Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft
File: sLQvCUy6l0wfrsa97BVg9mOHiRE.mft (raw, json)
Hash identifier: +qzXfcdV8hY9Pwo5qEQZW8oJToo7eddw6uEMat8/5vI=
Subject key identifier: 44:78:6B:19:08:01:5C:5E:7B:91:09:64:DB:62:7E:C7:1F:31:C8:7C
Authority key identifier: B0:B4:2F:09:4C:BA:97:4C:1F:AE:C6:BD:EC:15:60:F6:63:87:89:11
Certificate issuer: /CN=b0b42f094cba974c1faec6bdec1560f663878911
Certificate serial: 0196D0D070C895DA8D4062DD93A0FD24AB17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLQvCUy6l0wfrsa97BVg9mOHiRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft
Manifest number: 11CF
Signing time: Wed 14 May 2025 22:00:43 +0000
Manifest this update: Wed 14 May 2025 22:00:43 +0000
Manifest next update: Thu 15 May 2025 22:00:43 +0000
Files and hashes: 1: sLQvCUy6l0wfrsa97BVg9mOHiRE.crl (hash: XBiiTpLzwJB7WZYPBaMvssAXlOlpL5DwJUopd/bO2NQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft
rsync://rpki.ripe.net/repository/DEFAULT/sLQvCUy6l0wfrsa97BVg9mOHiRE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 17:32:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d0:d0:70:c8:95:da:8d:40:62:dd:93:a0:fd:24:ab:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0b42f094cba974c1faec6bdec1560f663878911
Validity
Not Before: May 14 22:00:43 2025 GMT
Not After : May 15 22:00:43 2025 GMT
Subject: CN=44786b1908015c5e7b910964db627ec71f31c87c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:dc:37:58:af:4f:c6:82:16:eb:fa:24:2c:fc:
68:77:32:6b:0c:2c:30:dd:67:0c:95:a1:79:e1:06:
e2:4d:be:e7:be:6a:72:a4:c7:a5:b0:1d:e1:bf:1c:
51:86:c1:b5:a1:f9:27:d1:ad:24:47:24:4e:21:16:
2c:65:c3:e9:7b:27:f2:db:2c:4f:9f:b1:ae:40:bf:
0d:89:bc:a7:fb:c7:48:24:66:5b:65:c1:62:d7:0d:
c9:5d:6d:57:23:60:98:a0:23:e7:6b:3c:52:a9:5f:
21:56:e0:be:f3:70:79:ec:09:7a:09:6d:64:82:26:
b6:2e:2f:67:8e:76:2d:b6:b2:44:49:a5:da:6e:e6:
3d:47:65:62:b7:30:e4:68:68:db:17:b4:3c:61:23:
69:24:6d:08:27:03:0f:c7:99:7f:6a:61:d7:56:c5:
2c:ee:bb:67:98:d0:35:ed:26:0e:5c:d0:7d:44:68:
77:37:f9:eb:78:58:98:9c:0b:b7:d7:99:62:7f:82:
5a:73:c4:47:db:e6:79:59:30:0d:b9:9d:c2:99:8c:
01:20:f9:39:a8:43:c0:52:cf:78:59:00:61:9c:9f:
ea:63:f7:01:c5:85:3a:43:16:37:55:d0:64:f5:5e:
40:f4:84:0c:b3:40:0c:60:ad:ed:e9:b6:7e:b1:78:
b9:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:78:6B:19:08:01:5C:5E:7B:91:09:64:DB:62:7E:C7:1F:31:C8:7C
X509v3 Authority Key Identifier:
keyid:B0:B4:2F:09:4C:BA:97:4C:1F:AE:C6:BD:EC:15:60:F6:63:87:89:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLQvCUy6l0wfrsa97BVg9mOHiRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:bd:e1:78:7c:24:40:19:cf:67:2e:dc:7f:89:cd:35:26:90:
c1:ee:4f:24:2d:8b:61:15:1f:52:d2:7b:54:4c:25:12:62:b8:
fb:d1:e9:ab:fd:b5:bd:4c:76:09:ed:c0:ad:9c:92:af:c8:fe:
3a:e0:12:b3:70:e6:73:08:d5:3c:28:c9:b9:9b:b5:c2:c5:49:
e1:fa:67:ce:38:71:f9:78:78:9a:71:e5:75:6f:a5:84:44:5b:
2e:d0:dc:e4:cf:0f:a7:78:f3:fc:85:f4:9d:3c:a5:1c:2f:97:
a5:01:22:03:84:dc:7e:0d:6a:9b:d2:1a:23:98:71:f0:33:a7:
e9:21:af:11:58:e0:d1:8a:8b:07:94:59:39:e6:26:89:c8:c5:
83:34:b0:a3:5c:ad:a8:c4:c2:e5:c7:c4:d2:d1:74:81:1c:b9:
e2:3a:78:f3:71:d0:74:78:c3:bd:09:a6:76:89:ae:98:cb:ed:
d6:00:fe:35:cb:5b:60:3e:c1:a6:12:8e:72:cb:67:b7:2a:69:
2b:51:8b:e8:ca:e5:de:0b:b9:a3:27:87:b3:2c:1f:21:3c:d5:
8f:fc:15:82:0c:aa:bb:ac:26:81:5a:69:3f:6f:ac:9f:e7:ea:
cc:9f:39:b5:fe:1e:42:fb:00:d5:50:b0:b2:91:25:a4:0f:fa:
5e:ac:32:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 01:29:01 2025 by rpki-client