Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
File: 3GbYudONW7Gc-gxGRLRSk9Hotvo.mft (raw, json)
Hash identifier: fD1Yy62Cymilb7ber1TvQOi82dOfMJs1wXc6NyWZNv8=
Subject key identifier: CF:44:61:C2:1C:97:1A:49:ED:98:81:6F:D8:14:C8:0D:B3:51:58:9E
Authority key identifier: DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
Certificate issuer: /CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Certificate serial: 019675D558DD392A4A171A3864A6A2E5A64E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
Manifest number: 14A0
Signing time: Sun 27 Apr 2025 06:00:38 +0000
Manifest this update: Sun 27 Apr 2025 06:00:38 +0000
Manifest next update: Mon 28 Apr 2025 06:00:38 +0000
Files and hashes: 1: 3GbYudONW7Gc-gxGRLRSk9Hotvo.crl (hash: L63cId/MqhASTpiNQDvMzgB1uFSryCLm0THWVO1cy2k=)
2: bcS-hsDeO0gtgs28TEiHyvA81q0.roa (hash: CeE5W6otaxPvfHxN+lyC5C8i9p819egn6IV1iHF00Ew=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:d5:58:dd:39:2a:4a:17:1a:38:64:a6:a2:e5:a6:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc66d8b9d38d5bb19cfa0c4644b45293d1e8b6fa
Validity
Not Before: Apr 27 06:00:38 2025 GMT
Not After : Apr 28 06:00:38 2025 GMT
Subject: CN=cf4461c21c971a49ed98816fd814c80db351589e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:29:d5:96:e0:f2:fd:84:58:a9:2f:ef:7b:56:
e3:38:45:5e:f3:5a:f7:fe:6a:bc:54:1c:b4:86:80:
64:ae:60:a7:be:8d:c5:a2:b7:5e:e7:6a:90:00:c3:
67:3c:eb:5d:fd:b3:e4:ee:53:ef:68:1c:a4:f9:98:
13:e7:88:e9:ee:6a:b5:9e:98:22:bc:aa:95:61:69:
4a:a6:6e:96:b4:5a:1b:68:0f:a3:e9:b1:88:77:74:
5c:d9:da:e0:cd:64:38:1e:b6:9d:7a:65:2e:ef:78:
ab:af:31:a0:c9:a7:c5:fe:1d:03:77:9a:03:15:0b:
6f:17:af:06:dd:26:7b:54:ad:be:ad:4b:a4:9a:49:
ce:68:e9:f7:57:35:5f:c9:ef:a7:8e:67:b2:64:4a:
f1:95:1c:42:e5:df:be:70:52:a0:70:bd:a9:b8:ba:
67:ab:e9:4a:8a:1b:b7:ae:5e:1d:3c:ad:1a:8f:8b:
ea:29:75:03:10:31:05:17:b6:32:57:78:f3:ff:74:
ce:57:00:db:57:0e:d2:20:85:2c:55:71:d2:99:29:
22:2d:00:9c:d2:45:f5:03:bd:a0:ee:3a:c7:e8:25:
37:2f:0a:99:3c:0d:9d:da:19:9e:dc:3b:b7:e7:ea:
fd:c6:f8:c9:d8:b7:5e:87:eb:af:e3:4d:49:ff:16:
1f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:44:61:C2:1C:97:1A:49:ED:98:81:6F:D8:14:C8:0D:B3:51:58:9E
X509v3 Authority Key Identifier:
keyid:DC:66:D8:B9:D3:8D:5B:B1:9C:FA:0C:46:44:B4:52:93:D1:E8:B6:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3GbYudONW7Gc-gxGRLRSk9Hotvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/14f684-0453-4625-966e-4771d1a4ddf0/1/3GbYudONW7Gc-gxGRLRSk9Hotvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:59:ce:b6:a2:d6:54:51:07:a7:08:18:02:8b:75:fd:04:75:
94:62:2c:f3:8a:5e:1e:6f:ca:f7:d6:13:70:ef:75:fa:28:ce:
41:2a:f8:06:f9:a7:cc:f6:ae:dc:6f:87:67:11:a2:e8:07:9d:
7a:43:70:b9:a4:19:6d:40:d4:b0:d7:e6:8d:b3:61:f8:8c:3c:
de:6d:be:73:6f:0e:04:fe:68:f1:01:27:de:27:ea:51:cd:41:
e4:c3:43:31:07:bb:b7:79:38:aa:94:86:32:d6:37:58:3f:90:
f6:6c:c6:05:c7:46:95:a5:89:c1:d8:61:fc:d4:29:f1:70:d2:
48:b6:cb:05:29:35:ca:75:f1:72:b1:6a:30:5f:39:c4:62:39:
81:0e:4e:83:b1:b0:05:53:0f:96:e1:af:9f:a5:7b:04:4f:4c:
ad:d2:5b:aa:6c:ed:9e:2c:de:16:6e:af:bd:ff:72:d0:86:6a:
c4:34:d2:d9:bd:0d:85:3c:67:29:be:cb:58:04:32:ae:b8:09:
4a:5b:61:b0:15:65:7a:84:2e:8f:cc:7f:d6:78:88:5b:b1:6b:
a2:c5:60:2a:de:4d:90:1d:87:c6:1d:a3:3a:4f:84:e4:1c:dd:
61:30:ed:be:1f:ac:66:eb:a4:d3:c7:55:11:5e:d1:21:b0:18:
86:de:f7:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 13:01:59 2025 by rpki-client