Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft
File: 1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft (raw, json)
Hash identifier: aNnmwT9W3LSPrLMxc4mgW+3kL4kDv68yHHa69o8SpDM=
Subject key identifier: 1F:00:99:25:C8:96:9F:AD:3F:9A:AE:7E:1D:66:BD:D1:81:39:E5:53
Authority key identifier: D5:06:97:94:36:76:39:9A:C5:CA:C6:A3:E4:76:54:5A:F0:DF:49:DD
Certificate issuer: /CN=d50697943676399ac5cac6a3e476545af0df49dd
Certificate serial: 019675D55250627A3A61B558124A6B5A9CCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1QaXlDZ2OZrFysaj5HZUWvDfSd0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft
Manifest number: 0754
Signing time: Sun 27 Apr 2025 06:00:36 +0000
Manifest this update: Sun 27 Apr 2025 06:00:36 +0000
Manifest next update: Mon 28 Apr 2025 06:00:36 +0000
Files and hashes: 1: 1QaXlDZ2OZrFysaj5HZUWvDfSd0.crl (hash: CRJmpY6dZ0MlpgG4C+Z7CKcguvO+RayV2A129jxVCbk=)
2: HUjG5wlXIs_S_8BTLmPoqHtpE_8.roa (hash: n0+Gv3Td1KV66vO7s/EA+fLLoF/hxd3hZyfSfNcw3NA=)
3: IosBMyCwhJpK9xWG1hvvXMqJa78.roa (hash: IYmZiNnkFwPxUpuPBI4TiPPkO8hQgA4aXIJpQwDNzpw=)
4: UNVV8q9mxHzj40ukB0dOp3qehFE.roa (hash: BXbVtWFAEKhtBygy5e3mBPkEaoCOBDieBmzKaOr8eAc=)
5: WJoZ3Cyd9hGNWW7azIwgdgzOVS4.roa (hash: 4VZTAKZBwZm9hthBlF7ANdxLjE6ybka+xW9+Dectll0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1QaXlDZ2OZrFysaj5HZUWvDfSd0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:d5:52:50:62:7a:3a:61:b5:58:12:4a:6b:5a:9c:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d50697943676399ac5cac6a3e476545af0df49dd
Validity
Not Before: Apr 27 06:00:36 2025 GMT
Not After : Apr 28 06:00:36 2025 GMT
Subject: CN=1f009925c8969fad3f9aae7e1d66bdd18139e553
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f9:ab:81:fa:39:42:a4:34:c2:c6:2a:5a:e5:
b5:84:c6:03:85:84:ea:19:b5:5c:47:9e:4c:0a:21:
c9:83:65:03:65:76:f2:e0:cc:cd:14:5a:45:ef:df:
5d:ac:2e:2b:71:24:84:93:8e:ba:7f:54:18:fe:21:
9a:c2:12:f7:62:d4:28:e3:4f:b0:4a:eb:f7:0c:3e:
d9:1d:b3:aa:c6:53:48:0e:be:9c:c7:8a:48:0f:37:
d7:07:4f:4a:1f:59:6f:94:13:0e:c5:02:e8:cd:87:
58:27:b8:71:92:6c:55:da:01:f0:8f:84:8e:18:e8:
8d:46:16:c3:5b:a5:dc:aa:46:3b:94:20:ec:ab:1e:
e2:95:a1:c7:d0:3d:bc:26:15:9f:8d:48:83:1b:b0:
f9:b7:94:e0:f3:84:c0:85:eb:a1:59:74:9d:7e:86:
ef:19:54:8b:f6:62:7a:b2:ed:41:84:d8:41:ea:99:
b1:1e:d2:fe:61:b7:f7:50:4b:dc:79:c0:fd:6c:ab:
26:12:a4:ba:0f:5f:d5:78:24:d2:db:d6:02:20:c9:
19:e9:4c:ad:6a:27:76:46:8e:21:b3:d6:d8:34:b5:
76:49:48:1d:d8:c6:a6:00:35:d2:1d:f2:9a:46:21:
ff:0f:6f:80:ee:a3:76:0c:40:35:c6:25:06:0a:f0:
47:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:00:99:25:C8:96:9F:AD:3F:9A:AE:7E:1D:66:BD:D1:81:39:E5:53
X509v3 Authority Key Identifier:
keyid:D5:06:97:94:36:76:39:9A:C5:CA:C6:A3:E4:76:54:5A:F0:DF:49:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1QaXlDZ2OZrFysaj5HZUWvDfSd0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/5f6aff-13bb-4db8-957f-8d23ac5cb502/1/1QaXlDZ2OZrFysaj5HZUWvDfSd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:7a:29:cf:4f:7a:b4:93:25:50:b1:a4:1d:5a:d5:ed:09:4d:
8d:99:14:5e:2b:e6:75:a9:fe:96:b5:b8:e6:a2:fc:10:18:89:
92:72:35:13:15:1f:66:e9:50:6b:b0:30:ca:27:1c:4b:70:c9:
8a:24:de:35:c9:f4:cf:aa:cf:fe:fc:af:5e:44:49:22:73:3f:
1e:12:11:7f:3c:a0:c5:a7:de:0d:d2:5f:65:2f:75:6a:23:df:
ea:8f:8a:18:f4:77:72:9d:a1:bc:f7:43:a5:70:7b:b5:4e:67:
bc:91:59:8c:37:e3:72:0e:35:ae:3c:fe:7b:89:30:40:8d:59:
b8:88:5e:db:a0:d4:6f:8f:4c:20:ea:64:9e:c4:4a:dd:50:46:
b5:0e:ff:67:cb:a3:d8:18:cc:28:84:82:e0:88:98:f7:e7:15:
f0:a4:01:3e:a4:3b:86:9f:5e:36:b6:92:5b:87:ea:98:ff:f4:
f9:2b:47:69:fe:2a:e4:b7:31:f3:6f:07:98:db:01:a3:31:1c:
c1:63:59:97:74:dd:77:1f:30:d7:9d:84:45:06:1b:bd:cd:04:
9a:80:8c:4b:52:a3:e1:10:c4:63:ca:6e:b3:5b:23:b8:6e:2c:
aa:c4:42:0f:04:39:32:36:bd:51:9f:75:00:9c:e8:7a:f1:06:
21:e4:5d:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 09:52:26 2025 by rpki-client