Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.mft
File: 13j4yccHK3MEiPnjISjdiVveMtM.mft (raw, json)
Hash identifier: NHkpFeSkpu6T9zHiMuUJexPIhQDJhCgHX03fR9Jiqd8=
Subject key identifier: 68:91:C2:0B:63:5E:8A:1B:D9:89:39:8E:44:93:0A:60:6D:82:AB:46
Authority key identifier: D7:78:F8:C9:C7:07:2B:73:04:88:F9:E3:21:28:DD:89:5B:DE:32:D3
Certificate issuer: /CN=d778f8c9c7072b730488f9e32128dd895bde32d3
Certificate serial: 0196CC17B59FB70FF38AAD00AED0CF5CE6FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/13j4yccHK3MEiPnjISjdiVveMtM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.mft
Manifest number: 0555
Signing time: Wed 14 May 2025 00:00:28 +0000
Manifest this update: Wed 14 May 2025 00:00:28 +0000
Manifest next update: Thu 15 May 2025 00:00:28 +0000
Files and hashes: 1: 13j4yccHK3MEiPnjISjdiVveMtM.crl (hash: eI+PgGLmZrXrM7lBk1NZk9Gp947HCgFd+MkBDFMZNO8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.mft
rsync://rpki.ripe.net/repository/DEFAULT/13j4yccHK3MEiPnjISjdiVveMtM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 22:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cc:17:b5:9f:b7:0f:f3:8a:ad:00:ae:d0:cf:5c:e6:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d778f8c9c7072b730488f9e32128dd895bde32d3
Validity
Not Before: May 14 00:00:28 2025 GMT
Not After : May 15 00:00:28 2025 GMT
Subject: CN=6891c20b635e8a1bd989398e44930a606d82ab46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:56:c0:88:10:c5:da:f7:85:97:f5:c9:e1:82:
8f:88:7a:75:4a:f5:dc:39:92:6c:5b:7d:96:cb:f1:
64:13:e9:1d:d3:48:5b:d0:94:8b:5c:61:f5:57:20:
bb:0e:b3:ca:d1:f7:45:24:33:4d:7f:07:b9:db:e1:
fb:17:d6:70:e8:3a:a8:b0:e8:a8:43:6f:da:93:c3:
e4:32:03:b3:1c:01:90:ec:da:4b:ec:7b:1c:98:dd:
69:16:b0:f8:3a:f2:3b:27:d9:5a:68:b6:07:72:7d:
2d:33:7b:17:88:e5:6b:e0:9c:97:a0:82:90:c0:16:
eb:ab:db:b8:83:a2:34:ca:d7:a5:6d:a6:55:33:71:
f0:37:47:8b:22:c9:0f:7f:4d:5e:3c:4b:9f:8b:81:
1a:e0:61:98:46:2c:b8:b3:bc:7f:b6:1e:18:9d:fb:
5a:47:af:1e:c3:f9:5d:c8:59:c6:62:16:a0:a1:26:
6a:80:6a:a6:f6:17:d5:6d:b1:f2:e4:db:71:41:45:
62:74:2e:f0:79:39:65:1d:c3:f2:83:39:5b:12:4d:
fe:87:4c:75:32:99:0b:99:9a:ea:5c:4b:a2:8c:b2:
10:eb:34:15:14:ee:b1:bb:2c:1c:68:70:24:7e:13:
a4:d5:93:50:48:59:db:0b:4f:67:8a:82:fa:8a:d5:
66:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:91:C2:0B:63:5E:8A:1B:D9:89:39:8E:44:93:0A:60:6D:82:AB:46
X509v3 Authority Key Identifier:
keyid:D7:78:F8:C9:C7:07:2B:73:04:88:F9:E3:21:28:DD:89:5B:DE:32:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/13j4yccHK3MEiPnjISjdiVveMtM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:2f:34:e0:c2:4c:78:c7:bd:cd:3d:3b:5d:dc:c3:d6:b9:a4:
3e:fc:c1:29:39:87:b9:0a:82:70:77:9b:80:ef:43:e1:8a:0f:
84:db:d0:9f:85:23:4f:b5:1b:2f:24:55:f7:3c:76:fc:32:8f:
be:f9:fc:35:0e:d9:17:4c:e9:da:43:44:8c:5b:da:18:d5:65:
12:68:19:38:1c:13:ae:d7:56:b6:90:81:84:1e:a6:1c:e1:40:
81:d4:c9:0d:9d:b7:1e:fc:8f:bf:e8:ab:1b:b0:23:73:e2:c6:
6f:8a:b4:37:21:5e:40:17:d7:64:56:f7:ae:6d:d4:73:b5:5c:
9e:25:c2:40:a2:40:05:bc:e5:6a:e8:25:75:ef:45:1d:b9:ba:
3a:de:f1:b0:99:14:f9:71:63:c3:d3:03:48:ab:43:c0:ca:9d:
0d:99:90:2d:95:7f:33:88:df:03:fb:3b:14:01:b8:e5:91:48:
63:6e:64:55:b2:01:b8:51:94:57:e2:b1:5e:0b:3b:11:57:22:
01:4e:b0:ac:66:e7:d7:a1:1b:6e:58:73:22:05:96:e8:71:71:
1b:68:15:d3:b7:8d:ea:c3:b0:82:ff:38:91:1a:da:a6:ac:61:
5d:e6:e7:a9:c1:0e:c7:df:b7:92:a4:28:7f:43:e4:7f:4c:17:
49:70:c5:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 02:50:49 2025 by rpki-client