Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/37e5cb-d9ee-45d3-95ab-0db0fd74db32/1/chgSXs-7IR7fwt4EcvlkqobL6Z4.mft
File: chgSXs-7IR7fwt4EcvlkqobL6Z4.mft (raw, json)
Hash identifier: C5m85lS3/9ieV8BDjtcU3Utej78oibHaV9sHv9yjKQo=
Subject key identifier: 52:64:5A:DF:41:D4:DA:1B:7C:36:7C:C0:A6:84:BC:20:EE:2D:C0:57
Authority key identifier: 72:18:12:5E:CF:BB:21:1E:DF:C2:DE:04:72:F9:64:AA:86:CB:E9:9E
Certificate issuer: /CN=7218125ecfbb211edfc2de0472f964aa86cbe99e
Certificate serial: 0196D4ADBB1C99D914DCFC36C335640B8C19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/chgSXs-7IR7fwt4EcvlkqobL6Z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/37e5cb-d9ee-45d3-95ab-0db0fd74db32/1/chgSXs-7IR7fwt4EcvlkqobL6Z4.mft
Manifest number: 0C25
Signing time: Thu 15 May 2025 16:01:17 +0000
Manifest this update: Thu 15 May 2025 16:01:17 +0000
Manifest next update: Fri 16 May 2025 16:01:17 +0000
Files and hashes: 1: chgSXs-7IR7fwt4EcvlkqobL6Z4.crl (hash: 5EBPuOaSkIAbghxkTiajfS3DJu7oOMmJLOnAfjxtwy8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/37e5cb-d9ee-45d3-95ab-0db0fd74db32/1/chgSXs-7IR7fwt4EcvlkqobL6Z4.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/37e5cb-d9ee-45d3-95ab-0db0fd74db32/1/chgSXs-7IR7fwt4EcvlkqobL6Z4.mft
rsync://rpki.ripe.net/repository/DEFAULT/chgSXs-7IR7fwt4EcvlkqobL6Z4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 May 2025 14:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d4:ad:bb:1c:99:d9:14:dc:fc:36:c3:35:64:0b:8c:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7218125ecfbb211edfc2de0472f964aa86cbe99e
Validity
Not Before: May 15 16:01:17 2025 GMT
Not After : May 16 16:01:17 2025 GMT
Subject: CN=52645adf41d4da1b7c367cc0a684bc20ee2dc057
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:49:bf:a5:31:3b:0a:82:0f:e9:3b:1a:a9:4f:
b9:76:72:e9:98:a4:4f:ad:4e:15:ac:ae:99:1d:52:
a6:b6:c3:bd:51:fd:5b:73:b2:4d:81:12:82:3d:79:
66:08:e6:6d:a7:cd:69:97:8e:56:60:dc:bb:a8:27:
b4:c5:5e:76:2a:23:9e:29:4c:87:05:3f:02:8b:e5:
96:a6:92:71:ae:5d:d3:fb:07:18:56:60:0b:23:1d:
52:f9:89:e9:63:b2:1f:2b:cb:b1:e9:59:0f:cf:1c:
29:97:aa:47:38:7b:bd:74:07:54:c9:b2:be:ee:3b:
f6:48:3d:9f:45:86:53:43:ea:f1:bd:4b:45:ae:40:
6a:40:c1:d8:ae:fa:e3:1d:63:92:ab:41:83:da:3f:
53:a4:dc:7c:97:89:4d:54:94:d4:49:da:9a:40:55:
32:77:66:f0:15:92:23:35:96:52:14:d9:ee:77:41:
61:90:51:a8:04:e5:01:8a:15:8d:98:d9:83:c3:52:
17:aa:b0:f9:27:ec:f1:02:9d:7d:79:cc:c4:77:70:
7c:c4:5e:81:43:23:f5:62:75:ec:4e:02:2e:3c:38:
d3:f4:8e:86:52:9f:8e:a2:8d:6e:3d:32:ff:2b:3f:
66:09:bf:92:8a:a9:f2:92:66:a7:b7:ec:0e:7e:a0:
c6:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:64:5A:DF:41:D4:DA:1B:7C:36:7C:C0:A6:84:BC:20:EE:2D:C0:57
X509v3 Authority Key Identifier:
keyid:72:18:12:5E:CF:BB:21:1E:DF:C2:DE:04:72:F9:64:AA:86:CB:E9:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/chgSXs-7IR7fwt4EcvlkqobL6Z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/37e5cb-d9ee-45d3-95ab-0db0fd74db32/1/chgSXs-7IR7fwt4EcvlkqobL6Z4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/37e5cb-d9ee-45d3-95ab-0db0fd74db32/1/chgSXs-7IR7fwt4EcvlkqobL6Z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:9a:31:be:d3:3e:fc:aa:a4:55:d0:b5:a5:aa:c8:cf:42:20:
5f:eb:1e:dc:f2:f2:09:cf:92:3f:41:b1:95:b2:49:df:e8:88:
3d:e3:74:b1:52:aa:91:67:d5:2a:3c:2b:d3:f6:54:54:f5:9f:
0f:ac:78:68:5f:dd:1f:97:88:cc:a9:2a:a1:a2:28:2c:4c:bb:
1f:91:52:65:e4:b6:de:c8:37:5d:3d:43:b6:0b:32:c3:3b:7b:
48:b3:11:64:d1:6b:da:bc:d6:a7:73:13:a7:78:d9:89:73:ac:
9c:58:71:a2:c5:38:5f:19:88:3c:ca:75:37:d8:85:c9:f2:7b:
32:a2:70:8c:f2:65:23:91:f3:ae:d7:39:73:6c:08:51:91:d4:
47:d8:6f:73:95:a2:53:43:f5:69:71:8d:f6:60:c9:b4:44:a3:
1a:a9:64:85:46:ef:04:6c:3d:56:f2:07:24:ce:cb:a8:c2:7f:
28:d5:f8:a1:66:a2:07:8b:54:a8:d8:8c:ba:23:b0:ef:1f:4e:
b9:c6:2d:fe:b1:ca:c7:e3:1d:36:69:0e:3a:f3:b4:b5:18:b9:
33:ae:0d:0b:21:d7:43:a3:92:af:4e:b8:ee:e6:b3:d3:f2:9f:
e0:c0:e5:08:82:d6:ce:8f:c4:5f:a7:f1:4d:9b:47:47:6d:9f:
ae:3f:79:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 15 20:36:43 2025 by rpki-client