Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
File: S8hY5QhWNUaEpdBKPsw1klgNVI0.mft (raw, json)
Hash identifier: O9F63/tal9mdZ8CFdQhFrIY0MNhCwlTbvGlQVyrBukY=
Subject key identifier: E6:C8:5E:F7:71:33:BD:3D:7B:92:9C:2B:FD:1E:2C:8F:DE:84:6F:68
Authority key identifier: 4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D
Certificate issuer: /CN=4bc858e50856354684a5d04a3ecc3592580d548d
Certificate serial: 019675302258DDBD6286C0B5510CC63D2F0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
Manifest number: 07CC
Signing time: Sun 27 Apr 2025 03:00:10 +0000
Manifest this update: Sun 27 Apr 2025 03:00:10 +0000
Manifest next update: Mon 28 Apr 2025 03:00:10 +0000
Files and hashes: 1: 1kPYBeHFqZcRahwRlHXvuPvT0zI.roa (hash: qhycFEi6FwqVVERso5+P+dTV24QXX6z3cT56YMpxbXU=)
2: S8hY5QhWNUaEpdBKPsw1klgNVI0.crl (hash: CB9voCtICfTDXGn9nGLAvFWWYqd6qW8TOHSZJ9uXs6s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:30:22:58:dd:bd:62:86:c0:b5:51:0c:c6:3d:2f:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bc858e50856354684a5d04a3ecc3592580d548d
Validity
Not Before: Apr 27 03:00:10 2025 GMT
Not After : Apr 28 03:00:10 2025 GMT
Subject: CN=e6c85ef77133bd3d7b929c2bfd1e2c8fde846f68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ea:bf:ff:ea:0f:86:39:44:e7:e3:f3:a4:4b:
87:37:44:f4:ec:d4:9d:fa:ad:07:6d:6e:35:cc:2d:
64:f5:38:9c:49:fa:15:00:25:1c:97:ff:d8:3b:b0:
91:b7:7b:9c:45:df:0f:f6:5d:5f:cd:16:ac:cc:84:
bd:60:8d:ca:05:37:ff:99:f7:57:ce:71:b8:55:8c:
91:79:a2:7e:40:9f:66:d5:b0:a4:13:1f:87:82:8a:
f0:8b:c4:51:92:5f:ec:5e:d6:f8:ff:94:f4:a5:62:
3b:46:dd:31:25:3d:00:b7:dc:d2:96:24:7e:89:94:
19:fe:df:42:dd:cb:2c:28:c3:32:78:1d:d0:37:18:
c2:4c:fa:81:ab:95:a4:5d:63:fd:4d:9c:81:80:ff:
7c:73:b1:24:bd:81:a5:29:bc:9d:2c:de:bf:9a:cb:
6c:98:6e:1d:f0:7f:1a:6f:fb:9b:c6:0f:e1:56:de:
43:04:65:5e:c8:53:0c:28:56:0f:96:db:2a:89:fe:
de:26:80:a5:2a:6f:e9:63:31:65:70:02:9d:de:e0:
94:23:c5:b0:54:16:29:e1:1d:3a:fc:22:ef:cb:e3:
61:ea:aa:1c:10:55:81:a5:33:00:2f:ce:4a:e9:12:
59:97:c1:bf:f5:40:73:1d:22:f1:e7:c1:fc:cd:ee:
07:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:C8:5E:F7:71:33:BD:3D:7B:92:9C:2B:FD:1E:2C:8F:DE:84:6F:68
X509v3 Authority Key Identifier:
keyid:4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:92:04:d4:df:15:a0:58:68:4e:58:c6:a3:22:6f:51:d7:81:
60:b5:10:2b:fc:5b:6c:78:96:b0:01:69:80:c2:ba:f0:71:17:
b1:6c:74:25:4a:bc:be:36:e8:a4:52:6f:9d:ab:63:12:a1:b1:
c9:b4:c2:d2:2f:d8:1a:a1:95:f4:42:70:54:4b:23:5b:80:d3:
49:b4:dc:cb:7b:e8:70:1f:b6:ab:23:7a:85:67:43:c2:9b:03:
38:15:3d:d0:dc:84:45:6c:9f:91:7f:ba:ae:20:1d:d7:03:3c:
6b:76:28:ee:2c:75:89:21:a8:7d:d8:b7:06:38:b2:a1:99:81:
a4:86:55:af:ba:10:ed:c2:8a:39:91:73:db:d8:e3:91:0d:f9:
ff:bf:ac:46:70:68:9c:76:5b:36:c3:11:07:72:43:43:82:c7:
af:9d:3e:3a:01:6a:b5:a8:e7:6e:1f:16:3c:8d:7f:75:19:6c:
f2:70:e1:b3:cc:e4:b6:a8:e9:c2:9a:45:ca:c7:66:cc:73:e4:
e7:d2:4d:ff:45:e9:d6:b5:a4:25:08:01:c2:99:6d:74:5e:b4:
1b:62:11:11:dd:36:1b:0d:4a:38:b1:47:7b:57:39:fd:11:67:
e0:05:b2:e9:61:ad:91:d0:c9:2b:43:b2:e1:15:25:74:c7:3d:
dc:26:59:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:36:01 2025 by rpki-client