Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
File: so7x9PiCePTfGec-M4HOzXjgacE.mft (raw, json)
Hash identifier: SLp1A7BtkZtJPGb+sMZJ2QlGD6RQmhkyBtKtQuDkHZE=
Subject key identifier: 86:EF:2F:59:90:F6:35:98:A2:58:AA:74:15:3C:AE:19:70:67:13:82
Authority key identifier: B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
Certificate issuer: /CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Certificate serial: 019674F9CF235E7E7BF388EEAD41FAD3C4C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
Manifest number: 01B7
Signing time: Sun 27 Apr 2025 02:00:50 +0000
Manifest this update: Sun 27 Apr 2025 02:00:50 +0000
Manifest next update: Mon 28 Apr 2025 02:00:50 +0000
Files and hashes: 1: ZWC54UPrMHyZ6gth2IDDnRYsMDY.roa (hash: 4Yk1QA2QugshfW9geeysUTQ4Sub4Aja/bv1m3JJnrLU=)
2: so7x9PiCePTfGec-M4HOzXjgacE.crl (hash: UrZiOM72UiEU7b9Z9xjmOkG+1+ipQbn3cwo5sTDJIOA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:f9:cf:23:5e:7e:7b:f3:88:ee:ad:41:fa:d3:c4:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Validity
Not Before: Apr 27 02:00:50 2025 GMT
Not After : Apr 28 02:00:50 2025 GMT
Subject: CN=86ef2f5990f63598a258aa74153cae1970671382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:63:d7:74:58:e0:44:6c:c8:be:d8:f0:47:7b:
9c:16:8b:88:17:10:70:89:23:d6:ae:ab:ee:32:b7:
5d:39:37:1d:dc:32:ae:ea:71:e0:6d:09:80:14:6c:
b4:fa:bd:62:14:9c:71:b3:c6:e2:67:87:56:7e:cc:
42:f6:99:c7:6c:5f:c4:46:dd:63:ab:ee:60:40:4b:
b5:b6:e6:2e:ac:d9:00:83:ee:53:fd:c3:08:19:42:
4f:02:2a:98:9f:b7:75:6b:d9:e5:03:4c:74:be:07:
d8:7c:5e:79:b4:23:9f:fb:46:58:09:cf:e6:eb:62:
47:c7:a4:8a:a1:ab:c2:23:43:22:9b:45:f0:e9:b1:
a5:fe:bb:55:6c:52:54:7f:70:72:e4:09:d6:d7:e9:
8f:16:d1:fc:ed:06:db:21:4d:5d:68:5d:e0:a5:72:
53:f3:10:5b:95:88:bf:15:32:94:ad:90:00:3b:1d:
fe:d9:73:0d:07:0a:6d:1a:cc:e2:76:ec:3c:ad:9c:
3e:13:46:b6:0f:f5:95:27:11:eb:0b:16:2d:53:67:
ac:92:8b:c9:ba:33:9d:78:4b:ed:51:ac:e9:dc:7a:
07:03:5f:62:78:63:71:77:fc:97:e2:c6:d1:7f:82:
7e:22:af:76:a5:89:8d:4b:ae:32:24:9c:a5:d0:85:
95:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:EF:2F:59:90:F6:35:98:A2:58:AA:74:15:3C:AE:19:70:67:13:82
X509v3 Authority Key Identifier:
keyid:B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:12:39:ed:ac:2f:1a:14:3c:a5:72:28:e0:83:9d:f6:91:50:
58:1e:8e:a5:5f:50:d5:ac:22:29:22:3b:ee:01:66:56:30:fb:
8e:f8:0e:d4:1f:fc:12:3d:e1:c1:3b:5c:fa:75:23:1f:a0:88:
10:07:df:bb:57:dc:81:15:44:0a:6d:1d:eb:06:1f:a4:23:85:
4a:4d:5e:2e:bb:f1:e4:78:bd:1b:7d:1c:9a:79:e7:ae:a7:3e:
54:9a:03:b3:0f:e0:98:ab:20:25:2c:b7:98:27:fe:4e:9e:0f:
50:01:69:31:3b:b6:2f:8e:1d:b9:3d:9f:b5:95:d3:03:94:57:
ad:34:ac:59:c3:fa:f8:fd:1c:94:ba:16:53:82:33:03:cb:4c:
fc:e1:19:7f:65:90:57:30:fc:c7:fe:16:28:a3:88:fd:8a:f2:
d9:0c:a2:0a:a9:41:f3:7b:21:aa:ef:75:93:07:e3:d9:d7:83:
7b:ca:0a:79:c7:15:ba:8a:96:ad:61:fc:e1:9f:96:8f:a3:dc:
0b:54:e7:64:73:7c:a6:79:e9:64:74:ea:dd:a4:c0:fa:3c:7a:
77:98:e0:c6:72:b8:c8:37:ce:8b:ff:be:fe:22:1f:20:c8:c8:
a0:ff:b0:fc:68:76:ad:ba:f7:37:07:a1:3b:c7:72:58:fd:10:
53:c3:b6:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 07:39:59 2025 by rpki-client