Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft
File: SiHJG2O7vaiASnSfPWEOiyF_m3M.mft (raw, json)
Hash identifier: V3nZLnnX2T8NsbZlMp1HQ/GRE6WKnLzD9wp44N4UVZA=
Subject key identifier: CA:6B:12:06:BD:11:BC:CA:C3:10:74:D2:3C:C6:2E:95:A4:11:4B:AF
Authority key identifier: 4A:21:C9:1B:63:BB:BD:A8:80:4A:74:9F:3D:61:0E:8B:21:7F:9B:73
Certificate issuer: /CN=4a21c91b63bbbda8804a749f3d610e8b217f9b73
Certificate serial: 01968058980A255EC7E8C1294A51ACAE26B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft
Manifest number: 1112
Signing time: Tue 29 Apr 2025 07:00:11 +0000
Manifest this update: Tue 29 Apr 2025 07:00:11 +0000
Manifest next update: Wed 30 Apr 2025 07:00:11 +0000
Files and hashes: 1: 1Z1yWNgRSnqR3pt5WlApDelQe4o.roa (hash: 7G52qXZFDFq0XDjJ+/lW8m4SCa70rkFS2r1Ec1zORA4=)
2: SiHJG2O7vaiASnSfPWEOiyF_m3M.crl (hash: /KEKCD5ioPCFPH8QjaiAkPHjgleJ+YtWuF95548KDF0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 07:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:58:98:0a:25:5e:c7:e8:c1:29:4a:51:ac:ae:26:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a21c91b63bbbda8804a749f3d610e8b217f9b73
Validity
Not Before: Apr 29 07:00:11 2025 GMT
Not After : Apr 30 07:00:11 2025 GMT
Subject: CN=ca6b1206bd11bccac31074d23cc62e95a4114baf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:f5:f8:ba:8b:80:f4:db:f0:8b:d5:13:80:5c:
b7:e3:b8:c6:b5:57:36:c8:e0:fa:ea:39:86:de:58:
fd:1b:31:7f:db:47:9a:b8:25:fc:1f:fa:2c:71:1f:
09:66:b3:de:d8:b4:47:c0:cc:7b:f0:84:80:69:f4:
1a:5b:96:37:64:95:1f:f7:6f:fc:6c:1f:b2:fb:b0:
79:dc:d2:d7:eb:24:15:99:3b:ff:35:ec:bc:36:e0:
38:e3:57:54:2d:71:c4:56:89:54:7e:42:a3:02:ca:
e4:c9:97:6c:66:fd:3a:75:1c:53:ee:ab:f5:7c:e0:
b6:00:0a:89:83:25:0f:b8:c8:7b:0c:24:7f:8d:8a:
91:4d:61:b7:be:9c:70:97:6b:a9:64:f4:4c:e0:9d:
d9:0c:36:13:c6:be:07:71:00:0c:30:d2:07:43:70:
9d:34:a3:6d:27:3d:28:20:5d:15:48:80:41:5b:84:
25:12:ee:e3:ac:46:e5:75:fa:60:48:40:32:2b:63:
09:e4:61:e2:88:29:59:7f:d1:6f:6a:1e:29:99:79:
33:bf:bf:80:3e:0d:fc:81:62:e1:ac:87:30:4f:ff:
01:ea:47:29:45:50:b5:88:c7:de:be:2b:c8:20:90:
e9:3d:9d:17:34:c2:3d:ce:62:65:7c:f1:6d:92:cd:
5d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:6B:12:06:BD:11:BC:CA:C3:10:74:D2:3C:C6:2E:95:A4:11:4B:AF
X509v3 Authority Key Identifier:
keyid:4A:21:C9:1B:63:BB:BD:A8:80:4A:74:9F:3D:61:0E:8B:21:7F:9B:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:eb:82:0f:98:67:5b:96:d1:6d:b9:25:45:04:2f:3e:0a:e3:
a3:de:23:19:a5:fd:07:1d:62:ef:bd:33:1c:2b:bb:2d:87:f3:
27:79:30:45:97:a2:c5:96:6e:8d:b3:e0:a2:37:10:57:6a:76:
f1:59:d5:7f:93:2a:7f:76:86:0f:2c:e2:e7:87:c4:4d:14:aa:
b3:bc:41:1c:56:bc:bb:80:31:a1:f2:6f:95:4d:4a:e4:c1:c8:
7d:7a:49:58:db:c2:f4:79:94:db:0c:92:14:0a:43:0b:ff:e2:
91:2b:ee:b5:2b:6e:51:6f:f2:22:37:31:a2:97:11:3b:62:86:
f0:49:52:52:02:5f:89:08:8e:1e:bf:f9:ec:3b:18:de:d6:5b:
29:df:11:04:11:42:c1:fb:d1:9e:9e:6f:fd:84:ef:f9:5b:35:
ab:3c:f6:cb:4d:74:d8:aa:85:26:c4:c0:33:2b:94:43:ee:a2:
c7:81:cc:9a:4b:a2:0b:5d:e6:17:42:86:e4:3a:4a:75:79:54:
fc:cb:e6:fe:d4:1a:f2:21:67:0d:22:04:ef:c7:b1:16:a3:3d:
ec:f4:38:fa:7c:99:72:1d:94:29:44:71:6a:5e:05:df:ed:3e:
4a:f7:99:7c:d0:31:f4:4b:42:e6:c0:bd:0f:2d:00:f4:1d:78:
bc:4f:e0:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 15:10:01 2025 by rpki-client