Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
File: sKT8KvOK9bT1hh4n_QB-YktfmwI.mft (raw, json)
Hash identifier: 64NNXyKa7OOXN3e/e2ubMbw9ycTVWqYInRqBWiqKOfY=
Subject key identifier: 31:2C:0D:5C:89:19:B3:AE:22:19:19:03:BD:37:63:21:CF:BF:F8:43
Authority key identifier: B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
Certificate issuer: /CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Certificate serial: 019687A478A4F66FB0DE25FCA4A9CE8164CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
Manifest number: 13E8
Signing time: Wed 30 Apr 2025 17:00:24 +0000
Manifest this update: Wed 30 Apr 2025 17:00:24 +0000
Manifest next update: Thu 01 May 2025 17:00:24 +0000
Files and hashes: 1: EhMQv2Hd3Y0AB-EaVNPw9A1el2Y.roa (hash: bVKsgWkrvgH7jweX9NZzvJ58rjQAc648XkG11nW0Xqk=)
2: sKT8KvOK9bT1hh4n_QB-YktfmwI.crl (hash: 275VqW+xBlKc+tUSlvNQhwqONMvCFXyWGQ6QPSr5Hd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 13:16:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:87:a4:78:a4:f6:6f:b0:de:25:fc:a4:a9:ce:81:64:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Validity
Not Before: Apr 30 17:00:24 2025 GMT
Not After : May 1 17:00:24 2025 GMT
Subject: CN=312c0d5c8919b3ae22191903bd376321cfbff843
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5c:a6:26:ce:f1:73:a5:3f:c4:38:53:4f:21:
71:6b:5e:ce:c2:a4:f8:b2:34:eb:dd:c2:88:65:0d:
5f:b1:14:07:84:ab:cb:7c:6e:db:75:4a:78:4b:b1:
5a:1e:8c:43:07:ae:e4:6d:29:5d:55:50:27:df:e3:
56:01:95:89:69:37:c0:02:66:89:ed:0d:f8:39:9e:
3b:f4:44:72:7f:c4:0d:e1:8e:1e:2d:0e:a9:bd:05:
7a:76:1c:c7:a8:a9:de:5a:47:3c:00:9e:ae:7f:a1:
19:59:96:1c:c3:58:ea:76:88:ef:cc:56:38:bd:37:
a4:8a:a4:db:28:fc:2e:49:95:e8:f6:f5:ac:6d:51:
09:78:0e:40:d2:e0:85:94:99:78:db:a6:ac:92:e1:
8b:c3:d0:74:40:04:0e:09:dc:85:d2:68:f4:b3:f4:
13:cf:19:5c:8a:c8:42:4e:57:a6:81:a4:39:e6:5c:
44:8c:1c:47:ab:52:0d:7e:b6:c5:eb:22:f9:05:21:
c4:74:2c:96:51:1a:43:f6:87:bf:a7:e2:73:fd:10:
a4:65:f4:26:df:fc:23:73:1e:de:97:a1:75:e3:25:
e0:71:52:60:37:0e:50:c8:77:29:58:ad:78:35:7a:
8f:2e:84:bb:af:cb:54:ec:1a:ca:d4:6e:f0:86:81:
ed:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:2C:0D:5C:89:19:B3:AE:22:19:19:03:BD:37:63:21:CF:BF:F8:43
X509v3 Authority Key Identifier:
keyid:B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:e6:ec:8c:6e:99:eb:f8:26:0b:1b:f4:bd:37:28:38:e2:7e:
92:29:ac:5f:f6:5b:c3:85:d7:8d:23:72:64:9a:ca:a7:1e:fe:
02:61:4f:8d:c1:c9:06:d0:ce:00:f4:85:5d:24:85:a6:c0:60:
f1:87:63:02:b2:01:8e:29:be:c4:4d:6e:20:2f:d7:ce:5f:1f:
8a:a4:a7:b7:36:94:14:e9:5f:4c:f0:9f:23:66:1a:63:4d:92:
36:68:0d:0c:15:d0:8e:dd:e8:d3:b7:2e:5a:d2:05:bd:b6:ba:
64:04:8a:c3:6e:11:89:95:a8:70:b7:e9:a5:b8:a6:a6:fa:75:
93:f9:79:cf:b5:78:53:87:95:0f:8a:da:1a:37:83:25:51:00:
7f:9c:70:77:fd:80:02:c1:63:d7:b8:0e:64:1f:55:0e:36:e9:
a8:f9:77:7d:a6:b8:6d:87:0a:3d:39:cb:f4:71:22:b3:28:35:
9e:b0:33:3c:e7:87:58:ba:25:9f:88:2d:80:c6:84:d2:f8:bb:
47:dc:06:5f:53:e9:c3:47:95:53:f7:14:d4:9a:5e:97:65:3b:
e2:58:1a:f2:2e:4b:8c:4c:61:27:cb:c3:da:8b:e1:ac:42:1f:
ee:72:de:cf:7f:d4:e9:82:e7:da:c9:2b:6f:1d:72:ea:41:63:
12:34:c0:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 20:58:54 2025 by rpki-client