: Thu 13 Mar 2025 17:01:41 +0000
Files and hashes: 1: fgdwhBDMdkNEuM-k8-NopeJStlA.crl (hash: C0m6cnXMB213kznEEVf4M9FeKgoMpVJvWmdyes1UyfA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/8f5e59-7f71-4cf2-a619-3f0295eee951/1/fgdwhBDMdkNEuM-k8-NopeJStlA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ee/8f5e59-7f71-4cf2-a619-3f0295eee951/1/fgdwhBDMdkNEuM-k8-NopeJStlA.mft
rsync://rpki.ripe.net/repository/DEFAULT/fgdwhBDMdkNEuM-k8-NopeJStlA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 17:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:4e:05:c4:94:5c:7f:6e:fe:7b:23:bc:18:9c:d2:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e07708410cc764344b8cfa4f3e368a5e252b650
Validity
Not Before: Mar 12 17:01:41 2025 GMT
Not After : Mar 13 17:01:41 2025 GMT
Subject: CN=1349bbddd3260c6b1dcf1960c9e028b1f0bebc65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f0:fd:a9:b2:c4:e8:e1:f3:74:c0:37:26:f3:
d7:a6:8b:61:8d:cf:27:9e:38:5b:96:b6:b0:99:80:
f0:b8:ae:42:cd:8a:16:49:16:25:cd:e6:ce:df:d5:
43:c3:7e:0f:52:22:a7:d4:a3:ac:70:aa:31:57:ba:
51:8b:73:53:d6:bb:9a:d3:53:12:d5:83:12:3f:e2:
2c:a3:ac:f2:3e:d5:20:7c:e2:e9:af:99:5d:d8:55:
ff:66:59:66:33:26:1c:93:9d:1b:37:cf:61:ba:84:
91:b0:05:a8:77:c3:03:05:6c:2b:c2:1d:16:df:d9:
7d:0b:4e:9e:9d:23:da:02:ed:32:a2:d2:f8:a1:76:
49:9c:00:f7:cc:70:58:d1:23:fe:92:f7:22:72:1a:
fc:ba:fb:54:00:e5:9c:a8:06:53:61:b6:42:fd:d8:
01:b3:06:c4:ed:01:58:3f:e4:3a:d4:12:04:42:2b:
c2:bd:16:2d:f1:87:3a:80:b3:59:1d:78:91:b6:d5:
25:92:de:5c:0f:32:aa:99:4f:58:f9:e9:bc:e7:a9:
57:c7:d7:8b:d0:cc:6c:74:ea:15:ed:61:22:73:20:
a6:3c:d5:cf:5e:18:36:c0:f6:11:47:b8:71:50:cb:
01:52:43:f2:01:e9:cc:be:e8:4a:9f:be:3e:a5:74:
c9:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:49:BB:DD:D3:26:0C:6B:1D:CF:19:60:C9:E0:28:B1:F0:BE:BC:65
X509v3 Authority Key Identifier:
keyid:7E:07:70:84:10:CC:76:43:44:B8:CF:A4:F3:E3:68:A5:E2:52:B6:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fgdwhBDMdkNEuM-k8-NopeJStlA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/8f5e59-7f71-4cf2-a619-3f0295eee951/1/fgdwhBDMdkNEuM-k8-NopeJStlA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/8f5e59-7f71-4cf2-a619-3f0295eee951/1/fgdwhBDMdkNEuM-k8-NopeJStlA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:ba:2c:9b:af:c4:73:37:3f:dc:c2:34:da:3a:9b:a6:20:72:
6d:df:30:58:9e:cf:ba:90:4f:72:a4:e2:c1:1f:64:92:ba:82:
09:eb:ab:e8:3d:5e:20:fb:02:e1:e8:34:98:5d:f5:6f:ac:d2:
c1:b2:aa:0a:6e:77:8c:8b:c0:48:ac:90:1f:70:4c:26:0b:07:
fe:e0:27:df:38:85:6f:43:e8:da:7f:60:8b:97:ae:0e:fe:6f:
b8:99:b6:2c:23:41:96:5e:02:17:2a:83:d8:9a:d8:79:c0:1e:
71:19:fd:5a:1a:8e:24:e4:6c:d6:58:53:22:70:70:04:a6:5a:
cf:89:10:0a:32:cd:67:c9:64:f2:7b:18:07:3e:91:e0:91:ec:
7b:30:7c:c5:5d:3f:d8:06:2f:43:cd:53:19:16:71:04:4e:03:
48:f2:dc:23:67:12:0c:7c:d9:a7:3c:f4:64:3c:36:1c:d0:38:
30:1c:ac:6f:c3:1c:50:ef:52:0d:4f:1a:07:f6:2f:32:9f:6c:
3e:1c:84:f5:5c:14:3f:77:96:3d:0c:a2:4c:e8:bf:63:f4:c3:
fe:5c:2d:a8:2a:c9:f0:7c:f1:9f:42:4c:12:55:02:c8:8b:19:
3a:eb:3e:ee:7c:b9:ca:a9:b4:57:4f:83:2f:23:81:33:bc:3a:
a6:f5:d7:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:25:37 2025 by rpki-client