Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
File: JQou0RQnyhZIM4Ur1JydtT1j5js.mft (raw, json)
Hash identifier: iHvYyOecRSA3MctHBj1p+FVLtNuGcK84xlHqld2MK1g=
Subject key identifier: 1B:AF:90:7D:69:BD:F6:AE:2C:A6:8B:4F:BB:12:A0:CF:30:98:52:91
Authority key identifier: 25:0A:2E:D1:14:27:CA:16:48:33:85:2B:D4:9C:9D:B5:3D:63:E6:3B
Certificate issuer: /CN=250a2ed11427ca164833852bd49c9db53d63e63b
Certificate serial: 0196B10E931BE7756900A3DDF173223444A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JQou0RQnyhZIM4Ur1JydtT1j5js.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
Manifest number: CA
Signing time: Thu 08 May 2025 18:00:44 +0000
Manifest this update: Thu 08 May 2025 18:00:44 +0000
Manifest next update: Fri 09 May 2025 18:00:44 +0000
Files and hashes: 1: JQou0RQnyhZIM4Ur1JydtT1j5js.crl (hash: RmB4ef63ss8kngovNT1M197szTt5zpJeFiLHcHrDVh0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
rsync://rpki.ripe.net/repository/DEFAULT/JQou0RQnyhZIM4Ur1JydtT1j5js.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 15:42:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b1:0e:93:1b:e7:75:69:00:a3:dd:f1:73:22:34:44:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=250a2ed11427ca164833852bd49c9db53d63e63b
Validity
Not Before: May 8 18:00:44 2025 GMT
Not After : May 9 18:00:44 2025 GMT
Subject: CN=1baf907d69bdf6ae2ca68b4fbb12a0cf30985291
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:41:bd:a1:73:2d:4c:a0:b1:f6:b2:80:cf:d4:
ef:53:41:ed:c7:c6:ee:2b:a9:96:db:94:41:30:93:
1a:c7:a9:30:58:0f:71:cd:21:4b:eb:6b:e6:aa:26:
af:11:88:05:fe:e7:86:5c:c6:b1:cd:0d:35:7d:04:
75:f0:cb:00:5e:c7:23:e6:21:96:6e:38:d6:0a:87:
1f:29:11:20:1c:51:0c:0e:df:9e:e8:09:ab:dc:bb:
da:6e:55:a1:1b:2d:47:1d:1b:97:73:a4:ba:dc:25:
61:54:93:63:3a:8a:a9:29:0f:6e:ce:03:1d:ae:28:
fb:64:91:96:73:ca:f1:dd:22:55:5e:c4:9f:d3:e0:
71:e3:0d:89:0b:3f:de:44:27:3c:4a:59:b0:a3:a5:
86:a5:38:38:c6:4b:1d:3e:88:32:e5:7f:c5:f8:4e:
c4:05:a8:83:b0:b7:c3:00:77:fb:18:7b:a0:d6:c7:
54:e6:84:86:ce:af:4d:6f:1e:2e:8b:b1:a9:80:6c:
d9:e1:df:c7:c3:c5:46:f5:dd:e2:8f:ba:65:3a:88:
3d:c5:78:96:b5:3f:4d:a2:6a:d4:17:22:b6:b1:90:
d0:ee:d4:a8:71:e4:9b:ac:ac:70:45:59:12:66:70:
73:ad:32:07:24:6b:74:b1:6b:c9:b9:e1:e1:0b:c1:
77:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:AF:90:7D:69:BD:F6:AE:2C:A6:8B:4F:BB:12:A0:CF:30:98:52:91
X509v3 Authority Key Identifier:
keyid:25:0A:2E:D1:14:27:CA:16:48:33:85:2B:D4:9C:9D:B5:3D:63:E6:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JQou0RQnyhZIM4Ur1JydtT1j5js.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:ff:c4:4e:e0:3f:25:a7:05:82:52:f3:07:91:2b:2f:79:3f:
35:8f:e4:38:54:54:58:57:a4:93:c6:96:6e:cf:30:fc:7c:ad:
2e:35:5e:4d:4c:0c:ab:4e:08:80:20:fe:32:1f:8b:79:6e:f9:
16:eb:31:30:c1:5f:cb:ce:f3:e8:25:c0:9f:48:cf:ea:a3:60:
b5:22:c7:08:7f:dc:f6:73:1f:3e:1c:b2:47:4d:f9:1c:d1:85:
8e:9b:73:06:ee:48:e6:91:5a:73:69:ab:ed:73:3d:7e:73:1f:
d0:85:e4:ca:40:76:08:99:8d:cf:21:27:fb:a1:0c:60:db:1c:
69:17:ae:2f:65:3e:2c:6c:88:9d:cb:f5:4a:40:c8:77:de:91:
c4:5d:e1:0b:72:0a:e1:b9:28:60:45:73:58:ed:8e:aa:ff:cb:
a8:f8:07:ca:19:77:d8:73:33:20:78:c9:7e:15:86:52:76:fd:
9c:e3:70:94:ac:cd:4e:67:5a:33:b0:48:6c:17:77:c1:f3:48:
2f:14:da:b2:ec:57:9f:67:2a:86:57:62:15:e6:ad:1a:41:b5:
a0:aa:40:3c:2f:df:dd:df:c8:18:82:d2:2f:b1:58:8c:19:b0:
50:dc:47:fc:29:91:e2:cf:98:f7:3c:29:6f:de:86:e6:0b:11:
a3:e5:db:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 00:42:21 2025 by rpki-client