Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft
File: 0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft (raw, json)
Hash identifier: pM33WlCGki/d5d3kSd1J1XplAFpNyhVlU64DeOkWBcg=
Subject key identifier: 06:82:A9:F7:E4:45:9B:B0:EE:89:AB:1A:0C:50:B0:75:54:E1:AE:7B
Authority key identifier: D2:71:E4:ED:84:25:38:3F:6C:81:C2:1A:48:94:A4:37:63:67:5E:FC
Certificate issuer: /CN=d271e4ed8425383f6c81c21a4894a43763675efc
Certificate serial: 0196C0B88F3C673638D7FA6CC3F4BCCCF196
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nHk7YQlOD9sgcIaSJSkN2NnXvw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft
Manifest number: 3D
Signing time: Sun 11 May 2025 19:00:42 +0000
Manifest this update: Sun 11 May 2025 19:00:42 +0000
Manifest next update: Mon 12 May 2025 19:00:42 +0000
Files and hashes: 1: 0nHk7YQlOD9sgcIaSJSkN2NnXvw.crl (hash: BmPdSm9iZGDDytp80YCmerIGUNektb6P/LgC8ye6qjU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nHk7YQlOD9sgcIaSJSkN2NnXvw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:b8:8f:3c:67:36:38:d7:fa:6c:c3:f4:bc:cc:f1:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d271e4ed8425383f6c81c21a4894a43763675efc
Validity
Not Before: May 11 19:00:42 2025 GMT
Not After : May 12 19:00:42 2025 GMT
Subject: CN=0682a9f7e4459bb0ee89ab1a0c50b07554e1ae7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:41:d1:0b:c3:ab:11:4b:fc:49:42:5a:67:58:
f7:ec:4d:a7:be:3a:08:ab:c9:0c:a6:51:00:62:ab:
06:52:d3:6c:be:e0:a8:60:a0:ed:92:fa:3d:fa:8d:
01:6c:fd:e9:55:5c:f8:17:77:df:b0:15:16:ca:a5:
f5:fc:9a:54:15:64:8d:cd:21:21:5d:a4:81:fd:9a:
c0:d9:dc:a2:96:b5:d3:32:4b:60:77:89:90:79:42:
91:cd:fc:4a:5f:1a:21:12:f9:76:f3:0e:80:f3:9a:
5d:21:3f:69:7b:14:09:78:e0:80:19:1e:53:22:6d:
f8:a8:25:5f:74:10:a9:fa:c6:23:f5:9f:4a:c4:a3:
a0:a4:54:be:58:84:a1:3c:d3:96:58:69:c1:5e:76:
e6:16:17:c9:a3:03:50:00:f7:e4:94:18:ba:52:29:
eb:68:88:b9:35:86:a8:27:fc:3d:7f:bb:cc:b2:da:
92:8c:ee:a0:15:1b:ad:45:f6:ef:b7:aa:25:3d:4e:
32:7a:fc:69:16:ad:62:43:25:e0:f0:9a:72:dc:4c:
e1:4d:1e:98:d7:b3:d3:39:87:b7:54:b1:6b:31:bf:
29:de:84:89:63:65:9c:82:48:41:f8:ba:5f:b7:f8:
a8:8a:8d:97:70:80:b0:40:24:34:c1:4d:e9:73:9b:
42:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:82:A9:F7:E4:45:9B:B0:EE:89:AB:1A:0C:50:B0:75:54:E1:AE:7B
X509v3 Authority Key Identifier:
keyid:D2:71:E4:ED:84:25:38:3F:6C:81:C2:1A:48:94:A4:37:63:67:5E:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nHk7YQlOD9sgcIaSJSkN2NnXvw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/8e16cc-821f-4bd5-9fed-ab810d534bdd/1/0nHk7YQlOD9sgcIaSJSkN2NnXvw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:2b:b8:e7:16:5a:6d:f2:11:c3:cf:d0:36:a6:54:4c:61:77:
43:ee:e2:79:7e:56:e1:dd:a0:b9:1b:e9:85:cb:5b:ea:b1:d2:
a9:af:a3:d5:dc:22:a4:f7:52:61:11:c3:7b:8c:ab:a2:0c:1c:
4b:c2:30:21:2b:97:05:3d:85:20:48:25:04:49:57:e7:64:d2:
94:18:17:f3:da:70:4e:24:f4:c4:5e:4e:cd:e3:8c:f4:9c:2e:
26:3c:ca:18:12:02:bb:8e:46:a4:6e:ae:70:2e:4a:d6:89:94:
49:a3:99:8a:cc:b7:d7:6b:ed:9d:2f:e1:8d:fd:5b:50:34:f7:
38:9a:95:5d:7b:05:c9:6e:4b:8b:c4:70:36:6b:8b:a8:ba:ea:
f8:23:88:c1:b9:e5:7e:ac:79:a3:91:f2:8b:d7:ce:a9:46:95:
39:f9:2a:45:61:de:f4:3e:67:6e:2d:9f:6d:59:50:84:7c:ce:
19:ff:3c:36:19:f2:83:82:82:43:2f:f5:4f:27:95:5b:23:6d:
b4:30:5d:12:2f:d0:c3:c1:9c:02:40:a1:51:c8:76:06:31:2a:
48:ae:ff:2b:e9:cb:f0:7b:12:4d:54:c9:b0:ff:8e:63:15:a2:
2b:49:f8:61:83:2b:a2:b9:a0:58:e8:fe:3f:83:77:07:2d:56:
43:d7:52:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 04:24:47 2025 by rpki-client