Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/c56917-2cc3-4067-850a-b937d1205ab1/1/3frtS0AyNuLKi-twkcug4GpUPQo.mft
File: 3frtS0AyNuLKi-twkcug4GpUPQo.mft (raw, json)
Hash identifier: RweQGYATbzsmsnMeKBa5rCu9Tpgu+9V1yGpx0T6ZFE4=
Subject key identifier: 42:97:52:6B:1C:48:EF:C5:37:97:D5:9B:7C:55:3F:DE:57:3D:BE:65
Authority key identifier: DD:FA:ED:4B:40:32:36:E2:CA:8B:EB:70:91:CB:A0:E0:6A:54:3D:0A
Certificate issuer: /CN=ddfaed4b403236e2ca8beb7091cba0e06a543d0a
Certificate serial: 01964D7E6ABBACD948BB681B1C7705E7673E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3frtS0AyNuLKi-twkcug4GpUPQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/c56917-2cc3-4067-850a-b937d1205ab1/1/3frtS0AyNuLKi-twkcug4GpUPQo.mft
Manifest number: 3D
Signing time: Sat 19 Apr 2025 10:00:52 +0000
Manifest this update: Sat 19 Apr 2025 10:00:52 +0000
Manifest next update: Sun 20 Apr 2025 10:00:52 +0000
Files and hashes: 1: 3frtS0AyNuLKi-twkcug4GpUPQo.crl (hash: v4+b+g9uoH56hlREAkszqiBYnFU5GpeoZIafXddKOlM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/c56917-2cc3-4067-850a-b937d1205ab1/1/3frtS0AyNuLKi-twkcug4GpUPQo.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/c56917-2cc3-4067-850a-b937d1205ab1/1/3frtS0AyNuLKi-twkcug4GpUPQo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3frtS0AyNuLKi-twkcug4GpUPQo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7e:6a:bb:ac:d9:48:bb:68:1b:1c:77:05:e7:67:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddfaed4b403236e2ca8beb7091cba0e06a543d0a
Validity
Not Before: Apr 19 10:00:52 2025 GMT
Not After : Apr 20 10:00:52 2025 GMT
Subject: CN=4297526b1c48efc53797d59b7c553fde573dbe65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:1c:51:b4:18:4b:39:d2:15:8f:b0:d9:31:84:
cf:6d:f2:0c:ad:2f:08:94:85:ec:cc:ed:93:77:b7:
93:2e:0d:f7:82:89:06:da:39:6c:b8:85:bf:67:4c:
9a:ce:f1:bd:2b:af:86:09:4f:d5:c6:58:e2:1b:96:
0c:a9:94:3e:69:15:b1:ab:6d:7f:b1:3c:52:91:ca:
9a:ee:82:6f:4f:65:aa:b3:cc:4c:77:ff:be:98:e5:
ca:c5:d8:f2:00:af:33:8a:0b:5f:32:d4:5b:73:3b:
57:d0:9c:20:c9:55:ed:39:04:50:f2:4a:d5:84:bc:
4c:e7:fd:c2:f7:97:32:f8:d1:51:1d:4b:fe:cf:65:
d1:ee:a0:64:46:5c:72:c7:fa:3f:8f:e0:b7:4a:79:
5c:1b:b8:7c:14:9f:41:42:1c:dd:93:7b:0b:31:3f:
d7:16:3d:45:6d:19:0d:16:03:d2:af:d3:8a:36:31:
d4:1b:6f:0d:3f:1a:81:25:f4:76:73:99:3b:76:c4:
a7:dc:52:47:02:fa:9e:e7:da:2c:cd:e6:91:1b:17:
cc:5d:71:44:cf:e0:e9:1e:4a:69:05:0e:62:ef:f2:
87:f3:d9:2d:26:b5:b0:fb:0d:e6:69:5a:e3:0f:7b:
e8:33:2d:03:1b:42:86:89:e7:b2:04:8f:c7:74:49:
9e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:97:52:6B:1C:48:EF:C5:37:97:D5:9B:7C:55:3F:DE:57:3D:BE:65
X509v3 Authority Key Identifier:
keyid:DD:FA:ED:4B:40:32:36:E2:CA:8B:EB:70:91:CB:A0:E0:6A:54:3D:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3frtS0AyNuLKi-twkcug4GpUPQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/c56917-2cc3-4067-850a-b937d1205ab1/1/3frtS0AyNuLKi-twkcug4GpUPQo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/c56917-2cc3-4067-850a-b937d1205ab1/1/3frtS0AyNuLKi-twkcug4GpUPQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:d4:a0:83:63:10:c3:76:86:f3:63:25:b6:70:75:d1:01:f2:
bf:ee:b1:dd:84:7f:0b:9c:fd:98:3c:73:4b:8d:dc:0c:5c:5e:
ee:3a:35:01:41:20:89:bd:1b:c8:8b:97:89:7a:58:82:92:e3:
72:7d:b6:fa:50:ad:4b:bb:26:c9:7f:63:af:67:56:5f:ef:04:
85:f2:84:c6:dc:96:5e:e8:39:32:e5:d6:3d:fe:d7:af:e0:51:
01:78:a1:44:57:bc:15:22:1e:25:0c:eb:a6:df:6d:99:f7:fe:
21:f5:aa:de:4f:1f:58:90:15:ef:bf:8d:d6:0a:00:d2:19:d6:
9b:68:c2:b1:7c:2d:d9:af:ba:a1:11:6f:09:b3:72:ad:78:03:
18:75:a4:25:61:14:ef:b5:12:0b:54:c0:ca:c7:9d:04:72:d2:
5a:83:34:32:8c:7c:62:4c:ed:57:00:b1:a6:7d:1a:5a:ab:56:
49:bc:3e:1e:2e:1c:d4:ca:09:b9:d3:20:93:62:52:79:d4:57:
14:ae:ee:34:2d:52:1f:2f:77:09:3a:78:9a:b9:95:c5:e1:88:
8a:54:58:b3:80:ca:a3:3b:d5:ee:58:85:82:eb:1f:ab:b6:54:
a3:bc:dc:7d:09:54:51:3c:cf:6e:ef:a5:bd:4f:f3:65:e7:14:
e8:ac:3a:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:19:57 2025 by rpki-client