Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/f7f214-1db2-436a-95c6-643f0da849fa/1/rxFguAPrImHBP4yK3JU9O1r7V8w.mft
File: rxFguAPrImHBP4yK3JU9O1r7V8w.mft (raw, json)
Hash identifier: akUiEeD0ZUEqgxcd2Hr9TDxTg12TO20chFNVr1tiIGM=
Subject key identifier: D4:5B:E8:3D:C9:54:6F:CF:5E:E5:AE:2D:D7:4F:76:42:B7:06:25:FD
Authority key identifier: AF:11:60:B8:03:EB:22:61:C1:3F:8C:8A:DC:95:3D:3B:5A:FB:57:CC
Certificate issuer: /CN=af1160b803eb2261c13f8c8adc953d3b5afb57cc
Certificate serial: 0196C0815AD4F3FC7676B78BB72B3E52636E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rxFguAPrImHBP4yK3JU9O1r7V8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/f7f214-1db2-436a-95c6-643f0da849fa/1/rxFguAPrImHBP4yK3JU9O1r7V8w.mft
Manifest number: 54
Signing time: Sun 11 May 2025 18:00:24 +0000
Manifest this update: Sun 11 May 2025 18:00:24 +0000
Manifest next update: Mon 12 May 2025 18:00:24 +0000
Files and hashes: 1: rxFguAPrImHBP4yK3JU9O1r7V8w.crl (hash: Nj0JmshXr58L5a87pd3kGcD0Mzy1EygsJftk62zq5Aw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/f7f214-1db2-436a-95c6-643f0da849fa/1/rxFguAPrImHBP4yK3JU9O1r7V8w.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/f7f214-1db2-436a-95c6-643f0da849fa/1/rxFguAPrImHBP4yK3JU9O1r7V8w.mft
rsync://rpki.ripe.net/repository/DEFAULT/rxFguAPrImHBP4yK3JU9O1r7V8w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:81:5a:d4:f3:fc:76:76:b7:8b:b7:2b:3e:52:63:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af1160b803eb2261c13f8c8adc953d3b5afb57cc
Validity
Not Before: May 11 18:00:24 2025 GMT
Not After : May 12 18:00:24 2025 GMT
Subject: CN=d45be83dc9546fcf5ee5ae2dd74f7642b70625fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7e:16:d4:52:69:6c:f3:1e:75:36:48:af:19:
98:41:14:91:8d:03:83:10:c5:6a:68:92:0b:24:70:
98:4d:b0:ae:e7:8f:44:ad:62:ec:58:fb:39:ce:f2:
67:76:c2:1b:60:f1:b4:3c:14:d6:65:b4:3b:b5:2a:
eb:25:50:3d:66:a1:12:b0:74:b7:b5:dc:74:19:77:
dc:ab:5b:41:d1:0e:4d:cd:8e:10:0b:a5:6e:9e:e4:
fa:8b:a8:11:2e:f2:30:01:12:e6:58:03:1c:e7:5c:
1b:a6:27:3d:97:72:37:53:7e:37:cb:77:29:30:63:
8a:f6:eb:32:ba:cd:bc:ea:88:1f:bf:da:ee:fd:7f:
12:e1:04:9b:cc:14:9e:2a:68:c9:e9:15:ca:c6:f2:
1a:ba:84:40:f4:c8:ca:4d:98:30:0f:66:9a:78:90:
13:a9:93:75:73:c7:82:dd:63:8a:d1:55:3e:23:60:
ef:13:32:e5:87:4b:b4:1b:d7:3e:ec:d0:fb:d1:01:
eb:bb:98:46:73:42:45:ad:b8:79:bd:8f:7e:85:c8:
57:df:ae:22:7e:8b:b3:c8:67:56:3b:c3:e9:07:04:
d9:14:b8:cc:15:b6:67:53:b1:df:e7:5a:0b:dd:2c:
3f:bc:82:84:89:46:e0:7d:47:df:65:bb:ee:da:41:
64:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:5B:E8:3D:C9:54:6F:CF:5E:E5:AE:2D:D7:4F:76:42:B7:06:25:FD
X509v3 Authority Key Identifier:
keyid:AF:11:60:B8:03:EB:22:61:C1:3F:8C:8A:DC:95:3D:3B:5A:FB:57:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rxFguAPrImHBP4yK3JU9O1r7V8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/f7f214-1db2-436a-95c6-643f0da849fa/1/rxFguAPrImHBP4yK3JU9O1r7V8w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/f7f214-1db2-436a-95c6-643f0da849fa/1/rxFguAPrImHBP4yK3JU9O1r7V8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:11:d1:db:27:85:95:6d:f3:d9:09:b4:36:2e:34:c4:a1:32:
7a:ac:62:70:86:bc:1a:7c:df:32:85:cd:24:36:5a:76:08:33:
2d:de:e4:80:ee:cb:6f:9d:41:b9:8c:eb:3b:59:b6:99:69:2a:
ed:90:7f:e1:14:3f:23:ca:28:4e:4e:08:c1:e8:db:6f:a3:cd:
8c:c5:25:29:18:32:95:25:dd:25:8f:9b:6e:8f:84:a9:68:7a:
3f:07:47:a6:56:31:b8:08:d7:67:04:42:12:0e:03:23:b3:45:
9d:9c:c1:1b:f5:5c:39:8f:79:61:23:d2:0c:b0:61:6b:58:6b:
c0:b5:0d:37:8f:8d:a2:e3:a7:e4:42:72:86:f0:04:35:a5:6f:
24:8c:f9:a5:a8:63:20:16:da:97:83:3b:f0:55:ef:ec:14:2b:
15:b7:3b:73:5d:d0:92:d6:39:16:5e:74:1d:dd:6c:82:d3:07:
41:c8:75:c2:3c:94:4c:43:31:a1:a3:2b:b3:e1:c6:19:49:bd:
1f:43:f0:46:d4:65:be:74:a1:c7:5a:7e:23:0a:b8:de:8e:db:
fb:f3:3a:98:8c:5b:b5:56:f2:dd:4f:8e:59:a6:fd:a4:5b:c8:
4a:a8:c6:77:81:85:22:16:99:c1:2c:58:5d:8f:3a:95:f5:3a:
24:9a:d9:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 21:37:57 2025 by rpki-client