Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
File: mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft (raw, json)
Hash identifier: WIdE/i+0XWqyKWE4I1mVvk4C11k6sAuweP87qhRhvC0=
Subject key identifier: 87:8D:CB:B9:C5:15:64:0B:60:D4:A6:D1:14:9D:E3:42:60:E0:71:C6
Authority key identifier: 9A:F9:D1:E5:5F:43:E4:FD:D6:D2:4F:B4:B0:ED:A6:E9:D1:28:AA:51
Certificate issuer: /CN=9af9d1e55f43e4fdd6d24fb4b0eda6e9d128aa51
Certificate serial: 019643D72563C784682221186B1AD217306E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
Manifest number: 0F97
Signing time: Thu 17 Apr 2025 13:01:34 +0000
Manifest this update: Thu 17 Apr 2025 13:01:34 +0000
Manifest next update: Fri 18 Apr 2025 13:01:34 +0000
Files and hashes: 1: mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl (hash: gX42DYZqKJitJ76UzKPJkytH56ydpy7oe/W1k+8Zxkg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:d7:25:63:c7:84:68:22:21:18:6b:1a:d2:17:30:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9af9d1e55f43e4fdd6d24fb4b0eda6e9d128aa51
Validity
Not Before: Apr 17 13:01:34 2025 GMT
Not After : Apr 18 13:01:34 2025 GMT
Subject: CN=878dcbb9c515640b60d4a6d1149de34260e071c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2e:19:e2:84:8e:01:db:a3:e8:ea:f8:4a:0a:
02:8d:fe:f1:0e:b0:b2:99:82:f0:19:d2:e6:45:06:
d1:a4:ee:db:89:df:33:1a:13:ef:03:53:b6:92:20:
5a:da:78:ee:ea:d5:22:38:34:b3:05:19:af:4a:47:
50:07:ae:4b:db:9b:68:d5:7a:19:e7:a2:2b:be:50:
68:aa:ce:d1:31:04:55:e2:5b:69:fa:da:74:3c:60:
74:77:69:7f:96:57:85:b9:c2:8e:2f:78:71:e2:d4:
55:f8:79:9c:e3:26:33:07:ee:44:42:0a:69:9f:d1:
7c:9d:ba:29:5f:c0:f8:4f:34:cc:b4:5b:c8:13:cf:
35:f4:db:f6:f1:33:c9:03:38:31:9b:ba:7d:df:4f:
38:b6:f5:22:0a:61:f9:32:d9:08:6d:bf:9f:fc:4a:
6b:db:5b:ef:97:cc:e7:ad:cd:30:bb:f8:ae:a5:9a:
66:44:d7:3c:f0:69:ce:a9:31:ab:da:0f:be:54:f7:
d4:0e:4b:42:d6:11:ae:d1:ac:19:bf:17:86:b8:00:
99:34:e2:52:79:87:6c:74:54:cd:fb:5f:1b:2f:36:
88:f0:b6:6c:87:ad:b8:a9:67:aa:74:f4:72:4d:d7:
92:86:12:ce:fe:79:94:cb:a6:b0:c9:22:9c:dc:6e:
ee:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:8D:CB:B9:C5:15:64:0B:60:D4:A6:D1:14:9D:E3:42:60:E0:71:C6
X509v3 Authority Key Identifier:
keyid:9A:F9:D1:E5:5F:43:E4:FD:D6:D2:4F:B4:B0:ED:A6:E9:D1:28:AA:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:70:6f:36:af:c1:9d:4a:a1:41:7f:94:56:86:54:66:d4:56:
3b:9c:fe:a7:54:a9:00:5d:10:7c:96:ee:c0:b0:7a:4f:1e:8e:
27:57:9b:44:41:3d:c8:b1:69:33:31:15:9b:2e:77:78:d4:7d:
01:3f:3c:88:4e:01:a4:ee:b4:0b:5d:23:41:f3:7a:03:94:82:
c2:ff:04:19:e8:24:8d:2d:97:5a:a4:c0:9b:3d:7d:31:18:7a:
04:04:ca:55:77:00:5d:da:ef:37:e5:fc:5f:9c:9c:e0:83:d6:
d9:09:76:01:e6:61:71:51:64:b7:2d:c7:8f:b7:80:56:69:77:
60:f9:b6:1f:ef:b5:67:38:1d:42:06:80:bd:2c:ac:0e:96:21:
a2:50:aa:08:de:3c:c2:d4:78:5d:74:3e:75:2d:6a:50:73:37:
b8:c2:0d:7a:24:71:4a:b0:8a:b5:9e:c5:4f:36:f5:9c:21:bf:
2a:5e:6d:ae:96:39:d0:33:d6:4b:71:5f:1d:cf:b5:eb:52:4e:
e0:14:e1:52:01:0e:bf:f4:a8:77:bd:59:90:1f:73:05:09:e0:
d0:f6:40:0c:a8:34:52:e5:cc:c9:95:7f:bb:9b:e4:38:a7:16:
52:90:86:6f:8f:93:45:76:50:f7:5c:91:ce:5a:7a:27:9e:18:
c4:fd:42:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 14:49:26 2025 by rpki-client