Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
File: rwMNO0xYnpSj72Hd1UAajz_3m20.mft (raw, json)
Hash identifier: iuiw26oJlxoKBY4Va53Jv0OvQYzF4jbf8+mhYeY3p6Y=
Subject key identifier: D6:92:12:82:DF:0C:92:9B:79:49:CF:41:B1:0A:FC:D4:69:83:03:4C
Authority key identifier: AF:03:0D:3B:4C:58:9E:94:A3:EF:61:DD:D5:40:1A:8F:3F:F7:9B:6D
Certificate issuer: /CN=af030d3b4c589e94a3ef61ddd5401a8f3ff79b6d
Certificate serial: 0196767A4AF97E712035742438C6A3AFD89D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rwMNO0xYnpSj72Hd1UAajz_3m20.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
Manifest number: 0345
Signing time: Sun 27 Apr 2025 09:00:47 +0000
Manifest this update: Sun 27 Apr 2025 09:00:47 +0000
Manifest next update: Mon 28 Apr 2025 09:00:47 +0000
Files and hashes: 1: lhPT8Z32dm5HBnSDBqDW1qERmiA.roa (hash: 0NqD/8/FwQf4n6Nk71zoiew6bzyeCyV72ogP7Shiesg=)
2: rwMNO0xYnpSj72Hd1UAajz_3m20.crl (hash: CEaRo3gx7kmCyUjgDALQqSELVrU40o9IP9wc7tr+2BI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
rsync://rpki.ripe.net/repository/DEFAULT/rwMNO0xYnpSj72Hd1UAajz_3m20.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:7a:4a:f9:7e:71:20:35:74:24:38:c6:a3:af:d8:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af030d3b4c589e94a3ef61ddd5401a8f3ff79b6d
Validity
Not Before: Apr 27 09:00:47 2025 GMT
Not After : Apr 28 09:00:47 2025 GMT
Subject: CN=d6921282df0c929b7949cf41b10afcd46983034c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ef:e6:a0:a8:17:19:e5:f6:e5:64:8d:6d:83:
3a:26:50:54:b5:df:00:79:88:9a:55:2e:44:f1:5b:
70:4f:27:c5:6b:fa:4a:00:bf:ea:7a:fd:3b:0f:23:
e6:2e:bc:eb:36:79:5b:d5:3c:54:b8:cb:21:ba:e2:
8b:7b:35:93:26:1b:d1:3a:12:5a:30:b7:4f:04:21:
3f:20:3e:dd:05:74:4d:d8:e0:87:34:fe:04:23:7f:
52:ff:0e:49:43:45:e7:5a:28:4f:2d:21:1b:72:33:
18:52:59:b4:96:bd:1e:a0:51:e2:0b:19:62:a4:c8:
41:ca:7d:28:f5:28:74:bb:a6:74:da:88:8b:73:9c:
21:b3:5f:d4:aa:fd:3b:1a:1a:98:3b:de:7a:26:e2:
ec:0b:d2:8a:76:a3:58:68:ae:5c:e2:14:b0:5f:3c:
03:2f:a6:ef:49:41:82:53:94:50:b4:2f:f1:ae:f5:
64:c5:a8:27:32:9f:1c:c5:24:40:fc:e2:c9:05:39:
21:34:8f:71:b9:f7:c4:50:e6:23:26:7a:3d:ad:17:
fd:a7:33:4c:56:3e:56:e6:5f:53:a8:4f:b7:02:57:
6f:07:0a:6b:e8:59:84:95:e3:01:18:18:32:c9:b8:
87:6b:7b:77:30:66:44:7a:90:f1:31:b5:ff:c2:63:
f2:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:92:12:82:DF:0C:92:9B:79:49:CF:41:B1:0A:FC:D4:69:83:03:4C
X509v3 Authority Key Identifier:
keyid:AF:03:0D:3B:4C:58:9E:94:A3:EF:61:DD:D5:40:1A:8F:3F:F7:9B:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rwMNO0xYnpSj72Hd1UAajz_3m20.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/0da847-1ae9-496c-89fa-9245a9ab978b/1/rwMNO0xYnpSj72Hd1UAajz_3m20.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:96:12:a7:fe:a3:6c:12:26:1b:85:d5:70:a6:10:cf:7b:85:
7d:06:79:04:2f:10:e9:af:cd:73:2e:75:2f:79:04:52:65:ba:
fd:a2:dc:dd:88:7d:6a:27:d1:20:64:54:cb:b4:99:ad:90:18:
95:76:40:95:7f:47:32:4a:6b:18:08:66:5e:36:5e:11:36:8e:
4d:b4:1d:2b:af:8b:27:7c:9f:f4:be:fd:b0:7b:8f:4e:de:f1:
73:41:29:92:77:a4:dc:9b:41:28:d1:27:56:02:36:87:ed:59:
2d:8c:68:6e:41:40:93:17:e8:1e:81:17:04:18:5d:9f:63:a5:
5d:b2:00:eb:d7:ee:b4:1a:49:9e:09:05:b6:8e:07:ac:79:3d:
47:e7:98:ed:03:42:24:ca:2f:23:86:4a:03:de:c3:01:25:ed:
51:2b:6e:61:1b:e3:d2:ba:f2:ce:59:62:bb:32:cc:aa:d6:e0:
4d:25:0b:a9:fe:ad:40:24:2d:b2:39:6c:c1:a5:6f:23:c3:76:
2a:22:db:73:90:c9:94:72:88:d7:d4:2a:a5:25:ec:9b:e5:89:
ca:c1:6f:fe:25:37:88:29:c5:fd:19:9f:84:66:3f:6f:85:2d:
f4:40:55:ab:ee:2b:f2:40:73:7d:4f:62:0e:d5:e8:45:7c:c1:
cd:b0:f1:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 15:25:14 2025 by rpki-client