Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
File: cPaM3tOePsVM7iIzJS7zk3upgo0.mft (raw, json)
Hash identifier: x9W72nd3iIAgXojhveDjkqOfYzaTEveuTgaRTcN93bw=
Subject key identifier: B3:7C:C0:C7:7E:E1:38:C2:E6:D2:CA:AE:DE:A9:52:E5:5E:4B:44:6D
Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Certificate serial: 019675D57909F6780A6B6FBD0841AE3A2237
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
Manifest number: 0788
Signing time: Sun 27 Apr 2025 06:00:46 +0000
Manifest this update: Sun 27 Apr 2025 06:00:46 +0000
Manifest next update: Mon 28 Apr 2025 06:00:46 +0000
Files and hashes: 1: cPaM3tOePsVM7iIzJS7zk3upgo0.crl (hash: FK+XStIx6+09O0PcOywPHgxXfd5+5xKje/gDXf91Vsk=)
2: lbFlN7rLNKm_hwKwtb6Eg6VK60k.roa (hash: 2IxGb0Eenv1MI4JvdshV9/YIhfnM2CCpzAUAqonswhI=)
3: pc3D-RJai3Sy0xY8-tFzVCI1yUM.roa (hash: uBxXsxOQORpc24Ptxkp92Yz5fKaDuCXBuTLa8unFs14=)
4: yzS5saqZmvfLrP5ZMitifKMGoG8.roa (hash: AF5+gCr6uoirpp1iHmwqxTO2TQvWrmslD/huU/aCXCo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:d5:79:09:f6:78:0a:6b:6f:bd:08:41:ae:3a:22:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Validity
Not Before: Apr 27 06:00:46 2025 GMT
Not After : Apr 28 06:00:46 2025 GMT
Subject: CN=b37cc0c77ee138c2e6d2caaedea952e55e4b446d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:c1:c1:82:31:b7:2e:99:61:9a:bc:23:e1:29:
55:97:5f:13:04:f3:1a:d8:24:d3:a2:1b:80:3c:a7:
f8:7c:b3:7f:26:eb:c7:4c:b8:3e:f3:f1:56:47:97:
c2:0f:b7:39:87:36:30:04:ad:7d:2f:6b:d7:d4:80:
28:c3:fc:05:e1:f8:1d:fb:ec:12:89:6d:e8:4b:01:
e8:96:54:05:d7:92:3d:fc:21:90:5f:cc:c6:2c:72:
3c:de:6b:b6:fb:d0:de:d5:da:82:05:ad:0d:b6:43:
a8:e7:64:39:43:30:3e:3b:cf:8f:4a:99:50:bb:0e:
09:df:f6:72:c0:a5:5b:ef:8c:1c:cd:7d:9a:7f:02:
eb:82:1c:a2:51:c7:f8:c1:c1:41:fb:54:02:fa:73:
5a:63:a5:90:44:65:2d:32:a1:2c:43:6f:69:86:e0:
4e:e7:ef:2d:61:9a:ce:d5:fd:be:23:fc:90:77:4a:
62:d6:0e:76:05:a7:4e:3c:dd:27:d6:66:3c:95:81:
4e:52:6c:6e:e5:e8:e8:3e:28:1a:cb:b6:aa:45:2b:
90:3b:c1:f9:04:20:ac:11:34:e1:f7:99:47:75:63:
9b:a8:ab:cf:23:ce:a5:59:72:5d:bd:bc:c6:52:43:
99:6b:bf:40:c8:f9:a5:eb:fc:78:f7:66:6d:38:a3:
f8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:7C:C0:C7:7E:E1:38:C2:E6:D2:CA:AE:DE:A9:52:E5:5E:4B:44:6D
X509v3 Authority Key Identifier:
keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:93:b5:8f:c6:0f:8c:c4:07:eb:12:03:67:5a:8a:e7:82:a9:
35:91:71:9f:31:b9:8e:a5:74:d4:69:7b:87:69:dd:ad:fc:87:
6f:9a:ca:b0:7e:60:4c:00:9b:38:62:1d:d9:6c:b1:0c:7d:2d:
fe:db:f3:da:7a:25:56:41:1f:1c:59:0e:c6:d8:ec:ce:7e:68:
10:57:d2:e1:47:8f:0f:cd:7d:47:8a:f5:3d:71:c3:d5:6b:e7:
81:05:1f:b4:c4:8a:c1:c1:d3:cf:be:be:e9:eb:61:4b:88:ef:
64:85:53:f1:45:ac:ee:f3:5c:d5:30:ea:d4:49:e3:f4:d8:64:
db:c3:08:d0:85:a7:98:4a:89:2d:35:fe:76:ed:5c:b8:6a:ea:
a5:32:4e:07:72:db:ba:92:55:6e:74:18:84:44:3d:0d:62:7c:
be:1e:e8:38:f2:0f:14:f3:24:de:1b:4c:d0:69:85:00:b2:bc:
82:ce:da:0f:19:a7:8b:45:39:0c:c0:c4:98:96:4e:fa:fd:0b:
f0:af:c9:ba:c6:ae:4d:52:de:43:70:8b:52:35:b1:1d:c8:c9:
40:c8:06:79:f4:ef:27:7a:db:bf:d1:7f:de:94:94:d5:52:57:
88:82:8c:4f:af:5f:03:44:c5:cd:2c:95:c0:69:2d:4b:b0:a6:
6d:37:34:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 07:41:29 2025 by rpki-client