Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
File: rjRcTQnm4iTh2vRmV9PHEYewIjY.mft (raw, json)
Hash identifier: Z9gEQLIl4oc7HVSHv1GgSlhNlCIFEj/EfRKrGO+ShQE=
Subject key identifier: C7:7F:8B:09:AE:69:07:0F:AE:7A:11:8B:25:AA:4C:33:83:25:2F:AE
Authority key identifier: AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36
Certificate issuer: /CN=ae345c4d09e6e224e1daf46657d3c71187b02236
Certificate serial: 0196CFF4A08B2EC88BC35051620486969BE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
Manifest number: 0487
Signing time: Wed 14 May 2025 18:00:37 +0000
Manifest this update: Wed 14 May 2025 18:00:37 +0000
Manifest next update: Thu 15 May 2025 18:00:37 +0000
Files and hashes: 1: rjRcTQnm4iTh2vRmV9PHEYewIjY.crl (hash: smtl2hx8Jkx09qjmcozz2ErlAQtk73oOnks3k9M5nUA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 15 May 2025 14:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:cf:f4:a0:8b:2e:c8:8b:c3:50:51:62:04:86:96:9b:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae345c4d09e6e224e1daf46657d3c71187b02236
Validity
Not Before: May 14 18:00:37 2025 GMT
Not After : May 15 18:00:37 2025 GMT
Subject: CN=c77f8b09ae69070fae7a118b25aa4c3383252fae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:47:f5:0e:a8:ea:48:d3:ce:a7:03:58:b4:72:
d8:67:e6:36:54:a7:1b:ac:40:b6:68:9a:17:1f:f3:
a8:3e:aa:68:69:c9:5f:df:43:de:fb:61:4b:78:54:
c8:7b:15:df:0d:61:2c:e6:90:a6:cd:a3:b0:86:8f:
d8:eb:42:2c:f6:46:42:55:21:96:66:b8:4a:62:65:
7c:cf:a8:8d:3f:48:7a:c3:7b:da:06:c4:33:07:f7:
c8:fc:91:1b:59:a3:d9:e3:ba:b8:f1:d9:6c:be:e8:
97:06:c1:34:48:79:ad:98:3e:8c:f2:d2:3f:c8:9c:
d1:11:94:6a:92:80:51:38:bd:63:4e:ba:9c:99:db:
21:14:f3:68:29:cd:cc:0c:dc:d5:a8:9e:d2:10:da:
d9:41:93:8e:75:94:b8:78:4f:d8:e1:a4:a2:4d:e5:
ab:eb:85:b6:60:50:03:dd:9c:a5:cc:35:72:46:65:
7e:af:a6:d8:7d:f8:70:bb:6d:30:a3:0a:97:9c:63:
36:b1:2b:2c:8b:b1:17:d2:0e:64:c0:f2:f0:5a:c1:
26:7f:5f:48:fc:44:f6:57:ec:e3:c2:d4:97:51:6e:
9e:03:00:2f:57:31:6b:aa:f0:ea:ec:2b:8e:d9:b7:
58:f1:c4:14:1b:ff:59:55:a6:54:5d:64:36:be:e9:
2f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:7F:8B:09:AE:69:07:0F:AE:7A:11:8B:25:AA:4C:33:83:25:2F:AE
X509v3 Authority Key Identifier:
keyid:AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:3b:56:28:15:1a:39:fd:28:2f:69:b8:e1:a6:f7:5a:ef:65:
28:9e:a5:f4:27:a6:85:16:17:20:80:a7:99:17:97:b5:0a:82:
5a:04:81:9e:e0:48:bd:17:fd:32:d2:26:20:4a:35:9e:62:55:
b9:86:dd:41:90:47:be:01:fb:56:4b:48:79:37:d1:2c:f6:db:
e3:2f:8f:7e:ab:b7:be:95:49:b5:02:53:6a:73:ce:7c:9e:ab:
f7:60:82:50:7b:97:6a:97:5b:ed:c9:47:98:19:31:a9:01:dc:
d2:aa:93:a1:35:91:a0:42:3c:7b:d7:5a:7e:20:5b:9b:2e:af:
f5:f6:82:f7:d3:9e:bb:2d:75:f4:86:01:0e:de:42:6a:cc:b0:
d9:8b:7f:ea:99:f6:cb:e6:97:da:38:82:e6:a9:96:26:60:16:
c8:71:67:02:2f:07:bf:f4:8e:58:bb:9b:2c:55:c6:c3:0f:9c:
1b:e2:7d:b4:d6:c7:5c:73:d6:aa:d3:b6:b9:03:6a:45:2d:48:
cc:d3:cc:f0:94:78:8b:a3:15:c1:9b:62:f8:dc:e9:25:af:e6:
6b:04:ce:23:8c:2e:be:62:bd:68:61:18:20:55:4b:6b:1b:50:
4f:d1:9c:75:11:85:eb:73:8f:b8:93:f5:89:4a:08:97:29:dd:
3b:e4:f6:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 14 22:25:33 2025 by rpki-client