Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
File: aBHhJcs1cHby-jE4yT6aJoGxeJM.mft (raw, json)
Hash identifier: xw6AIF9XqrR/Dvc3BS7vBlO/OBsL34tST8OpInRus+c=
Subject key identifier: 4E:22:F7:50:EF:F5:FC:32:3C:F7:3E:93:29:2A:4A:3C:A9:6A:D3:B5
Authority key identifier: 68:11:E1:25:CB:35:70:76:F2:FA:31:38:C9:3E:9A:26:81:B1:78:93
Certificate issuer: /CN=6811e125cb357076f2fa3138c93e9a2681b17893
Certificate serial: 0196B3D8674BC3BEEA9BDA865D059C8B8269
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aBHhJcs1cHby-jE4yT6aJoGxeJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
Manifest number: 152F
Signing time: Fri 09 May 2025 07:00:25 +0000
Manifest this update: Fri 09 May 2025 07:00:25 +0000
Manifest next update: Sat 10 May 2025 07:00:25 +0000
Files and hashes: 1: aBHhJcs1cHby-jE4yT6aJoGxeJM.crl (hash: wxoPsJj3k5O+8sxuosvXrWjr7FcsGpC3ktLgYbSYzzE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aBHhJcs1cHby-jE4yT6aJoGxeJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 07:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b3:d8:67:4b:c3:be:ea:9b:da:86:5d:05:9c:8b:82:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6811e125cb357076f2fa3138c93e9a2681b17893
Validity
Not Before: May 9 07:00:25 2025 GMT
Not After : May 10 07:00:25 2025 GMT
Subject: CN=4e22f750eff5fc323cf73e93292a4a3ca96ad3b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c3:0b:69:97:91:a3:dd:cb:80:66:7f:5a:70:
b9:00:01:b7:28:39:f2:79:6f:c3:0a:bb:94:7f:a4:
e5:7d:dc:81:27:70:35:a3:7e:5f:37:b5:0d:3b:1a:
7e:05:68:0d:c5:3d:17:4a:03:84:94:0f:b1:55:10:
f3:0e:50:46:1f:45:17:a5:55:47:14:76:16:e7:8b:
0b:93:49:fd:4b:79:d6:69:10:61:22:3c:d9:64:d0:
b2:d5:cf:c7:b1:b6:94:2a:2a:a7:47:aa:34:b6:3d:
af:ef:a4:2d:37:f2:a4:f7:33:ec:ff:38:18:78:0b:
a1:93:b7:29:09:8b:a1:3b:66:bc:8f:63:a8:79:a7:
3d:35:73:da:cf:a9:1e:3c:cb:8c:7d:bc:82:82:37:
48:69:c0:37:00:c9:be:5a:2e:9f:58:53:df:52:2c:
af:d1:f2:89:79:69:e6:aa:74:76:04:34:d3:f7:92:
e2:26:d5:07:50:97:c7:6b:79:6a:c8:e1:19:9e:e9:
9c:dd:45:62:71:e5:a9:3d:2e:16:32:5d:44:b9:d1:
c1:f9:8f:6a:b8:38:03:ab:f6:42:b7:29:5a:39:14:
48:e9:e6:be:ea:a8:08:ad:ad:cf:5d:ab:30:6d:58:
9c:c0:c4:d8:4c:9f:02:24:50:0a:78:8d:17:af:2d:
df:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:22:F7:50:EF:F5:FC:32:3C:F7:3E:93:29:2A:4A:3C:A9:6A:D3:B5
X509v3 Authority Key Identifier:
keyid:68:11:E1:25:CB:35:70:76:F2:FA:31:38:C9:3E:9A:26:81:B1:78:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aBHhJcs1cHby-jE4yT6aJoGxeJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:e1:b1:fe:a0:ee:0f:3c:38:ad:a5:b7:c6:8a:6b:16:5b:df:
f0:aa:36:9b:65:e4:5b:97:6a:a4:e2:14:83:9e:fe:b3:60:5a:
e1:4c:f2:b2:a7:d6:4c:5b:bf:91:f5:1b:51:f9:21:af:e7:dd:
51:8f:03:50:a6:63:6a:5d:37:f8:b9:f2:3a:55:89:11:6e:cc:
1f:5c:f1:07:56:9e:e0:dc:c8:a4:c0:5d:de:7f:91:3b:90:64:
57:9b:c0:9b:28:91:ba:3c:04:6c:54:cc:15:d4:56:dc:38:8a:
8a:a5:56:96:51:b3:b4:a8:f4:74:08:48:7d:00:ba:19:3f:49:
bd:0e:7e:02:79:f7:e3:0c:4e:b6:25:54:0d:54:b9:75:02:16:
7f:25:0a:05:ec:37:d3:90:98:c2:6a:d9:9e:f2:b8:c4:b2:a9:
9b:d9:8f:8b:69:df:9a:be:e6:29:f5:40:ed:1e:35:c0:2b:7c:
06:43:cc:b9:57:e6:95:ca:42:e7:f0:2b:17:29:e4:e5:9f:3b:
0c:af:ec:bd:f1:93:c5:2d:f8:dd:b8:06:af:ed:82:43:2e:d9:
3e:44:57:cf:dd:27:dd:7b:b5:5b:82:c2:ed:d6:91:a2:2c:c9:
9b:c4:70:33:58:3b:f8:5d:f4:6a:74:52:13:80:fe:82:63:37:
dd:ec:0e:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 16:00:57 2025 by rpki-client