Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
File: shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft (raw, json)
Hash identifier: 91DCnwbn074qVpBh/OBJTtsaAj+hHlpLRxweauAmp0U=
Subject key identifier: BD:60:AE:00:91:F1:C6:2B:30:64:4B:9B:61:10:C1:27:DF:E3:A3:6C
Authority key identifier: B2:15:CD:8E:6D:B3:54:41:98:4D:9C:7D:FC:9A:FB:65:3E:55:DF:F1
Certificate issuer: /CN=b215cd8e6db35441984d9c7dfc9afb653e55dff1
Certificate serial: 0196741E31D2ACDBC013CD29A7F510298637
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
Manifest number: 1476
Signing time: Sat 26 Apr 2025 22:00:57 +0000
Manifest this update: Sat 26 Apr 2025 22:00:57 +0000
Manifest next update: Sun 27 Apr 2025 22:00:57 +0000
Files and hashes: 1: UkWKB7R6wSYKBpsuiwwV880UfCk.roa (hash: pQhrMKgkx/zqcMJYjMVoXY14ZtF5KkWfSepRK8YAXxs=)
2: shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl (hash: GGoT5bJWujPQdRZBVwv4MejXTRapwLYq+EISfh1oTbE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:1e:31:d2:ac:db:c0:13:cd:29:a7:f5:10:29:86:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b215cd8e6db35441984d9c7dfc9afb653e55dff1
Validity
Not Before: Apr 26 22:00:57 2025 GMT
Not After : Apr 27 22:00:57 2025 GMT
Subject: CN=bd60ae0091f1c62b30644b9b6110c127dfe3a36c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f4:c6:68:a2:89:98:94:7b:49:53:7d:6b:e3:
bd:70:25:fa:09:c9:9b:fd:51:78:f2:b8:39:8e:7a:
77:28:62:cf:1a:62:da:9f:fd:8c:b1:c0:59:be:96:
e3:06:21:f0:5c:23:8f:c7:e9:f1:4f:f4:84:5b:b1:
e0:44:59:a2:38:2c:ab:11:06:3c:27:c0:57:ac:13:
58:c7:24:60:c2:0c:5b:ba:a6:ac:bc:72:6c:74:e5:
e6:20:e4:90:62:14:1b:39:56:97:14:e8:05:3d:7b:
25:d2:55:c4:a9:d6:08:c1:39:d8:a2:4f:9a:dc:38:
4a:06:2a:8e:32:62:60:35:49:03:4e:f1:83:31:28:
2f:c9:c3:4f:ef:f3:a9:83:f3:cf:70:dc:c4:42:8c:
80:d3:36:a7:17:a8:5c:cf:03:f9:08:a2:23:e6:d3:
6a:af:11:70:14:60:d1:bc:a7:5f:c7:d0:0c:97:c1:
42:7d:20:b2:92:58:cb:c1:bd:27:41:f5:1d:5a:21:
25:20:aa:f5:c2:2c:b0:09:72:33:e0:1a:01:83:63:
36:c0:72:0e:42:f1:15:1e:12:4b:56:ca:ae:b8:e0:
af:63:81:03:73:5c:92:8f:a7:b8:e2:c6:f2:93:11:
ab:82:cb:34:9e:22:cc:e2:80:23:03:14:f8:97:22:
43:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:60:AE:00:91:F1:C6:2B:30:64:4B:9B:61:10:C1:27:DF:E3:A3:6C
X509v3 Authority Key Identifier:
keyid:B2:15:CD:8E:6D:B3:54:41:98:4D:9C:7D:FC:9A:FB:65:3E:55:DF:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:9f:21:88:21:8d:d5:8b:15:74:34:df:84:47:64:37:89:37:
d4:f0:07:14:a7:37:6c:75:6a:3c:a8:09:d6:d0:11:f9:1a:73:
b4:b4:85:8f:fb:31:13:aa:8e:64:95:a1:ac:2f:f8:25:a4:70:
4b:16:45:d7:33:0d:e6:94:ec:b5:2f:08:d3:9a:80:be:3d:c1:
c3:37:1b:ab:21:a2:de:71:91:7f:d9:e4:e1:10:54:80:05:96:
cc:a7:14:16:04:ea:ac:9c:c8:9b:67:62:02:f4:b7:9f:ee:0b:
e2:c6:fc:76:8e:97:e5:43:18:6e:e2:89:7c:79:92:3d:e5:2b:
7b:34:e1:1e:7a:bd:e4:fb:49:65:42:65:e2:e3:61:f5:78:bd:
33:8f:9d:dd:9b:81:00:ac:53:1b:25:fc:59:4f:f8:9b:14:96:
bc:8d:d9:3a:9a:50:db:a9:d0:5d:fd:90:3f:9b:73:6c:36:70:
66:3e:c5:bd:06:18:57:56:8b:39:d6:98:ff:5a:91:f1:d5:d5:
fa:69:27:66:79:94:07:54:8e:3d:aa:7b:82:13:eb:4e:5a:2b:
07:b5:3a:f8:39:27:4e:86:22:b8:5d:09:9a:21:60:6f:3d:fd:
b2:a2:49:36:6f:29:32:c2:7d:bd:bd:cc:91:ce:dd:1c:5e:ff:
06:bf:5c:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:37:29 2025 by rpki-client