Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.mft
File: CWbgXRUnUN-q3l-veRutOR3G0tQ.mft (raw, json)
Hash identifier: EnOkV4OKPoanKtD+ffA9Rcmo9ADGijGMOzOtx7vJjSg=
Subject key identifier: 28:6D:8F:76:C6:D9:C3:B0:AF:A3:C1:81:77:D5:32:61:54:93:FB:53
Authority key identifier: 09:66:E0:5D:15:27:50:DF:AA:DE:5F:AF:79:1B:AD:39:1D:C6:D2:D4
Certificate issuer: /CN=0966e05d152750dfaade5faf791bad391dc6d2d4
Certificate serial: 019674F9BB57679781BB3C1E09F3B8732E35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWbgXRUnUN-q3l-veRutOR3G0tQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.mft
Manifest number: 0D50
Signing time: Sun 27 Apr 2025 02:00:45 +0000
Manifest this update: Sun 27 Apr 2025 02:00:45 +0000
Manifest next update: Mon 28 Apr 2025 02:00:45 +0000
Files and hashes: 1: 5bzk29WC2HSF9C0WZb2ngqPQ56o.roa (hash: fHgyyYyWXqEUztNgt56ZVo1FPxKD7CyfYBjgqkUt9TI=)
2: CWbgXRUnUN-q3l-veRutOR3G0tQ.crl (hash: aZggAVWCaIk2+df3N/s8mDjzaBW+VMyDoDJ9xTDSTfY=)
3: VYOb-2PB3WKsCUYPT2j-nf80wMs.roa (hash: YpnMPKkA2P+LHKT+FLRfK5zKYPPPwWgoJKnxE9kTcx8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWbgXRUnUN-q3l-veRutOR3G0tQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 02:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:f9:bb:57:67:97:81:bb:3c:1e:09:f3:b8:73:2e:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0966e05d152750dfaade5faf791bad391dc6d2d4
Validity
Not Before: Apr 27 02:00:45 2025 GMT
Not After : Apr 28 02:00:45 2025 GMT
Subject: CN=286d8f76c6d9c3b0afa3c18177d532615493fb53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:41:41:22:53:c0:8b:30:9b:2e:af:86:5d:c5:
d6:e1:7e:5d:5d:f0:8b:49:f6:a6:66:42:66:99:17:
9d:bf:2d:a2:95:fc:16:38:ef:a1:47:69:da:88:28:
59:f9:26:2f:2f:44:44:69:36:0e:4b:38:0b:39:ca:
6f:48:89:eb:cc:18:f7:49:6d:26:d6:d1:e5:d6:5f:
50:36:cc:1f:cf:54:c1:b2:c7:bb:e6:00:4a:5e:d5:
6a:ab:7b:ee:cd:c3:b4:90:26:01:5d:10:42:8f:ac:
a4:2b:d7:df:03:3e:a8:c7:98:75:cf:13:25:ae:d5:
81:5b:8f:62:94:4a:a7:4e:c0:21:1c:8a:c3:3d:8c:
4a:c6:cf:bf:90:f4:e2:47:0b:97:61:15:2d:12:11:
b2:41:d2:1a:49:cd:de:7c:86:45:02:96:2f:50:cb:
ea:48:5c:0a:45:bd:88:e0:b5:25:a9:22:c0:20:c3:
9c:f1:05:04:76:11:13:59:51:ce:46:53:d9:c0:05:
a9:2e:31:81:11:90:d1:76:0a:41:d3:32:b2:b0:50:
ab:71:5f:1f:dd:83:9b:f9:2a:12:ba:b8:31:dc:a9:
ad:c0:05:47:8d:ae:68:8f:6d:86:29:32:2a:80:46:
d3:ba:ec:0a:e2:27:54:1c:b0:2b:d1:2c:8b:92:b3:
f8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:6D:8F:76:C6:D9:C3:B0:AF:A3:C1:81:77:D5:32:61:54:93:FB:53
X509v3 Authority Key Identifier:
keyid:09:66:E0:5D:15:27:50:DF:AA:DE:5F:AF:79:1B:AD:39:1D:C6:D2:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWbgXRUnUN-q3l-veRutOR3G0tQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4e1bc8-f810-4182-a6e3-721bb4fc8c16/1/CWbgXRUnUN-q3l-veRutOR3G0tQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:53:8c:48:9b:56:58:7c:79:81:10:ee:aa:00:16:1a:1d:fe:
a3:18:82:ed:2b:ae:83:25:db:fb:1c:e2:51:72:b7:68:5d:40:
ec:82:78:1f:65:1d:b5:c9:7c:bf:79:f8:6b:8d:6c:87:ba:f6:
e8:d2:64:04:1b:80:f8:b2:cb:39:00:ee:01:5a:88:e7:24:08:
c0:1f:a2:59:82:7f:4d:2a:8f:a9:85:09:89:54:b3:7e:a7:d9:
6c:fa:48:0b:79:ba:f2:da:c2:e4:97:d3:ed:f6:b3:44:3a:a8:
5b:d5:7a:5b:9a:80:af:1d:a4:09:e7:77:54:e6:3e:a6:dc:fd:
24:6e:4d:c2:ab:1f:10:f9:e6:ad:61:0f:3a:3f:a5:3f:b0:11:
5e:f7:d4:ba:31:8a:ac:f3:bf:f2:77:92:df:f7:23:0c:c0:18:
3b:8d:47:f8:cb:a3:6d:36:93:77:2f:a9:ca:f4:08:44:e4:21:
bd:81:a2:02:4d:9a:3f:bb:34:31:36:b0:43:b1:0a:7c:6a:17:
38:ba:94:66:53:f0:44:a8:b2:a6:55:da:00:19:54:a0:8f:5f:
f8:80:c9:1e:7a:7b:ee:be:61:6b:47:e0:49:ed:cc:78:a4:a0:
80:23:10:59:c2:7f:b4:01:3f:0b:e6:20:9f:26:8c:40:45:17:
23:3e:7e:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 09:16:22 2025 by rpki-client