Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
File: id8L4W7M0-twbmQXlLyQ1PfWeMk.mft (raw, json)
Hash identifier: 5aGJ5w4QpQohsmN9wqPQ+t0O+86aaPe6Rqsrv+axbcY=
Subject key identifier: 9E:C8:B2:95:C9:F2:9F:CB:56:C7:BD:1F:3F:33:31:84:66:26:CB:7D
Authority key identifier: 89:DF:0B:E1:6E:CC:D3:EB:70:6E:64:17:94:BC:90:D4:F7:D6:78:C9
Certificate issuer: /CN=89df0be16eccd3eb706e641794bc90d4f7d678c9
Certificate serial: 0196B4B4B6F07D753558FB02DDC5A0BC7B3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
Manifest number: 152B
Signing time: Fri 09 May 2025 11:01:04 +0000
Manifest this update: Fri 09 May 2025 11:01:04 +0000
Manifest next update: Sat 10 May 2025 11:01:04 +0000
Files and hashes: 1: id8L4W7M0-twbmQXlLyQ1PfWeMk.crl (hash: vrNvoMKSC10QCPH8y1IUOKCz0xrVbDIcVk8xb2kQDYQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b4:b4:b6:f0:7d:75:35:58:fb:02:dd:c5:a0:bc:7b:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89df0be16eccd3eb706e641794bc90d4f7d678c9
Validity
Not Before: May 9 11:01:04 2025 GMT
Not After : May 10 11:01:04 2025 GMT
Subject: CN=9ec8b295c9f29fcb56c7bd1f3f3331846626cb7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:96:08:57:2e:a2:c0:25:8b:df:26:b2:b0:82:
f7:31:62:20:3c:4d:cf:37:0d:ff:cd:b2:8d:d4:42:
ba:4d:07:0f:34:2d:38:24:8d:8e:5f:d9:e8:38:ad:
59:9e:10:42:98:be:9a:2a:bf:8e:5e:2a:74:15:22:
16:7f:dd:e0:21:9b:2c:17:51:f7:27:9e:bf:03:cd:
09:ab:92:d2:32:f9:c0:e6:c1:f2:92:17:18:a8:d0:
7b:98:88:4a:ce:bb:d2:f8:71:39:c4:31:d4:ab:13:
ac:a4:e8:24:1e:7e:cb:11:e5:c6:f7:7b:32:d6:34:
86:95:28:ed:8e:51:de:b7:fb:13:d8:94:4d:c6:5f:
e6:6a:c0:e1:d0:9c:34:be:c0:e8:6a:04:26:2b:9e:
93:44:94:a7:c8:3c:13:bd:8c:47:e8:18:32:9b:02:
da:99:b4:a2:19:79:b2:b1:8d:9e:ba:6d:95:00:e9:
78:5c:c6:75:c9:db:0d:5a:e0:86:17:96:ea:64:da:
e1:74:14:5c:ab:d5:d8:bc:f3:8f:b3:70:c5:db:06:
6d:c6:11:d8:46:c6:d8:ce:54:1f:62:75:18:08:62:
57:7b:6b:d1:dd:b5:ad:45:5d:10:66:9a:c3:f1:21:
95:77:42:4c:d2:c9:12:3f:37:26:f4:6c:f3:0f:dd:
26:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:C8:B2:95:C9:F2:9F:CB:56:C7:BD:1F:3F:33:31:84:66:26:CB:7D
X509v3 Authority Key Identifier:
keyid:89:DF:0B:E1:6E:CC:D3:EB:70:6E:64:17:94:BC:90:D4:F7:D6:78:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/id8L4W7M0-twbmQXlLyQ1PfWeMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/4f9bf2-625e-4f7c-8f4f-30839ec0eed9/1/id8L4W7M0-twbmQXlLyQ1PfWeMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:0a:6d:f3:75:88:b0:11:39:77:53:d1:80:ee:ff:bb:b0:d0:
18:23:b1:d4:42:24:05:17:73:24:0a:82:3a:6b:20:fc:ed:20:
37:9b:86:3e:99:19:a0:d3:83:3a:c5:b5:f5:31:ac:af:c5:60:
c3:74:8e:04:14:29:20:43:6c:a7:c5:b1:b6:56:36:8b:10:02:
e7:dc:f4:1b:06:47:2d:6d:32:db:33:06:23:cd:b2:49:a5:c5:
ae:ca:30:73:9c:dc:f5:c4:0f:07:21:3a:46:27:33:3f:8b:72:
09:42:42:cd:57:bd:22:62:79:c8:ea:8d:de:29:6f:94:7c:48:
be:45:af:d5:be:9f:ed:c6:5f:2b:35:a5:39:f6:6c:3b:c7:d2:
46:f2:3c:6e:02:6e:94:7b:04:65:65:e9:87:6e:37:81:2c:25:
76:a2:6d:7c:06:7b:42:1f:1e:2f:3a:a0:7a:68:06:6a:aa:e4:
16:b7:e9:bd:4f:21:7f:50:c1:1f:76:3e:c8:d6:28:95:ef:df:
88:f1:19:91:42:da:ac:e8:31:46:76:7c:b4:b3:40:d1:6b:6c:
40:81:64:cb:a0:d9:3d:83:c3:50:4a:f5:0a:85:90:0f:2c:7d:
19:c1:98:86:32:f0:fc:08:c6:1e:a8:01:f5:74:a6:d7:34:6d:
39:b1:22:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 13:33:34 2025 by rpki-client