Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft
File: vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft (raw, json)
Hash identifier: TbuLs/+e4r2jSGIsDWredNPsA/4KXBDgUPyfxiuhhnU=
Subject key identifier: 00:A2:54:C7:3F:92:DC:0C:7E:26:7A:FA:D1:4E:F9:CD:80:56:6B:0B
Authority key identifier: BD:68:C1:DA:D9:1A:41:01:C7:15:3C:0F:6D:01:56:23:8A:D7:46:BB
Certificate issuer: /CN=bd68c1dad91a4101c7153c0f6d0156238ad746bb
Certificate serial: 019679444DAE5628CA4319E6970D360F6BC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vWjB2tkaQQHHFTwPbQFWI4rXRrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft
Manifest number: 14A1
Signing time: Sun 27 Apr 2025 22:00:41 +0000
Manifest this update: Sun 27 Apr 2025 22:00:41 +0000
Manifest next update: Mon 28 Apr 2025 22:00:41 +0000
Files and hashes: 1: T6mhvGgjsjqSjSFXAxAChHn88ic.roa (hash: FPbExUKvK5N7b1i2EWlflqO6OJIjL5/osRySrLfPqFk=)
2: vWjB2tkaQQHHFTwPbQFWI4rXRrs.crl (hash: MPsbgNuLCGy4guvj8GCqJTr0j2xo8TlJYoQ1uRYSwbU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/vWjB2tkaQQHHFTwPbQFWI4rXRrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 22:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:44:4d:ae:56:28:ca:43:19:e6:97:0d:36:0f:6b:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd68c1dad91a4101c7153c0f6d0156238ad746bb
Validity
Not Before: Apr 27 22:00:41 2025 GMT
Not After : Apr 28 22:00:41 2025 GMT
Subject: CN=00a254c73f92dc0c7e267afad14ef9cd80566b0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:94:89:39:4b:56:49:62:04:48:0b:08:df:c7:
c2:92:57:fe:02:ef:f4:b5:0b:96:1b:3f:64:f8:68:
93:21:5b:f5:ed:47:79:aa:52:65:8a:f8:1f:5f:3c:
11:93:49:a7:fe:99:a1:51:26:b2:a4:b7:4b:03:56:
da:1f:9f:f9:62:21:5e:dd:82:71:60:22:1d:cc:d5:
5a:56:e2:d0:b5:4c:5d:76:70:d2:a9:07:b2:b4:cf:
86:80:97:b5:d4:f9:76:7d:7e:ff:bd:f9:86:2c:e2:
40:df:5b:25:06:df:fb:20:9f:36:d2:18:18:b7:5b:
69:22:91:7f:94:06:04:66:b8:af:f0:6d:f3:ee:fb:
19:90:23:fb:4d:fa:4c:0c:fe:c3:5c:08:20:4b:0a:
45:77:67:e3:82:5b:48:e4:4b:03:8f:b6:3e:f3:06:
9a:af:cc:bb:9b:c1:3d:d8:eb:2a:74:f9:c9:b5:bc:
19:73:a6:66:bd:84:da:8f:7d:a0:de:a9:df:2b:0e:
7d:a4:7f:23:ef:03:ec:62:2e:d4:15:2b:50:eb:fa:
b9:c2:ed:17:58:89:86:19:c4:7f:f6:6b:ee:3f:c8:
e4:5a:33:65:5c:64:a1:41:5b:e6:29:d7:88:97:7e:
90:94:03:9f:84:8f:f8:2d:84:02:7d:94:d7:b6:b1:
71:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:A2:54:C7:3F:92:DC:0C:7E:26:7A:FA:D1:4E:F9:CD:80:56:6B:0B
X509v3 Authority Key Identifier:
keyid:BD:68:C1:DA:D9:1A:41:01:C7:15:3C:0F:6D:01:56:23:8A:D7:46:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vWjB2tkaQQHHFTwPbQFWI4rXRrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:39:86:75:51:dc:fe:c1:9d:c4:b2:37:c9:be:4f:16:cd:93:
d1:1c:23:02:3e:7b:f4:6d:b7:cb:f3:29:7f:cf:6c:07:7a:06:
6b:d5:ca:b5:55:e5:02:a2:6a:9a:94:54:85:e5:91:92:3e:30:
e6:df:69:e7:5c:fd:ab:8b:cc:6e:42:c4:be:89:11:36:18:87:
a0:92:91:72:96:00:6c:8d:ed:96:c6:e0:da:4d:31:86:4a:eb:
7d:d3:74:d2:67:e7:6c:af:62:d1:6d:66:0f:83:46:bd:a8:dd:
48:2d:e7:29:d1:6d:9c:2f:c2:40:21:23:9a:c7:60:4a:fc:dc:
4a:a5:06:45:ed:8f:40:96:87:25:15:79:22:88:74:f8:a5:e5:
5a:4d:ce:70:95:ad:2d:c3:ca:bd:a9:96:2d:61:29:e9:a3:f8:
c8:ec:c8:0d:0a:50:86:e8:fc:aa:c5:53:44:3b:39:20:e2:17:
7c:23:5f:aa:90:7f:5d:60:f1:31:e6:f3:f3:1e:9d:ac:69:00:
6f:4f:51:1e:b0:9e:80:b0:a1:9e:15:b1:3d:28:b3:35:69:b6:
69:26:43:12:20:e1:f4:6e:d9:aa:15:a7:0e:bf:63:f7:9f:59:
a2:bb:ac:92:ca:f9:ff:fa:a9:35:5f:57:b1:8e:09:7c:d9:8f:
bb:dd:01:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 03:48:31 2025 by rpki-client