Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
File: RDTtvhtBAbKKviMvK88qAUiXglo.mft (raw, json)
Hash identifier: SQgjNqL2hXs4J/JbmWIMY+0K1EYIPYUy1xLmKq8E3UU=
Subject key identifier: 74:33:51:AB:AA:C6:F9:D9:59:74:02:1E:68:2E:22:15:B5:16:2A:9B
Authority key identifier: 44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
Certificate issuer: /CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Certificate serial: 019683C7AE06FF70AB350A8D2876F85A7744
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
Manifest number: 0F01
Signing time: Tue 29 Apr 2025 23:00:23 +0000
Manifest this update: Tue 29 Apr 2025 23:00:23 +0000
Manifest next update: Wed 30 Apr 2025 23:00:23 +0000
Files and hashes: 1: MBnjR0q6eR7PujQYuvXc6EY3kbo.roa (hash: HNqzyjDd+TtlMN5tniTDAwjj1tssNX0++6C4Wyg438o=)
2: RDTtvhtBAbKKviMvK88qAUiXglo.crl (hash: wFadOLrPxbxty0FQcTDTM8GVCFTDvheurGLv/pPtpSY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 23:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:c7:ae:06:ff:70:ab:35:0a:8d:28:76:f8:5a:77:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Validity
Not Before: Apr 29 23:00:23 2025 GMT
Not After : Apr 30 23:00:23 2025 GMT
Subject: CN=743351abaac6f9d95974021e682e2215b5162a9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:25:d4:56:cf:a7:77:80:76:2d:fa:21:7c:73:
a5:49:be:9b:4a:8c:f7:51:a5:1e:26:e6:a5:93:bf:
f0:d0:d7:d1:e5:44:e0:f5:be:26:67:ce:66:af:e2:
41:d0:95:40:8e:20:d7:55:dd:0e:ad:6d:17:73:3d:
c1:b4:a1:22:cd:6a:45:2f:9e:d0:45:bf:02:41:50:
d5:ae:35:3f:90:29:03:30:55:3a:d9:2c:9e:2b:85:
1d:4d:f4:6a:1a:9e:4b:f0:c6:41:24:bb:53:0a:57:
d5:8b:00:5c:f3:6c:a7:3c:79:2f:0b:c0:ae:cc:92:
d6:5d:f4:ea:2f:18:33:e6:e6:f7:51:79:f6:85:d6:
cc:18:5d:ad:e7:7b:a7:25:90:35:c0:6a:b3:88:ec:
54:b7:e9:02:94:22:86:f5:d7:5b:a6:ac:60:d4:2b:
7e:34:e7:84:c5:71:de:09:d5:09:cc:bf:85:fc:ec:
78:9c:bd:36:c1:b4:a1:7a:b3:d5:de:f3:16:e6:42:
1e:43:2b:5b:36:bf:2e:42:13:95:fe:cc:31:96:f6:
7e:78:d4:12:54:74:8b:d6:38:f0:68:f5:0f:d7:50:
30:0b:fa:b8:f7:ce:64:dc:65:5c:28:78:1c:89:66:
9d:1d:d5:7c:14:48:d5:35:d4:37:c7:4d:d6:41:8b:
23:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:33:51:AB:AA:C6:F9:D9:59:74:02:1E:68:2E:22:15:B5:16:2A:9B
X509v3 Authority Key Identifier:
keyid:44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:e1:5e:37:85:61:fc:fa:ab:21:ff:8d:67:19:49:17:c2:58:
12:76:69:da:b6:ce:d7:2d:ec:98:c7:9a:61:56:d2:a1:19:91:
77:7a:61:74:24:58:cc:47:33:73:9f:a6:6e:96:8c:0b:10:c3:
d9:f2:02:9b:f4:f2:9e:f1:00:65:7f:91:89:53:08:4c:70:40:
c2:e3:09:e3:1f:0f:62:21:fa:c0:6f:4c:19:67:fa:59:b0:34:
48:be:c0:3b:ac:b4:e0:46:9d:fd:2d:9f:1e:0d:75:5f:91:e4:
b0:9a:dd:8f:33:cd:ab:48:35:f5:14:6e:95:1a:eb:c7:96:57:
7a:f4:eb:6b:30:db:fa:30:54:6a:a2:21:cf:92:17:0b:f9:e3:
49:1e:31:35:c3:12:7c:30:82:9d:61:a9:c0:b6:01:13:de:ef:
5d:11:42:e3:8d:56:39:19:53:f9:e3:33:b7:ae:e1:74:9d:c1:
e2:42:1b:33:57:6e:22:34:ae:3d:e0:d6:e7:f1:75:2e:4e:65:
e3:48:3a:99:92:ee:18:70:15:c4:73:30:6a:e4:46:1e:5d:8d:
c7:6e:a7:4c:dd:2c:95:33:f4:42:38:ea:24:6a:22:c3:05:59:
b7:d2:bb:74:12:0e:cd:73:15:b1:43:56:9a:fb:2e:5d:6f:d7:
88:77:cd:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 03:44:45 2025 by rpki-client