Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
File: S2MqdYtZMJ6GEInWVTruBnprNT8.mft (raw, json)
Hash identifier: B790eIBqd4lQZ1S3jnGYVeMdFYvOKqKN/KXACAhmWTQ=
Subject key identifier: 26:19:DD:FA:1A:8E:A1:C6:2B:0D:7C:3E:B0:A8:67:E6:2F:63:DF:1E
Authority key identifier: 4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F
Certificate issuer: /CN=4b632a758b59309e861089d6553aee067a6b353f
Certificate serial: 019688B7BE96AA8ACBA9984B631B8FE9395C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
Manifest number: 151A
Signing time: Wed 30 Apr 2025 22:01:05 +0000
Manifest this update: Wed 30 Apr 2025 22:01:05 +0000
Manifest next update: Thu 01 May 2025 22:01:05 +0000
Files and hashes: 1: BFmKhRFnCi2AJyutOk-Yxml708c.roa (hash: 30fgE+QkDlz/nOmXI9WzL3BXCW8rLDMyhnps4H9jCSs=)
2: S2MqdYtZMJ6GEInWVTruBnprNT8.crl (hash: iuKXo2ucZhB81rKsJGd+JGkL9/OgtRPhXvIiggontM4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:88:b7:be:96:aa:8a:cb:a9:98:4b:63:1b:8f:e9:39:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b632a758b59309e861089d6553aee067a6b353f
Validity
Not Before: Apr 30 22:01:05 2025 GMT
Not After : May 1 22:01:05 2025 GMT
Subject: CN=2619ddfa1a8ea1c62b0d7c3eb0a867e62f63df1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:55:a8:0a:46:b3:94:9b:84:47:ef:a0:e1:c4:
3d:71:ce:0e:60:4d:71:77:e0:b0:72:d6:56:69:10:
42:37:18:85:44:65:a9:fd:be:77:b1:9b:87:58:95:
b6:e4:5b:0f:5b:74:79:0c:cf:07:2a:ac:98:68:b7:
92:d0:8b:40:ef:6f:c4:72:53:57:a1:95:2f:7b:fe:
33:de:21:c3:a0:66:3a:52:c3:5f:c4:ac:61:43:dc:
dd:19:97:c3:86:5a:58:20:fa:43:af:4e:ce:11:43:
76:50:36:71:bb:c1:c4:a6:58:3d:8b:7c:a9:22:0f:
d3:46:8e:d2:07:8b:e7:a9:68:a1:e0:9c:f0:88:d0:
d2:95:fa:09:2e:4b:10:de:b3:14:d1:63:1c:8a:7e:
ec:2e:3a:e0:48:bc:c8:e8:76:cd:04:1a:7e:0c:a8:
ea:9a:00:af:3f:8e:43:ed:e7:c8:7c:f0:df:9f:8e:
ce:12:e2:92:33:1d:52:ae:79:e8:23:40:5d:f4:ba:
4c:1e:89:c9:72:d0:81:a5:76:d9:78:7c:6b:41:06:
df:d8:e9:2c:7c:cf:42:26:b2:6e:bb:30:5a:e0:8e:
88:f8:c6:2a:4a:6a:4e:cf:70:61:40:96:e6:23:af:
48:40:66:9b:c8:8c:e1:32:7a:a6:ca:f8:1f:51:bc:
4c:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:19:DD:FA:1A:8E:A1:C6:2B:0D:7C:3E:B0:A8:67:E6:2F:63:DF:1E
X509v3 Authority Key Identifier:
keyid:4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:82:e2:3d:a1:5d:a9:f1:25:44:5c:94:08:34:c3:8e:10:dc:
89:3b:c1:27:2e:17:82:37:77:4f:94:63:cb:04:67:5c:3c:39:
74:7f:98:b7:2c:36:71:e9:cb:0a:45:c8:37:68:7b:16:47:cf:
f6:4a:31:66:52:b8:a8:c0:0f:d3:58:97:e2:02:1c:3b:87:de:
05:96:42:5b:8c:c6:86:92:a2:65:d7:bd:de:2d:72:a7:5a:f3:
80:00:29:68:9c:da:9f:ae:d4:ce:22:b5:8f:c2:f8:81:2e:ab:
14:5a:8c:99:8a:df:0d:4e:bd:d0:7b:88:bf:d5:ec:0a:da:e1:
c7:9a:91:10:63:12:bd:93:25:e8:5f:e2:ed:a3:03:7e:dc:55:
1b:c2:4c:19:53:05:9e:6d:c7:2b:29:cb:91:97:eb:84:d2:12:
c4:f6:6e:cc:9d:fa:70:bd:86:fd:e1:d5:b8:65:00:65:94:6b:
72:b0:67:23:4d:e8:98:63:33:ab:7d:59:18:e8:f4:12:47:aa:
59:c5:6d:83:7e:86:6b:0a:74:cf:1f:1b:5d:14:a7:0e:eb:db:
96:a2:83:32:06:31:c9:3c:db:2c:e7:de:c7:0a:96:6d:80:d2:
ad:06:18:b6:24:77:61:cc:f4:3e:2f:4b:3a:6d:7c:cb:ff:9e:
c7:9b:a7:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 01:31:21 2025 by rpki-client