Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.mft
File: cfxj7vZnTya1A6gwpd-pU9L_qr4.mft (raw, json)
Hash identifier: 23eCpw6zjU96b/GoqfypeJ4xGmdwywof/FenkHZ/Iuc=
Subject key identifier: 0E:C3:F7:99:DE:64:81:F5:F9:C6:43:A1:C1:C8:F0:DC:82:9D:C2:D9
Authority key identifier: 71:FC:63:EE:F6:67:4F:26:B5:03:A8:30:A5:DF:A9:53:D2:FF:AA:BE
Certificate issuer: /CN=71fc63eef6674f26b503a830a5dfa953d2ffaabe
Certificate serial: 0196C3828532F4769443A1537C82E8E53166
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cfxj7vZnTya1A6gwpd-pU9L_qr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.mft
Manifest number: 139F
Signing time: Mon 12 May 2025 08:00:32 +0000
Manifest this update: Mon 12 May 2025 08:00:32 +0000
Manifest next update: Tue 13 May 2025 08:00:32 +0000
Files and hashes: 1: cfxj7vZnTya1A6gwpd-pU9L_qr4.crl (hash: JE44o6hSih5blz1ucSiKQzce9ibMQDuGyj1uWeDHWWU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cfxj7vZnTya1A6gwpd-pU9L_qr4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:82:85:32:f4:76:94:43:a1:53:7c:82:e8:e5:31:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71fc63eef6674f26b503a830a5dfa953d2ffaabe
Validity
Not Before: May 12 08:00:32 2025 GMT
Not After : May 13 08:00:32 2025 GMT
Subject: CN=0ec3f799de6481f5f9c643a1c1c8f0dc829dc2d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1f:59:b8:46:ac:19:ed:2d:8e:57:a0:ae:80:
6d:30:91:17:65:d5:38:7d:b3:58:4d:7e:2e:7b:fe:
44:1e:e5:fc:8e:21:12:1f:84:91:c7:0f:0e:c9:b4:
7e:2f:26:e2:34:1a:4f:d2:d1:00:6b:67:e1:97:e8:
11:40:27:3e:2b:75:f1:10:32:3a:c8:f5:97:80:96:
cd:ca:06:84:82:5f:a4:5e:c1:a1:e1:1c:13:1d:1f:
14:cd:ad:62:7a:47:f8:5f:2c:6d:43:38:e6:88:c2:
fc:a1:30:fa:ae:d1:9b:d9:ed:e4:d9:4c:3d:8a:05:
c9:63:d0:d6:82:00:ef:02:06:b2:39:08:f3:04:d7:
ee:77:da:42:ea:47:1d:42:a5:15:66:8b:f8:44:38:
24:53:03:d3:8d:e0:32:d8:7e:16:05:57:9d:2a:3c:
e2:27:85:11:1d:f3:ad:c5:d2:97:c9:49:89:74:5d:
b6:60:97:36:e2:13:36:15:27:34:72:01:94:cd:c4:
35:b8:f2:50:50:b7:f6:d1:d8:c9:0b:a3:ab:52:2b:
5a:02:52:ed:d0:10:50:c8:b9:db:c3:9a:dd:ea:2f:
bf:a2:58:7c:8c:80:10:fe:2b:43:59:6d:47:06:b2:
d8:0e:2b:df:c4:28:db:19:cd:4a:87:86:3a:ee:85:
65:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:C3:F7:99:DE:64:81:F5:F9:C6:43:A1:C1:C8:F0:DC:82:9D:C2:D9
X509v3 Authority Key Identifier:
keyid:71:FC:63:EE:F6:67:4F:26:B5:03:A8:30:A5:DF:A9:53:D2:FF:AA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cfxj7vZnTya1A6gwpd-pU9L_qr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/f8010e-6a3f-4ff0-95e7-d418248e5728/1/cfxj7vZnTya1A6gwpd-pU9L_qr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:35:bb:95:31:3c:0c:aa:0c:24:53:ed:b4:12:1f:11:f4:c8:
82:0d:aa:e3:68:cf:14:d6:74:95:8c:b0:3d:ee:20:0a:7c:e9:
c0:ce:60:76:73:78:2d:f0:2a:5b:8a:b1:3c:53:27:78:fe:fe:
9b:2c:c8:43:89:da:3b:fb:b6:ae:d9:a4:bd:0f:c8:f0:9d:f2:
22:67:c5:9e:64:6b:63:25:4f:e6:7d:50:fb:31:32:55:e6:12:
89:1b:6a:ca:df:e1:e7:21:c6:78:30:3b:31:90:ec:39:76:8c:
3a:e9:0d:3a:59:30:0d:9b:ed:67:dc:a9:23:04:6b:81:76:de:
e5:b7:c0:7e:17:92:6a:ed:1c:75:8e:ea:b7:0c:c4:9c:f5:b3:
ce:d4:a8:82:93:e6:40:9f:81:0c:0a:5f:f1:0c:21:46:c3:24:
25:93:01:d6:af:6b:77:b1:86:5a:e9:0a:5a:41:4c:31:15:d3:
40:92:07:ab:79:0a:68:30:8b:f8:7a:c7:03:b5:e1:08:ea:4a:
6b:4c:0e:39:1b:35:cc:7e:1d:f1:af:5d:b4:36:ea:7b:e3:3d:
3e:a6:79:35:08:9b:9a:53:44:6d:c3:14:14:b7:00:16:3d:f2:
c1:af:57:fa:d8:37:fd:8f:18:5d:d1:72:2c:af:fa:8e:e4:db:
69:8a:69:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 11:06:13 2025 by rpki-client