Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.mft
File: 9O1eXbuh6rbTlY5ZQYKcnaGyxn8.mft (raw, json)
Hash identifier: aw5Md7DiC/vUYL6Q18XTVMagmjeX08O87v1G02eN2+Q=
Subject key identifier: 8F:1D:3E:DF:D8:EB:FC:DE:ED:B9:DE:F1:F7:A2:BC:A6:B3:61:D7:DC
Authority key identifier: F4:ED:5E:5D:BB:A1:EA:B6:D3:95:8E:59:41:82:9C:9D:A1:B2:C6:7F
Certificate issuer: /CN=f4ed5e5dbba1eab6d3958e5941829c9da1b2c67f
Certificate serial: 0196DE54D49CEC47280B6068E97DEA1BAD0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.mft
Manifest number: 0951
Signing time: Sat 17 May 2025 13:00:23 +0000
Manifest this update: Sat 17 May 2025 13:00:23 +0000
Manifest next update: Sun 18 May 2025 13:00:23 +0000
Files and hashes: 1: 9O1eXbuh6rbTlY5ZQYKcnaGyxn8.crl (hash: nSWv27XkCEnLrEarXqppQ2HMoBlk84n3Dsus5BFxxLA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.mft
rsync://rpki.ripe.net/repository/DEFAULT/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 18 May 2025 11:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:de:54:d4:9c:ec:47:28:0b:60:68:e9:7d:ea:1b:ad:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4ed5e5dbba1eab6d3958e5941829c9da1b2c67f
Validity
Not Before: May 17 13:00:23 2025 GMT
Not After : May 18 13:00:23 2025 GMT
Subject: CN=8f1d3edfd8ebfcdeedb9def1f7a2bca6b361d7dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:8d:e2:21:80:c8:91:a6:0a:95:ef:ba:6a:53:
fb:66:1c:5c:79:03:66:b9:76:ca:87:3a:54:a4:ee:
31:fc:d0:84:fe:25:ef:c6:8b:4c:af:73:5f:78:8d:
3a:77:22:e0:87:da:24:08:e9:74:9d:64:aa:69:d0:
bd:6e:52:b9:3d:54:ff:8d:32:eb:13:87:da:15:84:
64:e3:5b:ad:4f:d8:b5:89:9d:7d:2f:a9:3a:ed:b1:
16:89:bd:51:c1:e6:40:b2:5f:90:e9:db:4e:be:ac:
47:1a:3f:9d:87:2c:b6:df:e8:0c:5f:df:0a:ae:d6:
ce:5f:31:40:b5:2c:ff:c3:9a:ff:63:f7:a3:c6:be:
00:6c:c5:13:93:df:2e:59:ff:21:cd:4d:d6:d7:1c:
10:ce:67:64:7d:e2:b5:87:b2:d6:c4:2d:0c:e5:0a:
89:b7:01:85:d7:cf:5b:35:82:41:f4:81:8f:9b:9f:
69:ad:1d:cd:33:01:2d:33:ce:5c:45:da:7a:83:c8:
b2:10:22:71:96:fc:3c:81:37:0e:1c:1e:e1:44:c0:
d3:a9:82:26:33:e6:9b:3f:01:74:97:66:f6:62:13:
b6:21:8e:cd:f0:a9:6d:8c:b3:1f:29:e3:76:9a:a3:
0c:28:d5:2a:e7:98:77:e8:0f:90:ce:49:a8:30:db:
7c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:1D:3E:DF:D8:EB:FC:DE:ED:B9:DE:F1:F7:A2:BC:A6:B3:61:D7:DC
X509v3 Authority Key Identifier:
keyid:F4:ED:5E:5D:BB:A1:EA:B6:D3:95:8E:59:41:82:9C:9D:A1:B2:C6:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:e8:b3:51:ee:46:a4:2e:49:44:16:5d:46:bb:3c:1f:04:47:
45:42:91:6e:03:02:91:67:16:2f:39:59:79:28:77:ec:9e:ee:
34:fb:a9:3f:9c:51:34:89:3d:78:99:fd:69:bc:12:e4:15:a0:
e9:cb:04:22:c4:1f:52:fb:ed:38:06:7b:06:01:c3:f4:76:c5:
d1:4d:e6:3f:0c:3c:af:cb:97:02:d6:69:e0:40:60:58:df:d2:
60:14:1d:ad:91:32:8c:51:4f:c2:82:ae:41:d9:db:4f:0a:32:
17:3a:6e:00:2c:50:29:4d:15:77:37:b5:b9:9e:15:b0:5e:20:
60:9b:89:28:73:ae:04:aa:4d:e7:e4:7d:21:6c:39:7c:53:7a:
68:da:79:92:dd:9b:9e:0c:26:e9:f7:57:77:8e:ef:a5:1a:08:
be:a6:ce:d5:fe:2a:98:82:f9:64:25:21:ce:f5:79:ef:7b:cd:
ad:98:de:28:d5:51:a8:36:97:b5:5b:c8:56:f5:eb:2c:0f:18:
b4:15:10:3d:2a:8e:8d:a1:c2:59:89:c3:78:0b:08:10:e7:1e:
19:e9:48:e2:0b:9f:66:f4:e4:30:4c:e9:e7:24:2d:f4:15:b4:
b3:e8:e3:2e:27:10:6d:c3:0b:bb:c8:2e:0f:66:19:b4:69:cf:
32:a0:1b:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 16:37:35 2025 by rpki-client