Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft
File: sx0cKJHYgEaaINi38Y5M2GVDAEY.mft (raw, json)
Hash identifier: p9wCXnCRDM4ZXWBIfiy+yYWDfonHhupkY3gAbn2MagU=
Subject key identifier: D6:7A:37:78:A1:90:31:F8:9B:70:5A:EC:D8:3E:B5:1A:EA:72:3E:6F
Authority key identifier: B3:1D:1C:28:91:D8:80:46:9A:20:D8:B7:F1:8E:4C:D8:65:43:00:46
Certificate issuer: /CN=b31d1c2891d880469a20d8b7f18e4cd865430046
Certificate serial: 0196748BADBC009DEC05F29CB7DEFF595FAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sx0cKJHYgEaaINi38Y5M2GVDAEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft
Manifest number: 01F0
Signing time: Sun 27 Apr 2025 00:00:33 +0000
Manifest this update: Sun 27 Apr 2025 00:00:33 +0000
Manifest next update: Mon 28 Apr 2025 00:00:33 +0000
Files and hashes: 1: K12F-uP3adhB5XYkvRWOwtyWFxQ.roa (hash: 4K99rP4m/GgxDIw4+Su5OB+ocoFQK/2aIqkgeWKmoU4=)
2: sx0cKJHYgEaaINi38Y5M2GVDAEY.crl (hash: dBZWYsWJ8YA9r+Uzdo4Su/1bpO+auuZKjTB9NU71odQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sx0cKJHYgEaaINi38Y5M2GVDAEY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:8b:ad:bc:00:9d:ec:05:f2:9c:b7:de:ff:59:5f:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b31d1c2891d880469a20d8b7f18e4cd865430046
Validity
Not Before: Apr 27 00:00:33 2025 GMT
Not After : Apr 28 00:00:33 2025 GMT
Subject: CN=d67a3778a19031f89b705aecd83eb51aea723e6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f6:91:9d:a3:36:0f:e2:29:a1:30:ad:64:2a:
65:c1:e1:4e:a8:ef:d5:e6:c6:3f:1c:58:92:46:80:
21:b6:ba:9f:89:dd:31:f9:48:47:44:de:d3:e4:7c:
81:fe:a0:0c:62:00:b1:16:99:82:68:16:09:3f:d8:
88:b7:59:ed:2e:cf:6d:7e:c8:43:b3:d8:be:37:11:
64:31:c0:b2:f0:12:63:b4:35:34:04:68:ff:e4:ee:
43:e7:09:25:48:f4:04:77:a2:c2:fe:f0:ad:91:0d:
e0:c2:2b:48:53:0d:35:2a:1d:53:5b:20:37:46:eb:
34:7a:71:e8:35:1c:ac:b0:bd:12:8f:2d:18:85:b5:
fa:d9:85:51:2a:71:e7:e5:a0:62:da:2f:ab:5b:d7:
c7:83:2d:41:d5:c3:cc:e2:b7:b9:dd:e0:00:98:5e:
ef:93:70:84:d1:f4:69:1c:e8:39:3b:a5:9b:e1:38:
a0:6e:56:33:44:44:7c:25:1c:e8:e5:08:77:e0:35:
bd:e9:79:22:bf:1c:2b:b7:d8:36:ac:ff:08:0a:3f:
24:3d:7e:58:42:27:29:6b:0e:22:55:94:bd:4b:43:
ed:55:4a:1e:59:83:00:5c:bb:46:2a:04:7f:5d:3d:
53:d3:76:54:11:a7:27:80:ef:78:dc:33:81:7f:36:
9b:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:7A:37:78:A1:90:31:F8:9B:70:5A:EC:D8:3E:B5:1A:EA:72:3E:6F
X509v3 Authority Key Identifier:
keyid:B3:1D:1C:28:91:D8:80:46:9A:20:D8:B7:F1:8E:4C:D8:65:43:00:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sx0cKJHYgEaaINi38Y5M2GVDAEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:00:1f:57:52:66:82:c4:96:2b:f8:dc:d8:a9:7d:5a:65:41:
99:f0:6f:45:bf:8c:5a:02:c8:d2:1d:f9:84:96:ae:a2:49:ba:
e5:bd:9c:42:50:4e:24:76:94:cd:eb:cc:4e:62:6c:49:74:39:
fc:9f:ea:68:06:e8:3c:f3:36:b4:5f:eb:06:ea:06:3c:fd:5e:
58:a7:d2:9f:d0:32:cd:91:c5:fd:34:9d:61:a1:64:2b:24:99:
fe:c1:b6:ae:40:59:61:a9:27:c6:34:06:29:fd:ef:16:0e:d8:
83:94:a3:45:57:4d:2f:01:53:aa:7d:90:83:81:e5:65:77:49:
c8:68:55:ef:20:75:4c:b7:b3:6a:76:63:61:68:66:76:ce:7b:
b3:0d:cd:87:33:64:a3:6d:43:3d:63:85:26:76:5e:59:80:ba:
b3:f5:bc:73:b1:58:ae:67:31:0a:2e:9f:82:f2:c9:13:f1:84:
40:61:ec:ef:54:f9:1b:64:a5:dd:70:ce:42:67:2d:da:13:70:
2f:0e:37:92:1c:e3:83:5b:43:02:df:af:05:6b:0e:b3:8f:58:
1c:48:52:ca:dc:92:25:0f:77:7b:0f:82:fa:3f:bb:0e:1a:7b:
27:57:a7:87:02:dd:a9:a7:3b:40:75:97:65:66:40:4c:7e:e0:
81:7a:3a:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:34:52 2025 by rpki-client