Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
File: 4IZuWnxyXctqE4zGw0DP2tQxXT4.mft (raw, json)
Hash identifier: HwIgNhPGYExY4VMU8GTRJpG2VBetibPXau0AnMohbdw=
Subject key identifier: DB:6D:3C:E1:9B:AC:29:FC:AC:AC:A0:AC:9A:59:3D:A2:C2:EE:FB:54
Authority key identifier: E0:86:6E:5A:7C:72:5D:CB:6A:13:8C:C6:C3:40:CF:DA:D4:31:5D:3E
Certificate issuer: /CN=e0866e5a7c725dcb6a138cc6c340cfdad4315d3e
Certificate serial: 0196B823B6E47803F30DAC37FB7E0F84DCE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4IZuWnxyXctqE4zGw0DP2tQxXT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
Manifest number: 152D
Signing time: Sat 10 May 2025 03:01:10 +0000
Manifest this update: Sat 10 May 2025 03:01:10 +0000
Manifest next update: Sun 11 May 2025 03:01:10 +0000
Files and hashes: 1: 4IZuWnxyXctqE4zGw0DP2tQxXT4.crl (hash: YIMhbkgYXEjevuanQCY7DmRXqA+fJW/xRA7qAFuWaX4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
rsync://rpki.ripe.net/repository/DEFAULT/4IZuWnxyXctqE4zGw0DP2tQxXT4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 03:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:23:b6:e4:78:03:f3:0d:ac:37:fb:7e:0f:84:dc:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0866e5a7c725dcb6a138cc6c340cfdad4315d3e
Validity
Not Before: May 10 03:01:10 2025 GMT
Not After : May 11 03:01:10 2025 GMT
Subject: CN=db6d3ce19bac29fcacaca0ac9a593da2c2eefb54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:78:7c:92:25:9b:77:d6:df:b5:36:06:4f:30:
eb:03:89:c3:6c:5d:54:69:43:4d:12:ea:79:52:1c:
c8:20:b4:0f:af:af:0e:6c:4d:c5:7b:cf:0f:5e:0c:
12:a7:76:c2:d0:a7:76:88:70:d5:b8:e2:8f:9f:7c:
c8:c0:b3:f1:0c:0e:5b:d5:b5:55:0c:53:34:4e:b3:
0a:b4:0e:14:d1:63:28:3b:84:cf:e8:a3:91:8f:ef:
17:83:62:16:4c:49:92:9c:e8:52:75:89:5b:d8:db:
05:a8:f3:c6:3f:7b:d6:82:a3:26:07:bb:35:63:d7:
7b:ea:49:f6:9c:c9:09:38:27:b8:d9:ec:9f:c4:27:
c0:87:e3:bd:d1:fd:5a:85:6d:e6:c4:b6:ac:3b:57:
2f:ba:24:a9:77:c4:8d:28:6f:77:3a:f0:17:29:c8:
6c:fc:29:54:a9:d6:ab:93:1d:d0:aa:15:dc:6a:77:
5d:ce:e7:97:58:a3:78:b5:6a:88:6b:46:b4:27:67:
63:7a:14:6b:74:aa:0d:51:07:44:05:3b:a3:93:bc:
cb:33:3c:91:63:67:6b:40:79:ae:07:5f:bf:57:f3:
6a:28:24:de:03:f0:f6:8b:bf:64:e8:fe:e1:7f:bd:
aa:9f:2d:27:d4:b8:02:26:59:95:b5:73:34:54:b6:
e3:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:6D:3C:E1:9B:AC:29:FC:AC:AC:A0:AC:9A:59:3D:A2:C2:EE:FB:54
X509v3 Authority Key Identifier:
keyid:E0:86:6E:5A:7C:72:5D:CB:6A:13:8C:C6:C3:40:CF:DA:D4:31:5D:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4IZuWnxyXctqE4zGw0DP2tQxXT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/7ba877-4839-4717-8aa4-24419b876f08/1/4IZuWnxyXctqE4zGw0DP2tQxXT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:08:8a:2c:80:56:40:e1:36:e1:31:13:5d:b9:80:c6:53:46:
88:92:f0:a4:1d:c2:61:19:cc:aa:43:69:59:34:bd:21:a0:aa:
c6:c8:4a:45:6d:06:ba:05:79:b0:98:b9:30:a6:e5:ff:6c:46:
cd:1e:06:ea:b4:df:97:c7:42:a8:15:25:63:f6:88:b2:49:f1:
db:2f:23:df:34:55:ca:0f:e8:66:31:9e:6c:69:55:21:8b:89:
86:17:1c:b2:62:e8:47:3d:44:eb:bc:ab:2a:c2:4f:22:0a:77:
1a:1c:1c:bd:40:1d:78:61:b6:a2:30:cd:55:07:85:e5:72:11:
a1:a4:dd:c4:a3:e8:05:c7:13:55:2c:d9:17:e6:d6:26:f6:0c:
06:76:1a:9b:46:20:5e:40:bd:53:71:39:1d:75:8b:cb:bd:5f:
a5:ca:d4:fe:43:40:aa:93:51:4a:c2:18:90:66:35:c7:e0:07:
52:55:07:ca:37:ab:72:da:ff:9a:f9:c5:ed:09:3f:a0:99:65:
91:c3:ae:52:d5:e4:48:da:37:80:b3:d7:82:55:c7:f8:55:d9:
99:8d:ec:8d:ff:22:f9:85:0e:a7:48:cd:5a:e4:5d:4d:c3:8c:
6e:94:c3:29:a9:dc:a6:20:14:21:7c:38:c6:d2:dc:57:09:22:
ab:b2:6d:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 10:31:34 2025 by rpki-client