Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/72ac58-a9f1-4516-861f-7dbf50d7428c/1/0qJGL3IIsJcBO18hbWNDf6QB-3I.mft
File: 0qJGL3IIsJcBO18hbWNDf6QB-3I.mft (raw, json)
Hash identifier: 7ry0+AOl2UNPYOZ8fh5XWTK7J33k6vOvFpN6Pw4OYoc=
Subject key identifier: A6:BA:0F:33:2A:53:54:74:8E:58:75:96:A7:D0:F2:23:CB:F6:BA:60
Authority key identifier: D2:A2:46:2F:72:08:B0:97:01:3B:5F:21:6D:63:43:7F:A4:01:FB:72
Certificate issuer: /CN=d2a2462f7208b097013b5f216d63437fa401fb72
Certificate serial: 0196BA11E626297BABF82878F11779E600C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0qJGL3IIsJcBO18hbWNDf6QB-3I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/72ac58-a9f1-4516-861f-7dbf50d7428c/1/0qJGL3IIsJcBO18hbWNDf6QB-3I.mft
Manifest number: 08A5
Signing time: Sat 10 May 2025 12:00:57 +0000
Manifest this update: Sat 10 May 2025 12:00:57 +0000
Manifest next update: Sun 11 May 2025 12:00:57 +0000
Files and hashes: 1: 0qJGL3IIsJcBO18hbWNDf6QB-3I.crl (hash: ov9WuzhxUbm50vbC736ctKt3hlzjDD1yzUBazivCcmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/72ac58-a9f1-4516-861f-7dbf50d7428c/1/0qJGL3IIsJcBO18hbWNDf6QB-3I.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/72ac58-a9f1-4516-861f-7dbf50d7428c/1/0qJGL3IIsJcBO18hbWNDf6QB-3I.mft
rsync://rpki.ripe.net/repository/DEFAULT/0qJGL3IIsJcBO18hbWNDf6QB-3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 12:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ba:11:e6:26:29:7b:ab:f8:28:78:f1:17:79:e6:00:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2a2462f7208b097013b5f216d63437fa401fb72
Validity
Not Before: May 10 12:00:57 2025 GMT
Not After : May 11 12:00:57 2025 GMT
Subject: CN=a6ba0f332a5354748e587596a7d0f223cbf6ba60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:03:0f:4f:8f:f5:85:ae:4f:d2:61:88:77:42:
b2:9f:13:20:f7:2c:66:cd:8c:48:d4:c5:f1:57:4d:
1d:85:5a:a3:52:24:16:0f:a5:ce:5f:89:a5:2a:94:
8c:4f:2e:f6:21:c2:3e:21:81:00:26:52:07:1c:4e:
43:cc:8f:13:a9:ee:65:f2:32:68:c3:14:52:cd:f1:
3b:b2:32:ad:ca:b0:1a:ce:7e:46:f7:95:76:db:08:
f5:54:42:e8:be:7d:b7:1d:3a:65:48:80:11:dd:e4:
f6:b9:f1:6a:13:4f:da:45:9f:91:f6:99:3e:95:ff:
63:b9:89:b5:ac:55:0e:43:07:ee:2d:2b:8a:22:d1:
02:0f:7f:4c:8e:82:49:ed:d3:c0:5b:ec:24:d4:9c:
cc:f2:23:08:f3:d0:eb:41:f5:af:2e:14:25:31:04:
65:bf:e4:03:29:66:b3:36:cf:a3:07:75:cf:fe:6c:
5c:e5:27:e0:70:e7:c5:c6:db:02:60:5b:39:39:64:
3d:fa:e1:15:1a:5b:9e:d2:13:f1:21:0c:36:e7:46:
f1:bb:d7:15:28:f9:de:68:73:73:c6:15:ed:04:4e:
04:0f:72:73:59:4a:35:ad:71:65:cf:61:32:8c:ff:
77:2e:04:d4:1b:f2:b5:ea:21:c4:d8:3e:ed:9c:ad:
ec:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:BA:0F:33:2A:53:54:74:8E:58:75:96:A7:D0:F2:23:CB:F6:BA:60
X509v3 Authority Key Identifier:
keyid:D2:A2:46:2F:72:08:B0:97:01:3B:5F:21:6D:63:43:7F:A4:01:FB:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0qJGL3IIsJcBO18hbWNDf6QB-3I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/72ac58-a9f1-4516-861f-7dbf50d7428c/1/0qJGL3IIsJcBO18hbWNDf6QB-3I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/72ac58-a9f1-4516-861f-7dbf50d7428c/1/0qJGL3IIsJcBO18hbWNDf6QB-3I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:e1:c9:8c:1d:3e:34:d8:45:06:3c:61:cc:ae:af:38:b4:1a:
1d:49:af:f7:90:03:1c:60:ea:0e:4d:dd:36:af:24:af:4d:7a:
09:4d:45:04:86:bd:c1:9c:a3:7f:2c:da:70:6e:ce:86:2b:58:
d4:76:26:e3:6e:37:d7:ff:e6:22:a2:44:0d:51:05:ef:4c:a9:
af:fe:8c:88:97:a1:c7:2d:f7:04:79:84:d5:bb:e1:3e:c8:b6:
8f:da:68:d3:bc:80:f7:11:71:0a:de:b4:07:38:bc:60:c9:a3:
59:04:ef:d1:4e:9c:d4:48:6e:c1:2c:d1:b4:41:3c:2b:ef:21:
3a:cb:29:73:21:3f:4f:4e:f7:39:a2:c6:5a:6e:83:b2:9a:6a:
f9:30:d9:d4:33:9e:99:95:63:3a:ff:e6:80:8f:d2:8a:ff:8e:
bc:51:26:11:46:82:df:70:e1:cd:cc:38:d1:73:09:cc:09:f8:
b6:5a:17:13:49:be:bb:21:d2:5a:81:e4:14:fd:10:86:04:e2:
c1:c1:ad:bb:ce:2e:08:98:f3:d1:c2:b6:49:51:a7:6f:c2:fd:
be:73:4d:49:bd:6a:44:6b:06:1d:c1:e5:b4:b5:b2:b8:52:82:
0b:41:e1:47:1d:60:f1:2c:9f:b6:fe:58:ab:9d:a0:a0:cf:d6:
11:4d:d0:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 17:01:07 2025 by rpki-client