Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
File: rjRcTQnm4iTh2vRmV9PHEYewIjY.mft (raw, json)
Hash identifier: Qp+g3Kps+/a1Anfdo/mfy+VIQNoL5TLm5l5nmNnaiBo=
Subject key identifier: 0B:3A:F8:EC:81:E3:74:FA:0F:AA:3A:5E:A5:20:EE:C8:A3:CC:80:2D
Authority key identifier: AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36
Certificate issuer: /CN=ae345c4d09e6e224e1daf46657d3c71187b02236
Certificate serial: 0195783463DCC3A2E7D93D6F72FB26511019
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
Manifest number: 03D5
Signing time: Sun 09 Mar 2025 00:00:54 +0000
Manifest this update: Sun 09 Mar 2025 00:00:54 +0000
Manifest next update: Mon 10 Mar 2025 00:00:54 +0000
Files and hashes: 1: rjRcTQnm4iTh2vRmV9PHEYewIjY.crl (hash: DdkQhRxVarQKMG5ZdVOnF/Dq/AkyeKOW57zFv2Y3Sco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 10 Mar 2025 00:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:78:34:63:dc:c3:a2:e7:d9:3d:6f:72:fb:26:51:10:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae345c4d09e6e224e1daf46657d3c71187b02236
Validity
Not Before: Mar 9 00:00:54 2025 GMT
Not After : Mar 10 00:00:54 2025 GMT
Subject: CN=0b3af8ec81e374fa0faa3a5ea520eec8a3cc802d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:98:27:ef:eb:1b:7a:af:45:44:a9:07:92:92:
2a:24:0b:ca:3e:95:48:cd:9c:44:bb:0a:fd:c2:e8:
6d:25:40:c8:60:0d:68:34:c1:b0:4a:21:50:e3:ba:
df:79:75:5a:14:e7:fd:17:23:00:21:1f:b8:0a:e6:
1f:dd:f3:b5:ee:04:33:a2:63:cc:fc:74:59:87:26:
f6:4d:e9:ec:83:10:58:1d:cc:5e:02:90:34:47:3a:
77:8a:6a:6a:0f:aa:2c:68:dc:ca:0d:b2:f3:43:ad:
08:cd:e0:44:2d:0a:b6:53:0f:ea:57:a9:b3:56:c4:
d5:f9:70:5a:26:b0:5d:91:8a:66:3c:80:b6:bf:6e:
5e:68:60:9e:e9:34:f6:e1:e7:75:e5:43:39:79:59:
11:f3:5c:f6:35:14:c7:1f:fb:80:94:c5:a4:25:5e:
b1:e1:af:cb:b3:84:c5:27:00:25:be:d0:04:73:99:
f5:cd:28:39:ad:37:1f:8c:bb:05:1c:e6:8c:1e:80:
45:97:53:75:7d:04:5f:5f:d5:f9:25:93:83:5e:b7:
1c:10:5d:89:18:24:47:0d:49:18:ff:49:4b:12:11:
d6:3b:3f:2c:ea:2d:aa:d9:99:8c:03:3d:c4:16:64:
bc:e9:ac:ae:e9:75:8a:dc:e6:19:96:aa:91:d2:c6:
5b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:3A:F8:EC:81:E3:74:FA:0F:AA:3A:5E:A5:20:EE:C8:A3:CC:80:2D
X509v3 Authority Key Identifier:
keyid:AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:fe:78:6e:21:67:4c:ec:39:81:02:10:71:6d:c7:00:79:b8:
14:98:18:22:68:9c:7b:59:09:99:bd:27:16:ae:49:6d:1d:df:
ee:c3:ec:ae:46:90:f7:58:eb:4d:f4:e5:0a:cf:4c:ce:fc:a2:
89:f5:d3:1c:62:c8:82:31:ca:33:6e:6d:c2:a2:fc:a8:88:c5:
51:32:29:41:70:8b:17:28:50:4f:81:a7:e0:0c:95:05:0a:5e:
08:f1:29:e2:ac:d5:57:a9:14:bf:b7:3d:dd:66:4d:3e:33:bd:
95:93:24:09:ff:d1:1e:ad:69:02:f0:84:25:d7:ae:ee:85:e3:
91:42:d0:4d:4d:97:80:11:e8:ec:cf:8a:97:31:2e:f6:f3:0e:
c5:6b:3b:83:88:5a:15:65:be:7b:e2:7d:85:5b:e9:cf:c1:1c:
8f:04:0a:08:61:2f:40:94:2b:e2:0c:97:71:54:61:fc:09:15:
72:a0:ca:c0:30:5d:86:5b:a9:4d:97:90:be:e0:f5:97:80:26:
66:25:d9:cc:ae:13:9b:c5:1c:01:d9:27:2a:ab:88:6b:80:6c:
cc:23:d0:42:d3:dc:68:93:e1:04:8e:a9:34:d4:4f:8e:e7:9d:
5e:0f:5c:03:a4:df:98:2a:76:95:8c:7f:6b:ac:42:67:83:73:
d3:f7:69:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 9 10:19:25 2025 by rpki-client