Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/cee173-6c12-43cb-8b09-bbb0c8028e2b/1/rfRJdaXb2_gjtKCmt-65mxSENn4.mft
File: rfRJdaXb2_gjtKCmt-65mxSENn4.mft (raw, json)
Hash identifier: xPcmip12J14fjqMAWfDtWVHTAptKVRf8bkuYk5NH6pQ=
Subject key identifier: 85:43:0C:A7:EB:A7:06:77:62:3B:42:F6:D6:49:61:40:34:CC:D6:DA
Authority key identifier: AD:F4:49:75:A5:DB:DB:F8:23:B4:A0:A6:B7:EE:B9:9B:14:84:36:7E
Certificate issuer: /CN=adf44975a5dbdbf823b4a0a6b7eeb99b1484367e
Certificate serial: 019676E83C84AAF73BD534ACF855CA938963
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfRJdaXb2_gjtKCmt-65mxSENn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/cee173-6c12-43cb-8b09-bbb0c8028e2b/1/rfRJdaXb2_gjtKCmt-65mxSENn4.mft
Manifest number: 04A3
Signing time: Sun 27 Apr 2025 11:00:52 +0000
Manifest this update: Sun 27 Apr 2025 11:00:52 +0000
Manifest next update: Mon 28 Apr 2025 11:00:52 +0000
Files and hashes: 1: R4XHwh-uR65EL_DdpXZF6OARJ4Q.roa (hash: iFcX7qqj7I+Qr0pVVXkrPFoUP0jPJo5pY3SNhZeIPSE=)
2: rfRJdaXb2_gjtKCmt-65mxSENn4.crl (hash: vho1gEgfMVriPi9CGLQylSYhZIS/pN/V1/DdAEVcaxs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/cee173-6c12-43cb-8b09-bbb0c8028e2b/1/rfRJdaXb2_gjtKCmt-65mxSENn4.crl
rsync://rpki.ripe.net/repository/DEFAULT/78/cee173-6c12-43cb-8b09-bbb0c8028e2b/1/rfRJdaXb2_gjtKCmt-65mxSENn4.mft
rsync://rpki.ripe.net/repository/DEFAULT/rfRJdaXb2_gjtKCmt-65mxSENn4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 11:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:e8:3c:84:aa:f7:3b:d5:34:ac:f8:55:ca:93:89:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf44975a5dbdbf823b4a0a6b7eeb99b1484367e
Validity
Not Before: Apr 27 11:00:52 2025 GMT
Not After : Apr 28 11:00:52 2025 GMT
Subject: CN=85430ca7eba70677623b42f6d649614034ccd6da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:af:02:72:ea:09:ba:7d:9d:fa:78:5a:0f:8b:
cb:2a:80:78:a1:d8:e9:6a:f5:6d:8d:74:42:4d:c0:
55:c8:ee:26:2e:7a:f2:d4:87:b6:99:67:cb:74:0a:
2c:c0:51:01:21:89:f0:c3:29:25:eb:6f:c7:7c:7c:
47:44:30:d6:84:8b:b7:e1:a0:a0:12:95:d5:13:75:
95:31:78:52:a2:c6:73:27:a2:76:0c:3e:72:03:01:
d4:46:a1:75:61:63:56:8e:77:e3:8f:af:f3:ca:98:
fe:a6:c3:4c:f5:48:5b:ce:5c:0d:46:b5:cc:b8:be:
6e:59:0c:9a:69:52:29:46:7a:a2:27:14:3e:23:55:
22:47:01:a5:4b:95:60:01:74:60:b5:b3:d6:3f:23:
4f:70:36:d6:d9:04:b9:09:57:8f:a2:ee:a1:d3:5f:
f3:e8:bd:4c:db:3c:d0:e9:b5:5f:9e:97:1e:dc:3a:
06:ed:cb:1f:93:d5:ff:01:fb:24:95:b9:ea:e6:f6:
01:42:ff:cf:e1:a4:2d:ab:e2:10:03:06:3b:c4:3d:
b1:3b:60:3c:d3:4a:3b:8a:36:a4:8b:31:f8:7d:65:
51:b4:3a:7a:4d:ce:b3:fd:90:0c:a2:14:7c:54:16:
0d:c8:e0:53:b3:1f:76:2e:84:6a:cd:4e:d5:c2:11:
3b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:43:0C:A7:EB:A7:06:77:62:3B:42:F6:D6:49:61:40:34:CC:D6:DA
X509v3 Authority Key Identifier:
keyid:AD:F4:49:75:A5:DB:DB:F8:23:B4:A0:A6:B7:EE:B9:9B:14:84:36:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfRJdaXb2_gjtKCmt-65mxSENn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/cee173-6c12-43cb-8b09-bbb0c8028e2b/1/rfRJdaXb2_gjtKCmt-65mxSENn4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/cee173-6c12-43cb-8b09-bbb0c8028e2b/1/rfRJdaXb2_gjtKCmt-65mxSENn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:b5:09:40:52:b4:f3:00:13:18:f6:9c:83:5d:e1:04:ab:d3:
95:c7:f1:af:fa:a2:7a:4d:78:73:ad:15:bc:ec:c1:29:2f:3b:
8e:cf:ea:11:c2:a4:20:b4:03:9c:22:ab:91:48:f7:47:b8:f7:
71:70:c9:4a:64:f1:7e:4d:11:8b:aa:ec:ac:1b:bc:69:7b:35:
39:44:90:99:ed:64:3f:9a:bb:33:69:bc:66:60:f2:85:a3:75:
66:75:f3:42:a1:53:27:aa:47:a9:7b:75:cb:9c:61:0b:f6:52:
7e:88:63:85:83:78:18:ff:72:92:1e:5a:6c:95:e2:d5:ad:55:
56:f6:01:06:14:e9:73:bb:a9:75:77:a0:a5:8e:53:5e:1b:7a:
42:67:9e:fd:fe:63:3e:a6:46:83:6d:be:71:56:aa:ee:17:55:
d9:a2:b7:24:fe:eb:22:5f:ef:53:da:b7:2b:d9:5f:03:fc:62:
d6:4b:a3:12:bd:36:a1:5d:7a:66:27:31:ab:30:74:f2:3c:fe:
43:b8:44:ce:d0:31:72:3c:d0:e6:7d:e1:d4:e1:63:8c:f1:1b:
fd:ff:1b:d0:f8:35:a1:fd:59:8d:c2:9b:44:cf:ca:f0:23:db:
42:21:12:23:80:12:f1:5b:08:a7:21:07:c2:f5:28:0e:54:24:
d3:56:98:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 19:47:24 2025 by rpki-client