Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft
File: JchJyqV3LJi4E8E7TzD85PSNLa4.mft (raw, json)
Hash identifier: gDMo3Fd1+LTjG62WjpU6RzCyxQr3FVCjaEiEY8eTg5k=
Subject key identifier: 57:A1:CB:FD:CA:45:A8:A8:CD:2D:C0:D0:E7:DF:5C:64:BC:7B:06:61
Authority key identifier: 25:C8:49:CA:A5:77:2C:98:B8:13:C1:3B:4F:30:FC:E4:F4:8D:2D:AE
Certificate issuer: /CN=25c849caa5772c98b813c13b4f30fce4f48d2dae
Certificate serial: 0196BE259B8DAE5F826BCFD18073FCFF2EEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft
Manifest number: 0909
Signing time: Sun 11 May 2025 07:00:57 +0000
Manifest this update: Sun 11 May 2025 07:00:57 +0000
Manifest next update: Mon 12 May 2025 07:00:57 +0000
Files and hashes: 1: JchJyqV3LJi4E8E7TzD85PSNLa4.crl (hash: CIem/leqf+n3XCYAfmDKgUKEs6FbUtBo9dwZkXFnpfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:25:9b:8d:ae:5f:82:6b:cf:d1:80:73:fc:ff:2e:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25c849caa5772c98b813c13b4f30fce4f48d2dae
Validity
Not Before: May 11 07:00:57 2025 GMT
Not After : May 12 07:00:57 2025 GMT
Subject: CN=57a1cbfdca45a8a8cd2dc0d0e7df5c64bc7b0661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2e:55:54:96:4b:43:cf:81:1e:33:8c:2f:50:
bc:bb:9c:11:be:0b:be:d4:6c:34:c2:67:05:7f:12:
53:95:71:4a:7b:2c:a0:15:56:9b:03:3c:1e:60:29:
8e:cd:38:99:99:bb:f5:d9:88:57:e8:3b:6c:cd:cd:
2a:7c:8e:cd:2b:dc:d8:cd:48:be:bc:14:e2:a5:26:
12:dd:2e:34:57:e9:01:3e:ff:6b:5f:d6:80:e3:a1:
46:b1:dc:2d:3d:72:19:ec:72:ef:13:e8:eb:a8:37:
31:b4:00:76:28:c5:c9:0d:13:6a:34:2c:7c:cc:2a:
71:5e:83:fe:10:06:8e:49:6b:e5:80:4a:60:58:05:
8c:d4:4b:32:07:88:ea:fe:c1:d7:79:04:db:8f:4b:
69:9e:a9:7c:64:46:f1:c4:67:a9:72:01:e4:ef:10:
6e:7a:91:71:79:f0:68:dd:20:f2:51:bc:1d:15:7a:
2b:18:11:b7:af:88:f6:9e:f4:59:55:df:3c:bc:a3:
ac:5e:d2:6c:cb:e1:d3:5a:60:4e:b9:42:3a:3c:ba:
c8:0e:02:b6:1d:b9:81:79:87:1c:12:77:f2:56:fb:
b4:ae:23:9c:62:ca:51:2a:af:9d:24:21:17:c6:13:
ea:3c:42:b4:1b:82:1a:83:f2:26:70:50:b4:0c:e1:
2d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:A1:CB:FD:CA:45:A8:A8:CD:2D:C0:D0:E7:DF:5C:64:BC:7B:06:61
X509v3 Authority Key Identifier:
keyid:25:C8:49:CA:A5:77:2C:98:B8:13:C1:3B:4F:30:FC:E4:F4:8D:2D:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:37:71:ec:25:df:90:44:92:5d:5c:a4:9d:0a:4e:4a:a0:a5:
a7:ea:80:43:72:a2:91:b8:d9:bf:1e:66:00:d6:2d:0d:f5:dc:
b7:a0:e1:65:57:b8:88:6e:43:17:2b:44:2e:9c:33:1b:47:86:
1e:59:67:7d:cd:4b:0e:f1:ff:8e:ef:25:83:61:e8:3b:05:5b:
55:37:c5:d1:e2:f9:89:4a:88:b3:2d:d8:d0:0f:bc:98:4f:ec:
40:26:9d:03:0c:66:0e:d8:71:02:9d:2f:7e:01:cd:83:c1:23:
b3:92:0b:e3:d5:9e:62:d9:ce:4a:06:7d:24:04:04:b3:93:e4:
bd:6c:40:15:c5:75:43:7d:ae:fc:dc:97:d4:74:50:95:bc:b4:
27:0f:a4:5e:ea:35:21:9f:fa:e3:6a:e8:e7:7c:aa:91:3e:e0:
1f:b7:71:8e:b3:2a:4e:3b:d1:9c:84:81:68:e2:60:87:02:27:
44:27:a5:02:89:9a:60:5e:a3:99:03:17:25:37:da:df:e2:10:
0f:7f:bd:81:fe:7a:c2:a9:89:61:73:ee:6f:c5:b7:5c:91:33:
83:b0:08:e1:ba:91:44:4a:c9:5a:22:f1:6f:d7:75:a6:da:87:
2f:33:7c:aa:73:c4:66:27:f1:b6:cd:c1:55:99:c9:98:9f:46:
4a:29:b0:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 14:47:45 2025 by rpki-client