Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
File: cNvqB1PfCD5XgrufOAtdeZy3igY.mft (raw, json)
Hash identifier: 0653QRdzad0+3NxmKIeKRRzoAYy6b78yBZqJ1gHdWic=
Subject key identifier: FC:68:7F:F8:22:41:1B:4B:FA:71:B0:BB:B5:F1:9B:EF:31:3E:F5:40
Authority key identifier: 70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
Certificate issuer: /CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Certificate serial: 0196918336FC94CF1FD535D563531D9DCEB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
Manifest number: 14B0
Signing time: Fri 02 May 2025 15:00:17 +0000
Manifest this update: Fri 02 May 2025 15:00:17 +0000
Manifest next update: Sat 03 May 2025 15:00:17 +0000
Files and hashes: 1: 7wYbQJjmUZJ3jrCYQep7ej1ycX8.roa (hash: gX6AQ4uDUscH9HZMwyFhtSxb+YXiJVmytGAK7BhRx4Q=)
2: cNvqB1PfCD5XgrufOAtdeZy3igY.crl (hash: JBsiF6Q7wk6JvbaKd5uegqc3gwgJlRheYlFdvjlM+cg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 14:24:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:91:83:36:fc:94:cf:1f:d5:35:d5:63:53:1d:9d:ce:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Validity
Not Before: May 2 15:00:17 2025 GMT
Not After : May 3 15:00:17 2025 GMT
Subject: CN=fc687ff822411b4bfa71b0bbb5f19bef313ef540
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:47:9f:32:ae:dc:9d:b9:50:86:1e:fc:9d:80:
23:0b:09:44:8a:c0:b4:c7:dd:ae:11:ec:c4:6f:57:
4d:ea:5d:2d:5f:e0:8a:c5:f5:17:cc:77:eb:6e:d5:
09:ec:b2:1b:65:68:cb:f3:d3:dd:1e:b6:66:c1:7b:
05:3d:e6:af:e7:86:7f:a0:a0:fe:2f:bb:d6:e2:70:
ef:65:87:ef:61:5a:ab:90:f1:20:32:e6:00:97:da:
98:14:90:26:60:2a:d9:88:f4:ac:a2:94:0a:8b:65:
1e:4c:50:62:07:04:3b:b0:a0:36:0c:bd:f7:34:1d:
a4:1f:2c:2a:6c:73:3e:63:d5:6b:2a:cb:cc:26:09:
29:a3:66:f0:bf:c5:87:bb:24:89:c8:3a:32:c0:ad:
3e:fc:4e:93:5d:e6:e4:07:26:f1:34:8e:93:96:ef:
a9:10:80:63:fe:ee:79:8e:3c:f3:50:20:4e:97:92:
9a:b7:1b:01:1c:41:d8:d8:9c:a6:f5:f3:37:16:c6:
b9:e6:b6:86:99:a2:01:7e:49:ca:d2:ea:34:27:8e:
ba:bc:e7:e0:35:e2:61:f8:b4:50:5b:b0:95:8a:9b:
39:9d:ff:5f:2e:57:6f:0c:7c:63:bb:c4:72:21:33:
90:ad:cf:82:41:0d:80:16:b5:5e:03:43:5c:b9:2b:
c1:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:68:7F:F8:22:41:1B:4B:FA:71:B0:BB:B5:F1:9B:EF:31:3E:F5:40
X509v3 Authority Key Identifier:
keyid:70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:c5:b6:84:d9:7a:1d:e4:ea:9d:14:a4:70:a9:1d:67:45:6e:
ec:95:1e:bd:57:48:4e:a5:fb:0d:21:c5:da:e3:cf:d0:53:ce:
c3:24:2f:17:83:0c:cb:e3:90:81:b9:b0:68:32:2b:b2:d3:2b:
c9:8c:9d:e2:0a:10:8b:c3:19:d8:48:35:3a:ba:de:fb:f3:93:
a3:af:25:14:57:1c:46:98:37:49:cd:a7:9e:76:c5:bb:ef:48:
a2:87:3f:d2:25:87:6c:cd:c1:44:b8:e9:07:a1:cc:e5:fa:a3:
c0:d0:e1:b6:d8:34:dc:3c:1c:fd:b7:44:67:1d:07:e4:d6:a5:
90:70:fe:e9:f0:25:47:ce:a9:ea:39:8e:5f:8a:aa:c8:e7:95:
3a:3a:c7:9b:8a:42:78:6f:96:ea:d9:d3:14:e2:cf:2d:af:cb:
c0:cc:4b:3f:a1:f5:4e:13:9d:9d:54:84:a1:89:f7:c2:ca:20:
d0:9f:26:0c:82:98:48:bf:f5:03:83:b3:82:2b:b5:1b:37:1e:
aa:9d:1e:5e:d7:b2:b6:f5:75:26:42:20:2c:03:30:9e:87:75:
8f:a4:dc:4f:bc:c1:d1:7d:7c:d8:58:f6:14:2a:45:a2:6a:e6:
49:c1:15:93:3e:0a:2d:fc:28:39:6b:7e:a1:82:5b:48:26:47:
c0:1b:8b:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 23:22:47 2025 by rpki-client