Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
File: s7b1TqmxWovU8zglOGyyd7A0Od0.mft (raw, json)
Hash identifier: CxI8z6U+9QTT9hkg61joaKlJYvlImvt2c49H3QtYtRs=
Subject key identifier: 67:ED:B2:97:86:E4:EF:BB:52:CB:74:75:D3:00:08:50:25:E7:55:70
Authority key identifier: B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
Certificate issuer: /CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Certificate serial: 01968134DD5CBDD1B47ABC85398772DD6660
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
Manifest number: 151A
Signing time: Tue 29 Apr 2025 11:00:47 +0000
Manifest this update: Tue 29 Apr 2025 11:00:47 +0000
Manifest next update: Wed 30 Apr 2025 11:00:47 +0000
Files and hashes: 1: SpsqNCwISL1D7YWDs8MOUK4XUcQ.roa (hash: VKTdP32emCO1Alc2phplZ6z5V0MT3UL3VXfP0BBA76I=)
2: s7b1TqmxWovU8zglOGyyd7A0Od0.crl (hash: tl8LcuyWVrKuZ+GH0z3eAGks7risngoZ3znPAOcATec=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:34:dd:5c:bd:d1:b4:7a:bc:85:39:87:72:dd:66:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Validity
Not Before: Apr 29 11:00:47 2025 GMT
Not After : Apr 30 11:00:47 2025 GMT
Subject: CN=67edb29786e4efbb52cb7475d300085025e75570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:7a:0f:c0:16:b0:fe:a2:2b:05:0a:a2:48:3f:
c8:20:e0:3d:60:ca:8b:66:2e:1b:3b:a6:48:b0:5f:
bc:0b:51:c5:6f:6f:ec:58:9f:4a:61:29:4e:f0:d8:
d8:10:42:6a:5c:7c:f4:c3:b9:35:a0:9b:cb:01:6b:
2a:ba:85:bf:b6:ca:75:3b:a9:ad:16:30:6f:3e:7f:
00:1a:63:14:bc:56:02:d2:5c:a7:a7:06:9a:d0:86:
05:ba:e6:2d:35:50:62:01:db:61:e6:fc:4d:9e:e4:
97:99:68:72:4d:0e:52:1c:8d:25:12:15:34:2b:d0:
e3:48:20:70:5d:95:f5:3b:b4:1b:45:b6:a6:8d:1f:
6a:7a:49:99:34:98:8c:1a:2f:df:22:f5:d8:9b:1e:
7c:06:aa:42:94:e6:8f:17:eb:ba:c5:d4:1c:63:15:
d3:91:90:7f:57:2e:fc:55:a1:91:63:f0:68:72:37:
27:2a:1f:a6:8b:ca:89:11:a1:bc:10:27:2a:7c:b1:
28:65:37:c3:60:89:f7:44:c4:06:14:20:5c:6c:1d:
be:56:db:41:80:f6:17:dc:5b:45:a0:4e:7c:d9:4c:
99:5b:f0:29:4c:e9:ad:eb:78:71:bd:ca:87:69:21:
31:e1:9b:b9:11:3a:66:a3:3c:94:83:b7:dd:8e:48:
14:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:ED:B2:97:86:E4:EF:BB:52:CB:74:75:D3:00:08:50:25:E7:55:70
X509v3 Authority Key Identifier:
keyid:B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:05:df:40:9b:a8:22:c2:40:ca:ff:a2:8b:fd:ce:0e:b3:36:
e7:18:8a:f1:6e:40:37:09:bd:43:99:1b:80:9b:d8:ab:22:3c:
2b:79:bf:30:fe:1d:07:4e:e0:6b:e1:c6:8b:e2:cf:bc:13:dc:
5a:0e:b2:9e:b4:66:f9:c6:0b:c9:0c:45:01:9e:b2:ae:fa:a8:
df:13:07:8f:a8:60:7f:a6:c3:1f:3f:5f:1a:2f:31:4c:8e:8a:
92:f7:f4:b3:f0:64:e4:28:e3:c1:62:19:6b:fa:4c:92:29:78:
0c:a2:22:68:f6:88:3c:e4:b4:0f:ef:d4:39:11:08:25:d3:20:
53:48:6c:10:43:c6:23:b9:0b:2d:b8:78:3a:05:a7:75:37:da:
5d:7d:0a:d5:02:fc:8f:16:a4:5a:9f:26:07:95:98:3f:c5:fe:
ed:a5:ff:d9:f1:da:6a:9e:12:a6:f5:98:e4:0f:e0:5f:9b:6b:
52:50:f8:3e:2c:69:97:f8:c9:50:bf:4b:df:82:0b:e0:a9:f5:
ed:77:c7:08:b1:4c:77:75:e6:25:22:76:97:4b:9a:66:6b:08:
bb:b3:dd:ab:0d:4e:fa:c2:2a:be:4c:77:2c:13:2b:41:7a:be:
0e:34:52:6a:0e:25:e5:c5:be:75:d5:0c:a2:01:21:79:d2:36:
4c:eb:33:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 13:47:13 2025 by rpki-client