Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft
File: skTScYj-UmvXJjZzgZXR639gYzU.mft (raw, json)
Hash identifier: 8OtOJl4fqmLt4+LL5r5/rwomTjo+U8MATuhKBkt4Rn4=
Subject key identifier: E3:5B:D2:0A:42:E8:C3:C8:C6:34:6C:F8:79:0C:26:E5:76:DE:BB:CD
Authority key identifier: B2:44:D2:71:88:FE:52:6B:D7:26:36:73:81:95:D1:EB:7F:60:63:35
Certificate issuer: /CN=b244d27188fe526bd72636738195d1eb7f606335
Certificate serial: 0196760D3A5B8D894036E14423C507CD52FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/skTScYj-UmvXJjZzgZXR639gYzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft
Manifest number: 150F
Signing time: Sun 27 Apr 2025 07:01:40 +0000
Manifest this update: Sun 27 Apr 2025 07:01:40 +0000
Manifest next update: Mon 28 Apr 2025 07:01:40 +0000
Files and hashes: 1: i9ojhRN5HPqLEONrX8zwsFoi9sk.roa (hash: MIYLI6ZlVjLLI/2sB5M12T0X1D0wb0+Le0eSAFyUiKg=)
2: skTScYj-UmvXJjZzgZXR639gYzU.crl (hash: s/I1VvyocFoTM0jW27WWsX1e6AZRG6YFrpVISpU9i9g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft
rsync://rpki.ripe.net/repository/DEFAULT/skTScYj-UmvXJjZzgZXR639gYzU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0d:3a:5b:8d:89:40:36:e1:44:23:c5:07:cd:52:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b244d27188fe526bd72636738195d1eb7f606335
Validity
Not Before: Apr 27 07:01:40 2025 GMT
Not After : Apr 28 07:01:40 2025 GMT
Subject: CN=e35bd20a42e8c3c8c6346cf8790c26e576debbcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:78:22:1f:94:97:44:31:46:42:1e:87:24:04:
78:d8:3e:8c:43:aa:32:37:78:4f:77:84:a9:a6:f7:
a2:ff:a6:d0:44:35:31:70:57:ee:40:c2:90:c9:5a:
56:7e:29:92:13:f4:5a:6b:da:3a:a0:0c:b4:f1:1d:
4f:cb:8a:0e:8f:e6:38:18:1b:0b:5a:c2:78:0e:17:
32:36:dd:7b:cc:a7:20:b9:dc:b1:d0:93:4d:4a:cd:
a5:2e:58:8f:23:b4:ac:15:d4:0c:d0:78:24:49:ca:
a3:f4:8c:77:7f:de:00:e4:d9:16:d2:b4:6a:9c:df:
f9:91:73:98:c0:b7:88:e6:5e:c0:4d:0c:db:42:51:
e3:a5:de:65:bd:33:c2:9f:b0:1a:bf:3c:ae:80:5a:
9a:02:d6:d7:f8:9c:6e:15:17:a5:6d:48:ab:3e:5c:
a4:ad:e8:68:d4:94:34:ff:f0:38:5e:98:5a:62:06:
18:1a:8c:f2:11:94:6a:1d:9d:8f:9c:ec:90:c9:c6:
60:0c:c0:80:b4:60:d4:46:59:bd:82:69:83:c7:04:
59:e6:d6:2e:4d:3e:7b:07:56:93:d7:e7:da:50:c1:
49:e2:33:6a:97:03:26:3c:5e:65:3f:e1:6c:20:58:
21:df:d8:5b:2c:50:62:fb:1e:d2:85:db:53:e5:43:
18:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:5B:D2:0A:42:E8:C3:C8:C6:34:6C:F8:79:0C:26:E5:76:DE:BB:CD
X509v3 Authority Key Identifier:
keyid:B2:44:D2:71:88:FE:52:6B:D7:26:36:73:81:95:D1:EB:7F:60:63:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/skTScYj-UmvXJjZzgZXR639gYzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:62:b9:8d:01:dd:b3:aa:a9:8f:b2:b6:a1:22:62:62:f5:48:
a2:82:94:43:38:d4:38:10:db:b0:a4:15:e6:0c:74:c5:6c:33:
be:b6:d8:c0:58:84:c3:64:06:6e:86:1c:96:7a:a1:ea:3a:37:
6d:87:22:68:a0:e4:32:b6:69:3e:46:30:67:ae:25:20:e6:ff:
2d:46:7e:8e:92:5a:51:b4:83:19:5c:b7:99:7c:6f:ed:48:4f:
e3:5b:c1:c7:7a:86:a4:41:96:d7:76:4d:3c:b7:44:0e:e2:d9:
7d:d1:2e:b1:58:14:11:81:d4:39:c3:87:63:fe:bf:9f:04:a5:
80:05:5b:5b:c8:c1:b2:d8:c9:57:52:99:53:16:6d:9f:ab:55:
08:72:94:68:77:20:0b:64:09:32:65:12:95:89:a3:3b:f2:5c:
7d:60:9a:a3:47:69:ee:61:57:ec:c0:52:47:48:7d:be:d2:7b:
e7:7a:c3:dc:0b:77:03:a5:ce:a0:ee:0d:e8:a0:13:56:2c:e5:
23:0d:4b:91:1c:ff:ab:a3:49:9e:2e:c7:be:13:8d:8d:89:cb:
d9:4a:7d:12:72:11:85:c8:13:da:4b:78:f2:5c:05:df:34:46:
3b:95:49:b8:78:8b:75:9c:4a:d2:1b:a0:08:50:94:ea:cb:6a:
f9:4c:46:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:50:48 2025 by rpki-client