Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.mft
File: 8PsNC-KW3BtxnSRA-2rZx10I4uI.mft (raw, json)
Hash identifier: utm+7TkafkdUgi+bcQDkCAk+5CLcJfWB7kq23e0w7Jg=
Subject key identifier: AF:C3:2D:09:3C:80:DB:0F:6E:31:DA:5E:1B:54:AA:BD:E2:44:47:8D
Authority key identifier: F0:FB:0D:0B:E2:96:DC:1B:71:9D:24:40:FB:6A:D9:C7:5D:08:E2:E2
Certificate issuer: /CN=f0fb0d0be296dc1b719d2440fb6ad9c75d08e2e2
Certificate serial: 01967FB4F9814F650BE3B2F10B27939787C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8PsNC-KW3BtxnSRA-2rZx10I4uI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.mft
Manifest number: 14A5
Signing time: Tue 29 Apr 2025 04:01:28 +0000
Manifest this update: Tue 29 Apr 2025 04:01:28 +0000
Manifest next update: Wed 30 Apr 2025 04:01:28 +0000
Files and hashes: 1: 0TX6bG3AW3Ort-Rt8qCc1TR12hM.roa (hash: XGv/DCUiOeegPa2KE+7yV2/GQEE1zmTFiu2PMDuWufY=)
2: 8PsNC-KW3BtxnSRA-2rZx10I4uI.crl (hash: kxOIlvCzU8JNOt8fWeNzcCffjiaIwfvB/RY8HLxR8Gg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.mft
rsync://rpki.ripe.net/repository/DEFAULT/8PsNC-KW3BtxnSRA-2rZx10I4uI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7f:b4:f9:81:4f:65:0b:e3:b2:f1:0b:27:93:97:87:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0fb0d0be296dc1b719d2440fb6ad9c75d08e2e2
Validity
Not Before: Apr 29 04:01:28 2025 GMT
Not After : Apr 30 04:01:28 2025 GMT
Subject: CN=afc32d093c80db0f6e31da5e1b54aabde244478d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:0c:cb:23:96:e3:25:77:15:f8:6d:b7:a0:46:
0e:c1:aa:a8:91:df:db:96:cf:36:c1:c3:7e:e2:1d:
19:7e:a1:b3:8e:97:12:02:28:62:94:b7:69:19:1d:
f9:2b:95:c1:ef:a2:05:37:82:b9:90:a9:bd:aa:c0:
85:75:58:6f:43:8e:8b:b2:e1:40:d7:98:50:02:f5:
05:c0:9a:2d:fb:47:72:4f:e3:45:ef:e2:53:27:ba:
3d:87:31:cc:82:12:d4:f3:d7:c2:d5:1e:97:05:2a:
68:89:84:0d:85:60:a9:da:6f:1d:a1:4a:01:1f:38:
db:73:62:32:84:2f:cd:0b:fb:96:ad:fd:2f:a6:94:
42:2a:d7:7e:10:3f:45:d9:f8:a4:34:f3:38:17:0a:
9a:96:9a:ae:9e:b5:3c:25:25:c4:18:99:d1:3d:89:
69:eb:6c:de:d5:f8:ab:ce:79:b2:7f:12:dd:3f:83:
ec:4d:01:26:64:0b:a6:d0:4f:df:ed:1c:ce:9e:1c:
ed:bc:b2:48:94:12:34:37:88:55:6e:99:a8:37:d0:
ec:bd:c3:75:b3:0c:0a:33:0e:d5:24:6c:af:e7:fb:
c7:39:e0:81:0d:00:89:99:18:56:a9:25:b4:08:6f:
65:84:1e:63:bd:8a:c4:a3:99:ab:4c:f6:7d:08:b2:
51:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:C3:2D:09:3C:80:DB:0F:6E:31:DA:5E:1B:54:AA:BD:E2:44:47:8D
X509v3 Authority Key Identifier:
keyid:F0:FB:0D:0B:E2:96:DC:1B:71:9D:24:40:FB:6A:D9:C7:5D:08:E2:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8PsNC-KW3BtxnSRA-2rZx10I4uI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/3dedf6-3ec7-4b40-adaa-c0e278736c88/1/8PsNC-KW3BtxnSRA-2rZx10I4uI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:46:94:97:d1:32:ab:5d:c4:81:fb:0b:16:56:24:a6:10:4b:
51:85:ab:5b:5a:9e:e6:26:88:5e:7e:4d:2d:1e:22:3a:c7:a0:
46:2b:05:65:e0:7d:f6:dc:e2:21:8d:4b:1d:5e:38:3a:33:44:
99:98:47:e2:ee:40:a9:49:e4:6f:81:4a:a7:d8:60:24:a7:c6:
fa:a6:27:45:22:7e:c3:42:00:d9:5e:50:c5:37:af:72:98:e4:
27:38:4a:6e:ce:44:50:0e:5a:2f:46:1d:a2:4a:6a:b3:17:08:
a7:8a:98:81:0d:05:70:c1:2a:83:9f:21:20:7c:61:29:3c:5d:
51:ae:14:99:c5:72:a5:21:a3:8d:d5:a1:db:f5:f7:e5:04:43:
61:0f:9e:4f:ba:e9:7b:d6:f8:be:ca:99:95:67:2d:bf:32:ca:
b7:8b:2c:56:c2:3d:c6:d6:04:95:73:dc:6c:f8:3c:30:37:11:
2c:26:80:7f:93:cf:ff:5f:86:54:4c:83:30:57:50:4c:cb:29:
0e:c4:56:92:aa:1b:c5:c9:00:77:55:e7:3e:bb:6e:80:ff:a1:
8f:7f:1a:cb:15:58:ee:10:d7:58:8d:17:74:d9:ce:d6:27:0e:
c0:9d:4e:88:47:88:48:7d:3e:23:e0:c6:33:58:c8:5a:01:61:
e9:33:1e:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 08:32:16 2025 by rpki-client