Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
File: mSAfYJ56iT2obPDrvKS79HJ51hc.mft (raw, json)
Hash identifier: PCq+P8pewwLVAGskgrr2G4oETu+q2yXsEPyll2uzU6c=
Subject key identifier: AC:CD:35:1D:84:C5:1B:1F:B6:F0:0E:8E:44:C8:38:F6:10:5F:BB:A4
Authority key identifier: 99:20:1F:60:9E:7A:89:3D:A8:6C:F0:EB:BC:A4:BB:F4:72:79:D6:17
Certificate issuer: /CN=99201f609e7a893da86cf0ebbca4bbf47279d617
Certificate serial: 01967454946BA08BBBC5C905DE377D98E3B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mSAfYJ56iT2obPDrvKS79HJ51hc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
Manifest number: 03A5
Signing time: Sat 26 Apr 2025 23:00:22 +0000
Manifest this update: Sat 26 Apr 2025 23:00:22 +0000
Manifest next update: Sun 27 Apr 2025 23:00:22 +0000
Files and hashes: 1: Dk8y_Ou1uZWQiNL6yHHBr0s0ttA.roa (hash: R07SZsf5miM7Ul/UJEmVinbpjidx4vC3ZL0OhnTHSlY=)
2: mSAfYJ56iT2obPDrvKS79HJ51hc.crl (hash: UpPKJR3ckES0hzsH06xEFN939HB2Jc3hiGjdfyKjG9U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mSAfYJ56iT2obPDrvKS79HJ51hc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 23:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:54:94:6b:a0:8b:bb:c5:c9:05:de:37:7d:98:e3:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99201f609e7a893da86cf0ebbca4bbf47279d617
Validity
Not Before: Apr 26 23:00:22 2025 GMT
Not After : Apr 27 23:00:22 2025 GMT
Subject: CN=accd351d84c51b1fb6f00e8e44c838f6105fbba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:cc:62:09:c4:97:ad:2a:b3:b1:90:88:e0:83:
91:01:2f:80:99:5b:21:6d:f3:c7:08:27:cd:b5:cf:
5d:b5:34:e2:58:48:79:fc:87:77:d0:ee:ae:18:3d:
b9:32:97:63:d0:6b:29:8b:4e:f2:f4:4c:3b:9a:08:
bf:87:35:35:af:f5:45:7c:d0:a2:b2:24:ac:55:c6:
c6:ce:ec:fb:cf:96:7b:1e:0b:ec:cc:47:19:1c:c1:
a6:ed:c3:0c:62:a0:24:0c:1b:16:9e:fc:88:97:f5:
59:27:72:19:53:e8:de:8c:07:8c:16:84:c5:4c:7b:
6d:22:a2:ed:88:6e:92:b1:2d:e5:57:54:f3:49:d5:
16:c3:56:4a:5b:ef:81:e3:f3:10:1f:4b:71:72:59:
f0:31:65:4c:84:57:98:01:98:2d:84:fb:cb:70:d1:
55:96:34:f5:38:a8:10:7a:9e:0e:06:52:2f:1e:f4:
a2:0a:3d:3a:e5:35:c9:1c:a6:dd:d4:ea:c5:93:a8:
44:98:b8:75:11:ee:04:96:9f:45:c1:11:a2:d7:ea:
02:c4:57:8c:0c:42:fb:1a:02:cb:00:b4:4e:27:f3:
8a:38:db:1e:f9:a6:fa:23:0e:5d:d0:40:09:7e:02:
37:23:72:96:7d:08:b9:c5:63:e5:73:5b:59:d3:ce:
f8:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:CD:35:1D:84:C5:1B:1F:B6:F0:0E:8E:44:C8:38:F6:10:5F:BB:A4
X509v3 Authority Key Identifier:
keyid:99:20:1F:60:9E:7A:89:3D:A8:6C:F0:EB:BC:A4:BB:F4:72:79:D6:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mSAfYJ56iT2obPDrvKS79HJ51hc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/6536f9-87dd-4edd-b01c-b23172eb81fb/1/mSAfYJ56iT2obPDrvKS79HJ51hc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:a6:5b:08:e8:b7:ac:25:ee:26:1a:d3:d8:aa:5c:1b:37:bc:
25:d8:9b:be:0b:8e:80:ae:fd:7c:dd:e3:7c:0f:d8:46:bc:d5:
59:3e:f7:fa:65:82:16:7b:bb:c8:85:a9:8c:49:e0:8d:93:22:
fc:4c:2b:aa:a4:77:77:c7:dc:69:a3:79:0e:a1:36:83:17:ed:
92:1c:f6:85:f5:db:c9:42:3a:26:89:e6:c2:be:d4:1f:bc:31:
50:e3:6b:38:61:f6:62:29:43:8b:f2:07:48:b5:b4:dd:ec:8f:
14:7e:00:8b:9a:f0:13:7c:15:40:ee:7f:45:7c:9b:c1:62:89:
1a:36:60:be:3a:f9:55:62:18:d1:79:1b:d6:1e:50:d9:97:61:
3e:36:f0:fc:db:52:0b:e4:f8:cf:f2:94:34:c3:78:f1:c9:47:
b0:a5:bb:e3:75:c2:68:1d:85:e5:87:68:25:db:25:ca:53:05:
7f:05:96:df:dc:a0:9b:a8:95:d5:9f:ed:79:41:d4:be:67:d1:
eb:92:2a:3f:00:d1:81:88:5c:a2:af:c9:ea:f1:12:78:88:1a:
db:d8:93:05:19:4a:c3:31:0f:a7:87:e5:bf:f7:93:9d:6d:2c:
8e:1a:38:ad:66:19:7d:7e:cb:44:6a:df:4a:7d:da:89:a9:15:
3f:98:66:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 07:31:20 2025 by rpki-client