Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
File: sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft (raw, json)
Hash identifier: WPY94/esx7kLxIEdQRJhTgh5IB3sXU3WoQT2a0g5gRo=
Subject key identifier: D3:7E:AA:94:BA:76:B0:81:DD:4F:E0:71:72:74:18:D2:CF:3F:32:2F
Authority key identifier: B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
Certificate issuer: /CN=b20663583a8189cbeaac88d438767997b1125549
Certificate serial: 01967755D9D21D2C2C81D479FCCFEEA99455
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
Manifest number: 146D
Signing time: Sun 27 Apr 2025 13:00:37 +0000
Manifest this update: Sun 27 Apr 2025 13:00:37 +0000
Manifest next update: Mon 28 Apr 2025 13:00:37 +0000
Files and hashes: 1: fW2b4Mi4-jlU6WyOHwej57Bj7xc.roa (hash: gkYhGIaUuP9pIbVaUa+O+pFYYvku1Vu69Icl89ypkjo=)
2: sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl (hash: yFPO0kc7c4fuMSETH5WtTfOAK3vpYBRwv2hQKop5NFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 13:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:55:d9:d2:1d:2c:2c:81:d4:79:fc:cf:ee:a9:94:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b20663583a8189cbeaac88d438767997b1125549
Validity
Not Before: Apr 27 13:00:37 2025 GMT
Not After : Apr 28 13:00:37 2025 GMT
Subject: CN=d37eaa94ba76b081dd4fe071727418d2cf3f322f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:10:1e:76:ca:18:49:66:c9:81:5b:c2:84:ad:
05:4d:1b:c6:f2:ee:85:40:1e:60:ae:26:93:ac:45:
68:66:f7:16:8e:c8:7a:f6:95:61:61:fa:05:80:1e:
04:41:33:a5:1f:ca:55:23:f1:62:2c:46:d2:4a:af:
b5:5e:6c:a4:65:30:d4:17:28:5d:13:00:81:99:bd:
ad:eb:63:0f:1d:bc:42:47:fd:14:c3:75:65:9d:bb:
94:05:24:fd:75:3f:be:91:1b:b5:fd:22:f0:4d:56:
0e:c1:c3:58:a3:17:6c:a2:fc:35:d3:d0:69:f0:fd:
f3:10:2d:48:fa:66:e5:26:f9:71:4f:71:6c:3f:6f:
9b:bc:ef:4c:f2:97:b1:83:59:54:25:80:64:7c:e6:
a5:88:a6:3e:3d:b7:e8:21:a3:32:2f:16:f1:a7:85:
0a:d8:e2:b7:55:86:4b:3f:f3:e7:79:93:af:ba:32:
da:46:9b:af:f7:a8:77:47:4f:55:90:5e:3f:d6:15:
fd:a6:9d:2c:cf:56:9e:ec:43:4f:98:5e:69:42:5a:
e2:08:eb:23:61:76:9d:d0:79:6f:62:0f:ca:7c:09:
f4:a0:93:18:99:f5:9e:7f:b5:1c:aa:bb:33:69:d5:
5d:2a:05:f6:0a:f1:dc:4a:e4:9f:57:8b:d5:a0:d1:
36:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:7E:AA:94:BA:76:B0:81:DD:4F:E0:71:72:74:18:D2:CF:3F:32:2F
X509v3 Authority Key Identifier:
keyid:B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:b3:1a:06:f6:f6:0d:ee:f4:a1:0f:0a:04:54:08:c4:07:bf:
d5:1f:fe:c5:09:42:b5:ed:9b:82:90:a6:58:15:a8:4c:f0:a5:
58:a6:0f:40:85:34:1c:58:ef:d0:95:75:7c:c4:42:1e:ff:4f:
aa:cb:ba:73:8a:21:d2:8f:46:9e:83:7a:46:73:f6:3c:52:b1:
02:20:5a:21:96:4b:85:2c:99:5b:1e:a9:b0:5b:b1:0f:28:d4:
96:75:90:2f:4d:17:53:16:f8:fa:22:d9:bc:66:2a:f0:e2:38:
a1:42:2f:65:2c:70:62:8e:1d:88:08:f9:21:db:35:74:91:1b:
af:e6:b6:15:ad:e0:e5:0f:68:2d:57:fb:9d:e5:cd:e9:08:94:
3b:68:8d:97:d5:f4:c4:b7:20:ee:9c:a1:f2:d3:46:4f:e2:0c:
44:3d:47:3c:be:9a:33:49:b4:1a:eb:e1:f5:05:9a:3d:a2:24:
09:18:be:62:03:96:f4:a5:d7:09:46:4c:4a:3a:ae:17:71:bc:
85:50:f8:81:4d:79:1f:12:3a:d5:89:17:91:3c:a7:59:f2:75:
b2:38:ce:90:6b:2d:5d:17:63:98:5e:57:4f:52:f0:db:f9:aa:
1b:21:a5:b5:eb:ea:16:de:c0:03:2d:00:af:d0:90:6d:38:99:
e6:4e:10:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:12:18 2025 by rpki-client