Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
File: b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft (raw, json)
Hash identifier: SjUm6Pq+n/KWt+6vjThGuIw6kL8fvh5S2+2uH8miiVI=
Subject key identifier: 60:44:9E:D1:9B:27:E4:75:FC:37:53:BD:47:C3:57:E4:E3:FB:5C:25
Authority key identifier: 6F:64:8E:3C:AB:60:9B:D1:48:3C:A3:E5:19:11:CE:AA:53:F0:C6:A1
Certificate issuer: /CN=6f648e3cab609bd1483ca3e51911ceaa53f0c6a1
Certificate serial: 0196A91E0CEAF1B91613DC20CE6AD5899C1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b2SOPKtgm9FIPKPlGRHOqlPwxqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
Manifest number: 0F21
Signing time: Wed 07 May 2025 05:00:40 +0000
Manifest this update: Wed 07 May 2025 05:00:40 +0000
Manifest next update: Thu 08 May 2025 05:00:40 +0000
Files and hashes: 1: b2SOPKtgm9FIPKPlGRHOqlPwxqE.crl (hash: aBYQp/L3X3OCBC7ekV52RbU2De2fFOWfczxYt4qjZjI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/b2SOPKtgm9FIPKPlGRHOqlPwxqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a9:1e:0c:ea:f1:b9:16:13:dc:20:ce:6a:d5:89:9c:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f648e3cab609bd1483ca3e51911ceaa53f0c6a1
Validity
Not Before: May 7 05:00:40 2025 GMT
Not After : May 8 05:00:40 2025 GMT
Subject: CN=60449ed19b27e475fc3753bd47c357e4e3fb5c25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:cc:56:0e:47:0d:64:73:57:21:3a:9d:43:ce:
6d:b7:43:5f:2e:ee:68:61:de:78:40:f6:28:34:8e:
96:3c:8f:9f:bf:a6:cf:ce:fe:59:4b:fa:b3:3e:28:
1d:48:36:27:a8:52:95:e4:5d:dd:47:2c:eb:56:da:
77:b9:65:33:d2:4a:9f:79:78:8f:e7:87:48:a9:a1:
4f:b7:f6:93:37:9b:74:8b:ad:5a:b2:2d:b0:38:2e:
fa:ca:9f:d0:7d:d0:b9:f5:aa:2f:35:55:f5:e3:26:
c4:d9:8e:35:44:7a:f7:ac:f6:d9:d8:4b:da:04:d9:
cb:c9:24:53:92:0d:55:d1:68:ed:f3:f8:10:ed:bd:
32:52:77:ae:99:b3:bc:a4:7f:00:6f:da:7f:27:55:
60:8a:6e:04:87:67:19:2b:17:cc:1d:c9:e7:1b:9c:
57:f0:fa:e5:22:00:3c:26:44:fa:ec:ab:f9:5d:f1:
12:c5:8e:ec:cf:5a:19:d6:21:d6:47:95:4f:60:78:
4d:61:e4:7a:63:d9:54:8e:5d:5e:63:92:e5:a5:41:
b2:f3:25:f3:43:bc:fd:3e:4e:ff:ae:47:51:bb:f5:
00:0a:7e:68:d0:7b:d8:50:5d:42:c1:a6:72:f4:b2:
82:88:71:c7:d7:bf:f0:8a:c3:1a:1f:10:5c:22:b8:
09:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:44:9E:D1:9B:27:E4:75:FC:37:53:BD:47:C3:57:E4:E3:FB:5C:25
X509v3 Authority Key Identifier:
keyid:6F:64:8E:3C:AB:60:9B:D1:48:3C:A3:E5:19:11:CE:AA:53:F0:C6:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2SOPKtgm9FIPKPlGRHOqlPwxqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:d1:bf:0a:18:8d:fa:7f:2f:21:a5:97:5b:01:9c:37:f2:7a:
6d:d2:61:91:7c:a8:ea:b8:d2:9b:b5:15:ba:62:fe:f0:92:69:
c7:6d:1e:6a:ad:78:84:25:d4:16:6a:f9:8f:c0:a6:fa:50:3c:
8c:b2:82:2a:d4:36:b5:08:f2:2f:02:57:f4:82:7c:f7:be:6e:
97:5d:f8:41:15:ef:52:1f:ee:d0:6d:e9:6a:ca:65:74:4e:ca:
1b:e4:9c:fb:2e:44:07:62:04:2e:a6:14:38:76:66:a5:65:38:
b9:51:1a:75:d4:b0:e6:fb:4e:16:74:4d:84:79:c8:d8:5d:3b:
c9:8a:58:74:ed:e4:80:6e:5c:a7:ea:15:16:46:09:7a:38:7e:
6f:a5:7b:d8:29:b9:f5:de:08:e6:40:7e:65:58:41:78:92:4c:
70:c7:cf:4d:8d:4f:35:48:31:5b:ad:ef:f3:49:d9:5f:fa:57:
78:59:13:f2:2a:c4:4a:c7:0b:8d:3c:c0:c3:d7:41:6b:32:5f:
b0:a9:ed:aa:24:de:da:ec:79:7f:21:1d:5d:c4:87:ac:d2:d8:
36:dd:c5:d9:66:ec:d0:59:cb:5f:3a:42:b0:8f:98:87:6c:ef:
1d:ca:f1:74:1b:8d:52:9e:53:81:6c:74:72:50:4e:6b:af:d2:
48:03:38:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 09:43:25 2025 by rpki-client