Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.mft
File: 0xQt8vZwlAzPWksnoNDJh-zIhlY.mft (raw, json)
Hash identifier: PCkWtg0dEiO70KhMQ0Np4Kcjt+vUmHlsY634+t/psOg=
Subject key identifier: 80:BD:D5:F8:C4:EF:88:F0:D4:C4:FA:77:88:7F:14:AE:A1:25:04:14
Authority key identifier: D3:14:2D:F2:F6:70:94:0C:CF:5A:4B:27:A0:D0:C9:87:EC:C8:86:56
Certificate issuer: /CN=d3142df2f670940ccf5a4b27a0d0c987ecc88656
Certificate serial: 019676B0F40947F5AAAD7ABD4FFAE87A6390
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0xQt8vZwlAzPWksnoNDJh-zIhlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.mft
Manifest number: 0220
Signing time: Sun 27 Apr 2025 10:00:30 +0000
Manifest this update: Sun 27 Apr 2025 10:00:30 +0000
Manifest next update: Mon 28 Apr 2025 10:00:30 +0000
Files and hashes: 1: 0xQt8vZwlAzPWksnoNDJh-zIhlY.crl (hash: OElTI6MkCxIsxqCJAl4ZhJ7UjIyh4pD93K1K68LFhBw=)
2: DxWkaJkNeo1GnfX8PTB6m_7NDo8.roa (hash: 1C13Qsc+uAlJmXy/kak788lVFXMyWIaA+AZiv7RcjGk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0xQt8vZwlAzPWksnoNDJh-zIhlY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:b0:f4:09:47:f5:aa:ad:7a:bd:4f:fa:e8:7a:63:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3142df2f670940ccf5a4b27a0d0c987ecc88656
Validity
Not Before: Apr 27 10:00:30 2025 GMT
Not After : Apr 28 10:00:30 2025 GMT
Subject: CN=80bdd5f8c4ef88f0d4c4fa77887f14aea1250414
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d3:8e:ca:e6:1e:31:be:6b:ce:ff:be:3b:d3:
57:31:44:ec:f7:36:8e:bc:85:05:93:67:1f:3c:5d:
1d:b2:bc:09:b5:3e:17:03:48:8b:9c:a6:e6:11:39:
4d:d6:5e:bf:06:ff:46:4d:34:41:54:8a:3a:6e:d4:
f3:24:9e:b3:07:ec:f8:65:6a:8a:2a:e7:8f:a7:05:
b2:13:51:44:f9:e2:a2:1d:55:93:e3:4e:b2:b1:26:
d2:b2:84:d1:4f:05:e0:e8:99:19:c7:b8:d6:90:31:
45:8a:a8:a7:bc:fa:88:ba:13:9e:09:3e:f3:35:43:
ab:c4:26:52:6d:95:ac:05:62:77:07:85:4a:c6:51:
f2:38:49:20:b8:da:de:32:ba:b2:ab:57:20:e2:23:
20:e4:90:26:be:a1:ac:20:89:f3:84:1d:2e:5a:a7:
d5:d2:64:a2:02:fc:cf:e2:df:4f:27:1c:2c:78:53:
88:2d:65:53:70:7b:99:69:ca:ac:d1:60:8f:02:2b:
49:b8:6b:f9:68:7a:2b:f8:49:f1:3e:c5:27:40:bb:
85:54:97:62:f2:ee:8e:a2:b9:dd:cc:88:40:f0:b4:
e2:4d:79:70:79:ee:46:fb:e6:4a:84:c7:a8:a3:d2:
5a:6e:23:bf:bb:7c:b3:58:ea:7e:28:fe:0b:97:a3:
84:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:BD:D5:F8:C4:EF:88:F0:D4:C4:FA:77:88:7F:14:AE:A1:25:04:14
X509v3 Authority Key Identifier:
keyid:D3:14:2D:F2:F6:70:94:0C:CF:5A:4B:27:A0:D0:C9:87:EC:C8:86:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0xQt8vZwlAzPWksnoNDJh-zIhlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/ec39be-e227-4a2d-b4b2-632caeef4584/1/0xQt8vZwlAzPWksnoNDJh-zIhlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:36:95:37:7a:90:b6:43:be:e6:14:77:12:e9:e9:49:20:81:
96:84:41:70:a0:e3:fb:ee:42:6e:1f:d8:6c:8a:b0:28:28:90:
73:01:48:b4:b9:b2:2f:a9:f4:a5:c5:b2:40:55:03:4e:e6:12:
81:be:0f:a6:f9:bb:38:10:1a:7a:dd:dc:40:37:1f:96:1c:9b:
cf:9c:1b:fc:0f:cd:a0:cf:54:3a:0a:69:f4:30:f0:f1:22:f6:
c6:80:64:87:a6:b9:e8:e5:57:af:c4:b6:bd:11:28:20:9f:e5:
5f:cc:05:33:59:55:1c:dd:d4:fb:86:ab:03:4f:66:2b:83:81:
83:ef:e0:10:4d:1a:34:9e:ad:71:fc:e5:d6:0e:f8:78:26:87:
c8:fc:40:5c:3f:5c:8a:bf:4b:db:ae:e8:c9:b6:d2:99:fe:6b:
49:3e:df:fe:1f:8d:6f:04:db:20:44:d3:41:3e:2b:05:43:b8:
fb:35:19:7e:38:23:3e:d0:4c:0e:76:01:d4:3f:11:44:d6:d9:
cd:06:b4:81:a7:b7:7a:1e:f0:f3:0d:17:90:ae:76:bf:f7:aa:
4d:02:47:52:e0:e8:a0:8f:51:61:b9:4d:b8:66:77:27:fb:30:
16:11:85:fe:fb:32:58:78:3b:8d:40:19:fc:3f:8d:cf:be:d7:
1c:51:93:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 14:17:09 2025 by rpki-client