Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/295c95-e367-4ca2-9bd5-ab997fc650e4/1/a-SeWhSwy_QQTANLVyoPnxVKmXU.mft
File: a-SeWhSwy_QQTANLVyoPnxVKmXU.mft (raw, json)
Hash identifier: PZkoF9X2JOUg0wRh4+Vpku+cyg+3lmNJVSIJF/DolLU=
Subject key identifier: CF:66:DB:AF:17:52:E3:82:CC:67:1C:2D:4A:14:C5:41:85:56:5E:5E
Authority key identifier: 6B:E4:9E:5A:14:B0:CB:F4:10:4C:03:4B:57:2A:0F:9F:15:4A:99:75
Certificate issuer: /CN=6be49e5a14b0cbf4104c034b572a0f9f154a9975
Certificate serial: 0196BE2540EA49499959D053EC7409ACDB2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a-SeWhSwy_QQTANLVyoPnxVKmXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/295c95-e367-4ca2-9bd5-ab997fc650e4/1/a-SeWhSwy_QQTANLVyoPnxVKmXU.mft
Manifest number: 03D9
Signing time: Sun 11 May 2025 07:00:34 +0000
Manifest this update: Sun 11 May 2025 07:00:34 +0000
Manifest next update: Mon 12 May 2025 07:00:34 +0000
Files and hashes: 1: a-SeWhSwy_QQTANLVyoPnxVKmXU.crl (hash: 7McPIDM82wylawW0oyEKnYsMkd/jJ43lgvtLbL3f0Ig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/295c95-e367-4ca2-9bd5-ab997fc650e4/1/a-SeWhSwy_QQTANLVyoPnxVKmXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/295c95-e367-4ca2-9bd5-ab997fc650e4/1/a-SeWhSwy_QQTANLVyoPnxVKmXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/a-SeWhSwy_QQTANLVyoPnxVKmXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:25:40:ea:49:49:99:59:d0:53:ec:74:09:ac:db:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6be49e5a14b0cbf4104c034b572a0f9f154a9975
Validity
Not Before: May 11 07:00:34 2025 GMT
Not After : May 12 07:00:34 2025 GMT
Subject: CN=cf66dbaf1752e382cc671c2d4a14c54185565e5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:42:2b:c3:2c:2a:0d:23:62:c8:ae:1b:c7:24:
86:c7:11:11:48:82:b4:74:d0:6c:30:f8:e3:a8:7c:
01:97:9e:0b:25:34:25:62:33:dc:58:22:f2:2d:f2:
06:b1:c0:9d:41:e1:27:56:26:b7:de:e6:b8:17:30:
8c:68:b5:2e:22:30:50:f9:dd:68:7b:cb:1b:23:3e:
18:27:a7:af:76:fa:7c:6b:63:73:e6:25:75:19:06:
2e:35:2d:b2:d7:20:c9:6e:5b:f1:59:29:56:b5:53:
e8:b4:9f:e1:e2:37:f1:d5:56:93:d1:bb:34:3f:de:
4e:c1:a2:7e:25:4d:f0:8f:b7:0c:55:07:27:c5:19:
42:97:9c:e8:5d:a9:4c:e9:c4:23:4e:d3:24:47:90:
e5:59:0f:af:7d:a7:c6:d8:43:bc:d6:08:94:e7:dd:
5b:01:7f:3c:7b:da:cb:dd:37:c5:c1:56:74:d0:ee:
c4:65:ce:b1:30:5a:d1:6e:f4:7a:65:8d:e1:b9:17:
c8:c0:0b:2d:b7:b2:41:f9:83:59:2a:8b:09:7a:48:
e7:00:ec:ca:2c:ba:bd:47:40:b7:e4:fe:41:9d:27:
f9:f7:ac:91:6f:a9:d9:e8:aa:e6:39:76:0f:81:7c:
0d:08:34:39:53:46:6f:8f:ee:35:fa:e6:4b:e8:9d:
92:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:66:DB:AF:17:52:E3:82:CC:67:1C:2D:4A:14:C5:41:85:56:5E:5E
X509v3 Authority Key Identifier:
keyid:6B:E4:9E:5A:14:B0:CB:F4:10:4C:03:4B:57:2A:0F:9F:15:4A:99:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a-SeWhSwy_QQTANLVyoPnxVKmXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/295c95-e367-4ca2-9bd5-ab997fc650e4/1/a-SeWhSwy_QQTANLVyoPnxVKmXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/295c95-e367-4ca2-9bd5-ab997fc650e4/1/a-SeWhSwy_QQTANLVyoPnxVKmXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:e4:b2:b4:3a:8f:82:3d:f5:a4:3e:04:57:cc:96:f4:4f:64:
8e:e4:b9:c2:f1:b6:22:8d:43:e2:89:75:64:b0:98:b7:f6:d6:
a3:94:c1:6a:6e:6f:c7:77:c8:8d:8c:93:7b:5a:96:90:57:23:
be:5b:3a:29:0b:27:df:de:13:73:9a:a6:3b:f7:4d:ce:1e:a0:
fa:2a:56:c5:c1:35:34:53:ef:47:94:c6:36:ef:de:2b:07:67:
ea:df:4a:c9:d5:88:0a:d8:f6:ba:27:3d:b9:19:06:bf:b2:23:
14:97:32:1b:b2:da:03:fd:89:da:02:ae:81:52:f9:ba:21:77:
b6:e1:38:e2:51:14:8a:99:60:74:1b:6b:d4:34:f0:1b:51:ac:
05:3e:47:1c:3f:2c:2a:e1:09:3c:40:aa:3e:3a:7a:b7:70:98:
c0:5f:2c:08:ed:f2:d5:ac:5f:32:85:8a:1c:df:88:c6:bb:2f:
18:4e:35:eb:8e:d1:24:63:eb:41:44:5a:f6:46:70:76:55:e7:
fa:88:d9:c7:09:96:0b:69:a1:24:59:ee:d9:7b:da:12:e6:08:
60:91:88:aa:28:22:c9:3d:17:45:df:ac:67:c6:b2:7c:c1:96:
0c:18:c0:fb:b4:e3:4c:8b:37:f4:83:f1:83:64:1a:08:64:2c:
bd:63:b5:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 09:25:38 2025 by rpki-client