Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
File: pol1o9gy4UUny7or4QujwebGOFY.mft (raw, json)
Hash identifier: hWERtKhQ8SX4Wtb/dv6DhrsKAYevuNF9BnixxiNhY8A=
Subject key identifier: 1B:40:5B:D0:8D:51:4B:95:C8:85:EE:EB:5C:DB:C4:6E:01:43:BA:BE
Authority key identifier: A6:89:75:A3:D8:32:E1:45:27:CB:BA:2B:E1:0B:A3:C1:E6:C6:38:56
Certificate issuer: /CN=a68975a3d832e14527cbba2be10ba3c1e6c63856
Certificate serial: 0196C15DE8D853358C6B221226A7269E2D59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
Manifest number: 050A
Signing time: Sun 11 May 2025 22:01:19 +0000
Manifest this update: Sun 11 May 2025 22:01:19 +0000
Manifest next update: Mon 12 May 2025 22:01:19 +0000
Files and hashes: 1: pol1o9gy4UUny7or4QujwebGOFY.crl (hash: crTKD327SRoqtso7VQFnZds19RlLOJJPQLMHCtNMzR0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:5d:e8:d8:53:35:8c:6b:22:12:26:a7:26:9e:2d:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a68975a3d832e14527cbba2be10ba3c1e6c63856
Validity
Not Before: May 11 22:01:19 2025 GMT
Not After : May 12 22:01:19 2025 GMT
Subject: CN=1b405bd08d514b95c885eeeb5cdbc46e0143babe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:14:4e:fa:7f:3f:ef:3c:f7:98:99:a9:93:c5:
33:9d:49:18:8a:15:85:e3:0d:83:31:11:14:fa:e1:
23:40:21:ec:6e:aa:e1:81:cd:9a:6f:4d:5d:dc:1c:
ed:c4:71:49:e3:2b:10:b0:74:23:23:68:d2:76:c4:
46:3c:44:06:9f:6c:df:a9:6c:98:9a:ec:b0:14:fd:
10:c5:61:6d:64:25:5d:28:e0:26:51:67:19:ad:06:
29:7d:6a:02:c3:f8:7e:95:30:e5:fe:5b:b5:d6:5e:
0c:52:a2:09:59:67:88:51:c7:5e:66:dd:d0:23:5b:
19:ed:f6:f8:fd:63:88:6a:34:cc:58:0e:b9:1d:fe:
0f:87:a7:15:79:17:58:8c:9c:92:a8:dd:a3:cc:64:
c4:02:e6:d6:06:e9:3c:32:4c:bf:0e:9a:31:7c:ab:
67:66:78:30:98:8e:44:dc:d1:49:16:b0:49:d0:73:
05:bd:14:f3:9f:e9:e7:c6:59:5b:13:dc:8d:bc:13:
cb:51:45:5c:1c:a1:0b:fe:0b:80:eb:8e:f4:84:c2:
67:44:20:88:81:93:11:bc:6a:ba:68:91:b7:22:ba:
aa:c6:4f:03:9d:cb:00:07:b5:46:f9:79:99:87:a7:
cc:1c:1c:ba:82:d4:20:c5:8c:cd:7e:d8:36:b7:5d:
56:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:40:5B:D0:8D:51:4B:95:C8:85:EE:EB:5C:DB:C4:6E:01:43:BA:BE
X509v3 Authority Key Identifier:
keyid:A6:89:75:A3:D8:32:E1:45:27:CB:BA:2B:E1:0B:A3:C1:E6:C6:38:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:7a:a3:cd:4b:96:46:b6:b3:f6:aa:58:1b:b4:e3:8e:9b:24:
c2:a8:f6:74:e2:05:5f:91:20:44:f9:fb:e3:18:04:26:e1:e6:
5d:75:22:48:f9:02:38:7b:b8:26:51:0d:dd:ce:3e:85:c2:3c:
37:3e:73:3c:a2:8a:05:66:ff:84:e4:d4:04:5b:e8:26:31:88:
2e:c8:fc:85:60:9f:68:3e:15:1b:d3:3b:aa:b9:d2:d7:ba:d4:
e8:8d:be:fa:3e:88:a8:cf:74:14:ce:2a:d5:1a:b9:86:e3:c9:
7d:df:b6:83:3f:dd:8c:52:b7:22:0a:43:c6:21:f8:74:f7:9d:
ef:77:b7:6a:7f:c8:07:23:aa:10:88:9e:34:98:2b:03:d7:e4:
d7:06:22:df:ba:79:d2:d5:ae:26:5c:7c:c6:46:15:e2:81:24:
d9:30:97:02:76:e1:38:75:46:fd:12:ca:4b:66:9f:e9:af:1f:
c5:b3:d0:18:d3:83:81:59:27:c3:4e:53:59:2f:bc:21:71:7b:
41:1f:01:dc:94:79:7b:51:c2:88:a2:84:ad:1d:90:0f:9e:a6:
12:00:37:0e:24:03:ba:85:d9:3a:06:4b:38:64:2e:4b:35:f7:
6c:63:13:82:f3:da:a1:7c:56:21:ec:84:72:2d:28:58:d3:78:
d7:e1:b7:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 02:23:03 2025 by rpki-client