Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
File: pol1o9gy4UUny7or4QujwebGOFY.mft (raw, json)
Hash identifier: rO6Va/sN5U1yxW81qF7+BzjN8n2WWU0OpCsQnkLV2jM=
Subject key identifier: 37:D6:51:E4:D2:47:E4:C4:99:B5:A2:58:17:73:BF:D5:E4:87:76:1E
Authority key identifier: A6:89:75:A3:D8:32:E1:45:27:CB:BA:2B:E1:0B:A3:C1:E6:C6:38:56
Certificate issuer: /CN=a68975a3d832e14527cbba2be10ba3c1e6c63856
Certificate serial: 01964D7E384BC29520C4C75502129D6EA811
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
Manifest number: 04CE
Signing time: Sat 19 Apr 2025 10:00:39 +0000
Manifest this update: Sat 19 Apr 2025 10:00:39 +0000
Manifest next update: Sun 20 Apr 2025 10:00:39 +0000
Files and hashes: 1: pol1o9gy4UUny7or4QujwebGOFY.crl (hash: t7A/0VjlYVZiK17I6HP2dZECB2RFLIp/6GXJyj8252k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7e:38:4b:c2:95:20:c4:c7:55:02:12:9d:6e:a8:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a68975a3d832e14527cbba2be10ba3c1e6c63856
Validity
Not Before: Apr 19 10:00:39 2025 GMT
Not After : Apr 20 10:00:39 2025 GMT
Subject: CN=37d651e4d247e4c499b5a2581773bfd5e487761e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ff:d1:5b:0d:8f:11:cc:b6:81:82:ca:eb:a5:
81:21:e7:f7:db:a3:cc:da:f8:44:f8:31:d0:08:35:
46:6e:40:c1:91:2f:c3:ea:99:6c:26:54:55:82:c6:
25:90:a6:bf:a6:6a:51:f7:e7:ad:9b:d7:68:93:84:
f8:06:90:35:c2:80:dd:83:38:41:78:d1:da:26:c1:
cf:59:09:e5:8d:3d:58:01:1f:f7:48:60:c0:de:52:
52:30:e3:49:66:75:f1:00:f3:ea:5e:18:26:4f:27:
e1:aa:cf:bf:a2:97:e0:af:fa:8f:ca:b5:c0:9e:2d:
b0:12:84:09:08:65:de:89:d4:6f:a3:64:9c:68:59:
03:89:29:5a:97:d8:b5:dd:28:40:ee:08:41:03:b6:
71:40:5b:f9:4e:2c:e7:b3:fe:30:f3:e0:89:c3:a4:
60:f1:45:f8:cb:3a:89:1c:69:ff:e1:a3:e2:23:11:
0c:c4:68:a6:57:ad:ca:0c:da:bd:ab:fe:34:48:5c:
2f:fe:17:2a:fe:bb:c9:d2:74:22:d4:00:d6:2a:e1:
8d:4f:38:19:85:29:08:d0:75:a7:5c:8f:46:b9:10:
21:c1:99:c6:85:b1:b3:0d:71:6b:fa:d0:ff:7d:ed:
74:9d:8c:e4:08:48:2c:9a:97:f5:16:14:c5:0d:28:
da:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:D6:51:E4:D2:47:E4:C4:99:B5:A2:58:17:73:BF:D5:E4:87:76:1E
X509v3 Authority Key Identifier:
keyid:A6:89:75:A3:D8:32:E1:45:27:CB:BA:2B:E1:0B:A3:C1:E6:C6:38:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c4:74:a5:bb:09:a3:88:2e:1f:b9:f0:00:2f:94:50:b3:c4:62:
85:e1:e5:1c:e4:56:59:78:15:ce:3c:f8:e0:38:73:ea:9c:76:
1d:a7:ea:a4:42:2f:26:4e:21:0c:d7:a2:d1:ed:15:31:87:43:
4f:55:d1:88:7e:6d:b8:ac:de:41:1a:04:e9:85:3f:19:47:49:
ca:69:ed:01:77:97:4e:76:ab:89:e3:5c:b2:66:92:d9:f9:23:
21:d4:bf:ab:5c:3d:34:86:5f:09:40:4c:02:73:56:52:76:b0:
b3:96:fb:8a:64:4e:10:38:be:e9:37:9a:3c:28:d8:11:a9:24:
a9:19:27:f3:c7:6d:0a:50:57:ab:c5:69:d5:76:e0:95:8e:93:
db:f5:17:37:63:28:47:19:db:f8:68:b9:7c:bb:ca:e6:5c:e8:
e8:8f:50:54:bd:8d:a7:03:d1:88:75:6b:bd:70:ac:d8:6f:e9:
8f:bc:ca:b0:4d:b2:48:a6:21:16:fb:67:d6:8e:87:62:ef:fa:
3a:f5:3f:04:5a:14:a5:78:a5:44:3c:76:26:6c:07:41:68:aa:
21:d7:0d:5b:69:85:11:ec:0d:19:7e:7d:df:79:f0:cd:bc:15:
36:f9:f1:e7:dc:e5:e2:6c:dc:c6:83:fb:a6:8c:e1:28:6f:32:
86:fa:1a:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 16:42:43 2025 by rpki-client