Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/a97dc0-5685-4f6e-987f-2a5a6e2d7948/1/1-geuOnkY-TLqJMwVa0tum6VYG_o.mft
File: 1-geuOnkY-TLqJMwVa0tum6VYG_o.mft (raw, json)
Hash identifier: 5vFoFxIjWa2Rt8FTjMngBiYgvMdLWAd5g6VU3aLJAdc=
Subject key identifier: EB:34:77:77:82:DA:D0:20:66:71:57:A2:86:A1:95:46:67:11:BF:98
Authority key identifier: FA:07:AE:3A:79:18:F9:32:EA:24:CC:15:6B:4B:6E:9B:A5:58:1B:FA
Certificate issuer: /CN=fa07ae3a7918f932ea24cc156b4b6e9ba5581bfa
Certificate serial: 019676E7B27907D7D94C28491D703C459290
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-geuOnkY-TLqJMwVa0tum6VYG_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/a97dc0-5685-4f6e-987f-2a5a6e2d7948/1/1-geuOnkY-TLqJMwVa0tum6VYG_o.mft
Manifest number: 021D
Signing time: Sun 27 Apr 2025 11:00:17 +0000
Manifest this update: Sun 27 Apr 2025 11:00:17 +0000
Manifest next update: Mon 28 Apr 2025 11:00:17 +0000
Files and hashes: 1: 1-geuOnkY-TLqJMwVa0tum6VYG_o.crl (hash: X0Zvy3er8IOhzk0o967zBrHoxmf+g52xf9bfDhZRWnk=)
2: rs3gWt450Dc5VAdX-LPh4FxzPfI.roa (hash: yHX556DQVgZDjr2xTPApsPlrmF99zYD+miBAgNn4a5c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/a97dc0-5685-4f6e-987f-2a5a6e2d7948/1/1-geuOnkY-TLqJMwVa0tum6VYG_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/a97dc0-5685-4f6e-987f-2a5a6e2d7948/1/1-geuOnkY-TLqJMwVa0tum6VYG_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-geuOnkY-TLqJMwVa0tum6VYG_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:e7:b2:79:07:d7:d9:4c:28:49:1d:70:3c:45:92:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa07ae3a7918f932ea24cc156b4b6e9ba5581bfa
Validity
Not Before: Apr 27 11:00:17 2025 GMT
Not After : Apr 28 11:00:17 2025 GMT
Subject: CN=eb34777782dad020667157a286a195466711bf98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5f:4f:41:f9:79:1b:78:66:30:5f:e6:d8:7e:
f0:2f:09:db:f5:3a:7a:7a:5d:62:ce:40:ec:ff:2e:
11:e9:11:af:fe:e1:67:9a:3b:84:42:e2:29:1c:b4:
2e:43:9a:ad:1f:55:18:d7:9d:99:94:63:ca:1a:ce:
da:00:7f:1d:dc:6a:0d:61:77:6a:d8:0b:f9:80:24:
92:77:56:bf:0b:36:aa:ac:3f:ac:89:63:f2:9a:f1:
6c:ac:74:8f:f3:a5:99:ac:4a:76:ab:0f:92:0c:c5:
91:61:0a:e8:ea:ae:0f:3d:eb:2a:54:8b:6a:8a:08:
a0:41:d9:63:b3:f3:2a:b7:62:88:e6:74:74:c8:a7:
b3:96:68:30:63:29:a1:63:4e:24:c7:4f:83:c5:54:
eb:e5:f4:72:2c:b0:ac:7e:46:5a:d0:65:2b:b8:1f:
c6:6d:fc:e6:2d:88:04:84:93:5e:6c:46:9d:1c:a0:
ba:70:7e:51:d9:eb:53:66:91:a7:3c:5b:ba:89:cb:
8a:b5:6c:8d:84:bb:82:c3:a4:00:a7:f9:ec:b4:b1:
e5:72:79:4a:ed:98:46:a1:6f:5c:75:6c:2e:d3:e1:
99:d4:20:19:39:bc:ae:70:d3:b9:2c:9d:9b:ee:ab:
b9:af:92:bf:8b:ad:17:d4:6f:f5:0f:0a:78:ed:ae:
fd:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:34:77:77:82:DA:D0:20:66:71:57:A2:86:A1:95:46:67:11:BF:98
X509v3 Authority Key Identifier:
keyid:FA:07:AE:3A:79:18:F9:32:EA:24:CC:15:6B:4B:6E:9B:A5:58:1B:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-geuOnkY-TLqJMwVa0tum6VYG_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a97dc0-5685-4f6e-987f-2a5a6e2d7948/1/1-geuOnkY-TLqJMwVa0tum6VYG_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a97dc0-5685-4f6e-987f-2a5a6e2d7948/1/1-geuOnkY-TLqJMwVa0tum6VYG_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:32:96:8a:c5:9b:fd:d7:5f:23:91:7b:85:27:84:26:0a:cb:
86:7e:1c:0e:66:cb:d6:11:2d:95:cb:8e:2b:dd:80:9e:2d:99:
5e:f3:1f:f0:79:e5:67:a8:6d:ea:93:c1:6e:f6:2a:87:1d:05:
ee:fb:9a:b4:f7:02:f0:10:44:c4:d5:b5:dd:de:bd:ef:0f:36:
a5:ff:dc:d1:96:28:f4:a3:1e:d0:a3:f0:4f:59:94:e6:a1:e0:
fc:2a:df:3b:52:7f:b5:ea:72:74:28:f0:39:de:48:8e:4b:61:
af:3a:4d:03:fa:99:1b:19:b0:3b:9a:74:72:31:9d:26:e6:9c:
1d:9b:39:48:77:37:b4:99:d8:9c:e1:fa:36:19:cc:db:15:25:
b2:4c:b1:a2:18:ce:4c:04:db:6e:ec:fb:9a:38:ba:bf:6b:92:
5e:67:54:09:65:68:03:ec:1a:cd:7e:c9:58:af:79:62:37:f4:
27:cd:52:91:59:b2:2d:10:a4:8a:50:b6:7a:64:21:be:8c:bd:
92:df:4a:61:c6:cb:09:1c:63:0f:af:e9:e3:d1:1c:18:68:ee:
89:ce:de:03:63:91:70:c7:89:5a:68:8a:6d:47:25:75:f2:fd:
7e:a7:9e:ed:c9:39:71:3b:5e:14:a6:0d:7e:59:ba:e7:66:7f:
44:e2:d1:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 17:54:25 2025 by rpki-client