Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
File: rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft (raw, json)
Hash identifier: QitgB875vkxW8xcCGVVaK9xVJVB9vm0nxsip+T5EJqs=
Subject key identifier: AE:35:15:A9:20:4A:18:CB:79:50:6D:72:46:35:2E:D6:B0:9E:EC:56
Authority key identifier: AE:7F:18:7C:12:78:2F:C4:D8:44:76:22:35:99:33:29:C4:56:3A:0D
Certificate issuer: /CN=ae7f187c12782fc4d844762235993329c4563a0d
Certificate serial: 01967EA20B9DF891D016AD26952479314B46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
Manifest number: 0B30
Signing time: Mon 28 Apr 2025 23:01:11 +0000
Manifest this update: Mon 28 Apr 2025 23:01:11 +0000
Manifest next update: Tue 29 Apr 2025 23:01:11 +0000
Files and hashes: 1: ArXM7RJDnDKHHLBE21eoL2lE76c.roa (hash: n1+IHvUCKe6KRZXjngvQSrArHwaB9mNvliy4XN3wMhA=)
2: rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl (hash: s5zwt78jdwtQvcy/K35CMHRWDDvK9RE1EByfMs14+oU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 23:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:a2:0b:9d:f8:91:d0:16:ad:26:95:24:79:31:4b:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae7f187c12782fc4d844762235993329c4563a0d
Validity
Not Before: Apr 28 23:01:11 2025 GMT
Not After : Apr 29 23:01:11 2025 GMT
Subject: CN=ae3515a9204a18cb79506d7246352ed6b09eec56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:aa:ed:53:27:e1:e9:81:01:15:fc:29:d5:6f:
da:8e:59:b0:88:65:c1:b3:31:6a:54:4e:73:ae:79:
59:b1:d3:5c:a0:77:e7:65:63:b0:13:bc:64:5e:92:
6a:e1:49:f8:a1:c8:b6:20:2b:4c:63:ed:0c:2e:d8:
71:e1:7e:76:25:94:dc:f0:57:c1:4f:be:6e:ef:f8:
ec:b9:37:e0:db:93:f6:5e:e5:27:4e:ae:91:8f:4c:
72:d6:ac:87:f5:8d:c5:cf:69:dc:8c:25:b3:49:30:
96:99:b3:d1:d0:4b:5e:36:ad:ef:f5:4a:5f:cf:9d:
ee:4d:e6:f5:00:d7:a2:b9:48:cc:13:6e:f7:6f:01:
15:80:2a:d6:42:38:be:43:25:50:d1:f3:7d:8d:84:
9d:ff:86:3e:9c:69:46:a3:aa:7b:7d:a9:22:69:4b:
f2:f2:9c:5b:64:d8:c4:78:76:37:a7:ad:2c:19:ce:
9f:c1:28:12:41:fd:cb:69:4b:39:03:b8:af:f7:4e:
ea:c8:e9:b9:dc:25:a9:c9:ef:89:3e:fd:8f:d4:6b:
c0:7a:b9:ca:c1:e1:ba:85:da:61:74:09:b8:be:de:
76:e4:4b:e2:44:e6:83:58:20:86:b9:d1:47:88:57:
c3:19:83:1b:2a:0c:b9:0a:bd:39:1f:7e:eb:19:9f:
64:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:35:15:A9:20:4A:18:CB:79:50:6D:72:46:35:2E:D6:B0:9E:EC:56
X509v3 Authority Key Identifier:
keyid:AE:7F:18:7C:12:78:2F:C4:D8:44:76:22:35:99:33:29:C4:56:3A:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:3a:06:82:36:e3:13:39:33:63:54:76:fa:e9:b1:99:ed:87:
66:cf:be:01:71:ad:fd:e3:d3:13:58:9b:89:ae:22:d6:e8:ad:
15:b5:2c:e1:84:b4:d8:15:49:aa:a0:95:80:7c:16:a0:31:63:
4f:7e:dd:f1:43:32:92:9c:11:6e:e9:45:02:aa:d8:47:83:ad:
d3:02:ed:2b:15:f7:de:2f:a2:9e:81:13:d5:21:4e:04:29:22:
9c:b9:27:61:4b:4c:67:ec:cf:62:07:2b:7a:cc:35:64:35:a1:
64:17:dc:85:e6:5b:fa:85:41:6f:de:e8:d7:54:12:8f:2d:96:
b8:d7:8d:f4:b0:c7:c8:c1:bd:17:76:dd:d0:d2:7b:3c:0c:43:
1b:57:a1:4e:06:29:88:97:e4:6e:c3:52:5f:dc:eb:5c:7b:d5:
d4:f4:39:10:3f:65:26:96:d6:88:1b:cc:6c:f8:f5:da:28:bf:
6b:71:7e:c5:00:6a:11:ba:9a:11:ee:87:93:99:d2:8e:15:2a:
15:cc:2c:0c:52:2d:b1:26:24:c4:fd:36:26:8c:49:b6:cf:8c:
55:63:d0:76:98:cb:46:4c:7b:d6:b2:86:0a:28:c2:6d:41:87:
6f:67:98:86:cd:ee:0f:e4:9e:c8:42:6b:e9:86:a8:2e:3b:c5:
e3:97:83:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 09:34:02 2025 by rpki-client