Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft
File: t3gT9sVnClhoatw9SVV0QpXdFBk.mft (raw, json)
Hash identifier: 8i41UEzQxx3Hs+50GBsJWLJ/zSbz2ZthvgVGV6sYiTs=
Subject key identifier: B6:89:7F:27:23:3E:46:87:89:C1:70:02:28:B7:D8:59:E5:B6:B8:59
Authority key identifier: B7:78:13:F6:C5:67:0A:58:68:6A:DC:3D:49:55:74:42:95:DD:14:19
Certificate issuer: /CN=b77813f6c5670a58686adc3d4955744295dd1419
Certificate serial: 019683FEE4DB144FA9B97A6866DB713ABFB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t3gT9sVnClhoatw9SVV0QpXdFBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft
Manifest number: 0DEE
Signing time: Wed 30 Apr 2025 00:00:42 +0000
Manifest this update: Wed 30 Apr 2025 00:00:42 +0000
Manifest next update: Thu 01 May 2025 00:00:42 +0000
Files and hashes: 1: t3gT9sVnClhoatw9SVV0QpXdFBk.crl (hash: M1lh1dBHdhP5JPlUU4T7UT4IhTXzPx4Zoooju+Z6ZXI=)
2: xy0ayvCMPxVGUij5mpyeTNFKRNw.roa (hash: tXbOwwPUAQhZJRCjintnYpclKOHIFWoxy2lUX1RBhtc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft
rsync://rpki.ripe.net/repository/DEFAULT/t3gT9sVnClhoatw9SVV0QpXdFBk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:83:fe:e4:db:14:4f:a9:b9:7a:68:66:db:71:3a:bf:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b77813f6c5670a58686adc3d4955744295dd1419
Validity
Not Before: Apr 30 00:00:42 2025 GMT
Not After : May 1 00:00:42 2025 GMT
Subject: CN=b6897f27233e468789c1700228b7d859e5b6b859
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1d:bb:bd:fc:d3:cd:97:6c:fd:5c:d8:67:8c:
f5:e6:6c:1e:04:a8:df:d9:2d:40:a2:b0:9b:c0:86:
06:7d:ea:86:30:ae:14:3e:54:2b:82:29:20:74:fd:
91:31:41:12:e8:bc:cd:7a:94:b6:2b:9c:eb:dd:c9:
af:41:84:e5:4b:d6:48:8a:c5:95:ae:8c:ae:93:ca:
d6:fb:c5:26:01:6f:9c:de:94:a2:ee:2f:30:24:0f:
3f:10:a5:5e:53:c9:fa:5b:3f:83:70:1e:93:32:43:
da:e3:7b:be:3c:e4:2a:c2:27:3a:ac:3c:a0:5d:d5:
a5:42:b2:6c:7b:eb:51:d2:fa:8b:bc:27:eb:65:28:
9d:19:74:fc:47:39:4d:5c:d8:b1:a1:cd:f2:16:ef:
32:03:e0:48:97:f5:20:6a:b3:0d:9b:3a:34:13:58:
b2:a7:49:53:38:80:9a:71:a5:c0:11:a5:8b:f8:2f:
58:df:94:06:f6:56:d4:60:b1:b7:79:b9:a9:1b:c1:
90:9b:a3:7c:bf:33:ae:21:e3:37:fc:9d:cf:48:d3:
8c:90:b2:af:f4:5c:50:3b:7d:09:ab:e6:44:2d:75:
1a:94:79:ba:41:f6:63:ca:8d:5c:72:c0:85:73:61:
37:39:43:88:e5:e4:fa:fc:35:43:93:25:11:78:02:
63:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:89:7F:27:23:3E:46:87:89:C1:70:02:28:B7:D8:59:E5:B6:B8:59
X509v3 Authority Key Identifier:
keyid:B7:78:13:F6:C5:67:0A:58:68:6A:DC:3D:49:55:74:42:95:DD:14:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t3gT9sVnClhoatw9SVV0QpXdFBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:cd:2c:38:0e:89:e2:f3:d3:1a:05:87:6d:bf:d1:cb:88:6f:
7b:50:f9:62:14:74:40:d8:b4:9f:ed:1f:ed:b8:d7:56:04:22:
c3:f0:e9:58:d2:e4:0f:54:d1:a1:95:aa:5e:60:e5:d5:3b:1b:
d1:89:29:30:54:26:32:64:a7:c2:e6:50:69:52:0e:14:f0:ce:
56:4d:a4:b0:0e:73:46:dd:b9:83:5e:d1:6b:04:96:30:6d:dd:
18:03:af:63:e6:f6:45:35:08:6e:66:58:91:b9:1a:20:15:c5:
84:93:a3:f6:1d:50:72:35:9f:16:9e:5f:71:a3:11:f7:12:36:
4f:fd:a7:7a:9b:9a:8f:06:e1:5f:b4:f3:19:64:8a:ec:78:99:
e4:53:1d:24:66:4d:a2:6d:0d:7a:d8:6b:d2:39:71:78:54:95:
8f:fa:eb:59:30:31:c2:62:14:a2:48:c8:d8:d0:2a:83:27:35:
44:db:d3:23:4a:82:fa:38:8e:d6:16:b4:44:20:62:63:95:2d:
a9:c2:ad:e5:03:9f:f2:80:67:98:35:c2:9c:78:9a:5c:d4:a1:
61:1f:e6:bf:b5:f3:a9:42:74:e3:c4:8b:72:61:84:2d:2b:81:
10:bb:1f:43:de:17:a2:7d:4f:c7:2c:61:b5:fb:b4:bc:10:f0:
41:ba:bb:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 09:16:41 2025 by rpki-client