Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
File: 0jtkd-HIT1KQfNYMY-qD715Kx4I.mft (raw, json)
Hash identifier: 8CW2EkR3GCQvLjK8moEGfDXv01Zpzqr51/9RShDVrqI=
Subject key identifier: 1C:48:59:B2:A8:B9:F2:B4:CF:28:44:9F:42:98:C9:D1:12:8E:28:51
Authority key identifier: D2:3B:64:77:E1:C8:4F:52:90:7C:D6:0C:63:EA:83:EF:5E:4A:C7:82
Certificate issuer: /CN=d23b6477e1c84f52907cd60c63ea83ef5e4ac782
Certificate serial: 01967F4612567A9F13A8A2174ADE8EEDDA6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
Manifest number: 0860
Signing time: Tue 29 Apr 2025 02:00:20 +0000
Manifest this update: Tue 29 Apr 2025 02:00:20 +0000
Manifest next update: Wed 30 Apr 2025 02:00:20 +0000
Files and hashes: 1: 0jtkd-HIT1KQfNYMY-qD715Kx4I.crl (hash: 4buTXPLdqzFdiLVY7jkc+G81p7Dm+QBHKXQdz/qplKU=)
2: 99RaY9xH4qOYuC0KdiJQrFMbC5E.roa (hash: TZUHN/mcHmz7AzTn504QkH94CMbEPlnfBvzJqjhXWtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 22:36:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:46:12:56:7a:9f:13:a8:a2:17:4a:de:8e:ed:da:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d23b6477e1c84f52907cd60c63ea83ef5e4ac782
Validity
Not Before: Apr 29 02:00:20 2025 GMT
Not After : Apr 30 02:00:20 2025 GMT
Subject: CN=1c4859b2a8b9f2b4cf28449f4298c9d1128e2851
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8f:d7:36:60:ef:10:66:15:af:4b:aa:b8:8d:
e5:7d:d6:4d:fb:78:de:c1:97:18:92:d5:35:eb:5c:
d2:c7:d1:b5:78:79:19:e5:25:7e:92:39:70:5e:46:
b8:15:55:7f:fb:88:d7:1d:f9:b9:3d:02:a6:fc:ce:
04:ab:3e:36:0d:57:c7:93:3c:9f:0c:23:d0:f1:3a:
48:82:c5:17:49:d4:10:f3:8e:8c:cb:62:a7:60:b4:
1f:cf:62:51:bc:c5:91:fd:6a:f8:78:3f:06:bf:26:
9c:21:55:00:7c:39:43:91:e6:27:20:5d:40:a4:6c:
14:b4:22:12:4f:f6:7d:4c:e6:b7:9d:ae:5f:ae:20:
c7:de:19:b0:8a:cc:d8:78:99:18:63:50:7e:c9:dd:
8a:81:ea:f8:ea:54:2a:cf:59:3e:40:e7:33:3e:b7:
12:69:0b:e9:de:51:6f:f1:00:05:fc:eb:00:42:a5:
46:f3:82:1c:1b:c3:66:86:41:26:4a:d7:e0:8c:ca:
d2:9d:ef:77:ad:4b:4b:7c:3f:88:1f:71:c5:4a:35:
e3:d7:b8:75:7d:aa:b9:36:4c:e9:d8:2d:87:70:9d:
22:98:f9:95:32:48:95:32:d1:ad:05:a8:17:4e:22:
4d:4e:d6:17:57:11:86:60:6b:8f:ca:94:9b:8f:b0:
66:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:48:59:B2:A8:B9:F2:B4:CF:28:44:9F:42:98:C9:D1:12:8E:28:51
X509v3 Authority Key Identifier:
keyid:D2:3B:64:77:E1:C8:4F:52:90:7C:D6:0C:63:EA:83:EF:5E:4A:C7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:e9:1c:c6:45:f5:71:7f:ba:f8:03:58:c8:83:c9:78:82:21:
bc:03:1d:81:13:ea:d5:58:85:6e:d1:eb:8d:c9:6f:15:2a:54:
a0:7e:f7:f8:9d:35:84:93:7c:a6:01:d3:a9:0a:3a:60:b7:03:
13:1d:e3:b4:15:0b:59:d4:6b:2a:01:12:1c:c0:ab:a0:56:0d:
66:a8:c3:dc:3f:22:26:c7:8c:7a:3e:0f:43:4b:92:1a:cf:6b:
81:86:82:4e:b2:6d:30:f0:e8:b5:9e:d7:8c:b5:57:0d:cd:c6:
99:e0:ca:f8:bf:a1:23:e0:bf:e0:42:90:88:31:f4:45:98:fb:
00:e8:59:9c:e3:ad:a9:cd:bd:25:86:ab:69:be:76:34:b0:f5:
cd:ae:0f:54:62:19:cb:ba:8f:5d:71:3b:c9:1c:dc:df:e3:69:
32:87:f8:fd:1e:4a:44:06:2a:e7:67:4e:4e:44:39:1e:67:5a:
67:e4:d4:6e:44:3e:ad:5c:52:c7:16:65:b0:09:1b:c8:ed:ca:
a6:39:93:c2:db:41:fd:66:97:2c:aa:a3:81:e9:1b:c0:7d:29:
1b:73:e8:a2:a8:7f:18:39:31:2c:75:00:f8:21:6f:42:87:fe:
f2:ea:a5:cf:58:f6:31:67:e6:b7:0b:a5:1d:fb:43:fe:7e:74:
52:23:c9:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 05:10:21 2025 by rpki-client