Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/d3f65d-afab-4d28-b46e-620a79cf792b/1/29T45HYjd_hrB6h1P26Y9vS2t5I.mft
File: 29T45HYjd_hrB6h1P26Y9vS2t5I.mft (raw, json)
Hash identifier: rGnyaZR44Mtxm2i0WMHTI4tnVy0Qo99OBoL4O6icnhQ=
Subject key identifier: 6B:2B:BE:3A:4E:8C:C4:3E:46:8F:69:A8:1C:EB:D0:F6:82:C9:DA:8E
Authority key identifier: DB:D4:F8:E4:76:23:77:F8:6B:07:A8:75:3F:6E:98:F6:F4:B6:B7:92
Certificate issuer: /CN=dbd4f8e4762377f86b07a8753f6e98f6f4b6b792
Certificate serial: 01967E6A8E4AA741FF261989F7F98CF6AAAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/29T45HYjd_hrB6h1P26Y9vS2t5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/d3f65d-afab-4d28-b46e-620a79cf792b/1/29T45HYjd_hrB6h1P26Y9vS2t5I.mft
Manifest number: 1522
Signing time: Mon 28 Apr 2025 22:00:34 +0000
Manifest this update: Mon 28 Apr 2025 22:00:34 +0000
Manifest next update: Tue 29 Apr 2025 22:00:34 +0000
Files and hashes: 1: 29T45HYjd_hrB6h1P26Y9vS2t5I.crl (hash: QBVYbLt4ZwIC/tm6y5+5iNyK79e2uSYeE0EH2ZNSGeY=)
2: Bx5AqFrmCEvvpg5PP6G3iYi6cm8.roa (hash: nv+50RjE0P7RZsHAtUfv4vKeiING47CC1niIjtZ9NmE=)
3: EjiEhqCQfFeJxheh78DjOW0HnX8.roa (hash: xMjHQVoybWNabo3SxaU+I1LoAYBSZrLhM+vfUEw6Ma8=)
4: gmpsE3gYpq4JCSohIVHDm3a0vAc.roa (hash: UIxgMbyZxswMhLzYSeqRYLHgjf+FlKpy5d7Je9K3bz8=)
5: hsQv-_pPjXxEs3KS3Yli7KkGY8s.roa (hash: hNWKluVfWlyL1Lj4BF60xi3YP+tHJFMq6o5hVtlALzw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/d3f65d-afab-4d28-b46e-620a79cf792b/1/29T45HYjd_hrB6h1P26Y9vS2t5I.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/d3f65d-afab-4d28-b46e-620a79cf792b/1/29T45HYjd_hrB6h1P26Y9vS2t5I.mft
rsync://rpki.ripe.net/repository/DEFAULT/29T45HYjd_hrB6h1P26Y9vS2t5I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7e:6a:8e:4a:a7:41:ff:26:19:89:f7:f9:8c:f6:aa:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbd4f8e4762377f86b07a8753f6e98f6f4b6b792
Validity
Not Before: Apr 28 22:00:34 2025 GMT
Not After : Apr 29 22:00:34 2025 GMT
Subject: CN=6b2bbe3a4e8cc43e468f69a81cebd0f682c9da8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e5:06:56:47:0b:1d:e0:ba:f3:64:72:3b:45:
61:ae:fd:2a:bf:87:51:86:85:27:1c:c3:e3:43:12:
db:81:4b:45:d9:0c:58:83:52:f3:0f:06:9f:3f:0f:
68:0b:38:80:ab:55:88:c1:9a:26:1a:e6:18:d1:15:
7e:fd:10:6b:db:6d:61:db:81:70:23:6f:3e:05:b5:
5c:cf:df:9d:dc:d4:f0:47:aa:60:bf:40:49:cc:25:
71:e3:0c:cb:67:62:10:a8:ff:cf:4c:0d:4e:02:73:
93:3c:65:bd:74:c4:c4:ef:79:97:cc:67:4a:92:27:
6c:0d:60:9f:cc:5b:e5:24:05:ec:fe:de:2f:af:31:
5b:23:63:4a:49:ab:1e:d3:d3:8d:91:6c:e5:e3:a6:
66:be:aa:2e:e4:c0:58:fd:2f:82:03:d2:88:c4:99:
1a:05:d5:e6:cb:0a:4a:ed:31:08:83:15:b7:fd:7d:
d1:8f:1a:32:b9:f0:c8:91:24:e6:8b:d3:a6:ee:99:
72:b8:d3:4f:3e:17:41:19:84:72:d1:45:92:41:34:
1c:3a:3b:fc:7d:15:5d:33:be:50:8e:ab:bd:d8:33:
88:db:10:1a:a7:f2:43:ff:50:c6:43:48:ba:13:32:
35:f3:b4:18:ac:ba:72:87:f9:29:85:d0:89:21:11:
da:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:2B:BE:3A:4E:8C:C4:3E:46:8F:69:A8:1C:EB:D0:F6:82:C9:DA:8E
X509v3 Authority Key Identifier:
keyid:DB:D4:F8:E4:76:23:77:F8:6B:07:A8:75:3F:6E:98:F6:F4:B6:B7:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/29T45HYjd_hrB6h1P26Y9vS2t5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/d3f65d-afab-4d28-b46e-620a79cf792b/1/29T45HYjd_hrB6h1P26Y9vS2t5I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/d3f65d-afab-4d28-b46e-620a79cf792b/1/29T45HYjd_hrB6h1P26Y9vS2t5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:66:81:0f:b5:fb:8e:5b:72:fd:ac:36:be:0f:93:91:06:ec:
35:eb:ff:69:a4:d6:5b:d4:74:b1:60:68:0b:06:30:f4:59:9c:
ff:3d:95:cd:00:1e:7b:ee:46:06:81:04:8a:6f:5b:31:0e:20:
72:f9:5d:fa:be:12:78:4b:a3:e6:d9:b7:92:2f:d2:cb:b8:2a:
c9:d2:19:69:37:9a:5b:29:49:bc:09:5e:56:7d:ec:26:b9:18:
86:8e:6c:61:f3:3d:5b:87:c9:01:f0:7e:7d:e7:93:90:22:af:
e7:30:4a:ab:9b:3d:93:3d:07:c5:d6:1f:d9:87:7b:17:c0:a2:
78:73:11:d8:5a:f2:50:4c:f7:e7:0a:1b:ac:b0:0e:fc:7c:a5:
ae:9d:86:95:19:1f:03:4c:17:70:96:f9:45:c5:2a:38:98:49:
4f:ba:8b:6b:bf:d0:c6:02:58:b6:52:50:8f:d0:71:49:8c:bf:
9b:cf:7e:86:1c:67:ae:7e:25:c1:33:4c:e9:5e:36:b3:27:3c:
00:be:49:c5:59:53:bf:e3:b8:ed:1f:02:db:5b:55:79:e7:1f:
4c:cc:fd:48:50:dc:e6:b2:b9:36:f3:45:e1:1d:70:86:fc:e6:
b6:73:63:19:bc:19:9c:1f:55:c7:1d:7c:86:bd:f7:9a:2b:69:
93:45:d2:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 00:05:55 2025 by rpki-client