Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.mft
File: sICdwHvAd1GY8vMVVBUvNWqD93A.mft (raw, json)
Hash identifier: bga28UEfz1ZIXzCri8SbqEgusOAMbXSX0r0VlbXSUfw=
Subject key identifier: F9:D3:9E:9A:F0:37:47:0E:D8:46:58:B8:94:7D:33:55:AB:F8:3B:62
Authority key identifier: B0:80:9D:C0:7B:C0:77:51:98:F2:F3:15:54:15:2F:35:6A:83:F7:70
Certificate issuer: /CN=b0809dc07bc0775198f2f31554152f356a83f770
Certificate serial: 019675674EFE1A6D4E10A54EE18124842F96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sICdwHvAd1GY8vMVVBUvNWqD93A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.mft
Manifest number: 14A2
Signing time: Sun 27 Apr 2025 04:00:26 +0000
Manifest this update: Sun 27 Apr 2025 04:00:26 +0000
Manifest next update: Mon 28 Apr 2025 04:00:26 +0000
Files and hashes: 1: _vqUTJBaKVA__-YzImtaOgUdlPc.roa (hash: WjwzW+i6IqptZA1G2R9oYtf2Xiry6o+GVW/+RmHCnfA=)
2: sICdwHvAd1GY8vMVVBUvNWqD93A.crl (hash: fBEgxgiQ9/FUV8aIGtsn8zkCEM3OVoGKPFctgFZACpM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.mft
rsync://rpki.ripe.net/repository/DEFAULT/sICdwHvAd1GY8vMVVBUvNWqD93A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 04:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:67:4e:fe:1a:6d:4e:10:a5:4e:e1:81:24:84:2f:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0809dc07bc0775198f2f31554152f356a83f770
Validity
Not Before: Apr 27 04:00:26 2025 GMT
Not After : Apr 28 04:00:26 2025 GMT
Subject: CN=f9d39e9af037470ed84658b8947d3355abf83b62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:2c:81:1a:d0:4e:a3:f1:6a:1a:91:e4:4d:de:
6e:7e:cc:b9:13:78:78:6a:c3:23:b1:ce:8c:a6:51:
f4:f6:ab:8c:41:93:c8:60:75:2b:d3:8d:fd:c0:8a:
10:cc:2a:2c:25:f2:e7:1e:71:60:0d:ca:92:50:cd:
d0:0f:0f:5b:16:f2:5c:ad:3c:64:98:83:8a:4d:0d:
0f:f5:27:64:2d:59:51:7c:54:f5:8a:10:75:4e:34:
a6:f4:8d:1d:74:96:46:36:a9:56:00:c6:12:b4:c8:
df:6c:83:99:bf:5e:87:b4:da:29:b1:2b:15:7a:ee:
de:f9:7f:27:93:83:4e:38:a5:8a:4b:e7:a6:dc:ad:
41:55:51:9c:89:93:76:b7:9e:df:d6:d2:de:db:8a:
c3:ef:99:1a:b6:27:ea:49:57:f2:87:a6:ed:17:80:
ff:21:1f:6e:c6:b4:e9:07:ab:09:10:79:6a:6a:2f:
ba:a9:53:0a:ba:ca:5b:63:d5:e7:ef:7f:ae:ec:28:
6f:dc:03:f2:8a:7f:b3:e5:b3:a9:ad:a7:46:f4:aa:
bd:c0:04:8b:0f:56:f5:10:93:5e:f4:73:d5:f9:64:
6d:7f:ea:7a:b3:8b:64:6f:84:46:74:68:c1:75:ff:
dc:ec:e9:c2:b7:3b:18:9d:3e:d1:57:94:be:53:2a:
0b:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:D3:9E:9A:F0:37:47:0E:D8:46:58:B8:94:7D:33:55:AB:F8:3B:62
X509v3 Authority Key Identifier:
keyid:B0:80:9D:C0:7B:C0:77:51:98:F2:F3:15:54:15:2F:35:6A:83:F7:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sICdwHvAd1GY8vMVVBUvNWqD93A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/db724a-cbca-4ed1-9b79-9a1ab11abded/1/sICdwHvAd1GY8vMVVBUvNWqD93A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:20:4a:c5:03:cf:92:77:77:a2:c3:1b:8e:ac:68:77:af:d0:
52:d5:4d:68:50:f9:84:ea:a6:f7:cb:72:de:c4:1d:81:c0:b4:
60:5d:b5:14:31:b1:e0:1f:5c:a5:36:ec:d0:87:a5:8d:29:43:
b4:c5:7c:4b:6e:4c:02:34:f4:24:ca:05:00:34:60:7e:6a:19:
1f:d8:99:c5:7f:2a:4d:5c:ba:00:3b:fd:73:64:3e:31:2c:7b:
05:f0:d5:ba:7b:bc:f6:e0:ed:d0:69:0b:a5:bb:e4:c1:46:77:
83:d1:17:15:98:ae:66:78:b2:6e:39:c6:b4:10:50:2a:5e:49:
d0:0f:5b:0e:93:7c:45:41:2b:4d:f5:7d:49:e4:da:5a:c7:42:
56:48:ef:69:30:d7:98:b9:a8:23:3e:7f:0d:58:db:df:6a:05:
bb:5f:3e:cf:0b:08:df:da:fa:07:8b:2d:5d:21:a9:83:f6:c9:
72:5b:08:de:5e:1f:8c:79:20:1d:ab:8b:5e:fc:e5:69:5e:a7:
06:bf:0f:d9:5e:53:69:bf:4b:e7:1b:ec:91:1b:10:0f:af:5f:
24:8c:9b:d0:38:b5:4f:d8:0b:80:76:26:1f:9a:4f:70:3a:dc:
b2:15:87:7c:77:cf:72:c3:d3:a8:7e:52:ed:7e:b0:fb:1e:4e:
c2:09:e2:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 11:26:26 2025 by rpki-client