Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
File: czQP17PChWN63ADx5h4rjkAmWPM.mft (raw, json)
Hash identifier: HP9uFjdal3ZdJ5DOGDrq2AXXAoD65KVbR/jRHxpCNBY=
Subject key identifier: 5D:32:46:19:27:38:A3:35:BE:18:14:86:B8:25:3B:C3:39:06:2E:EB
Authority key identifier: 73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
Certificate issuer: /CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Certificate serial: 019679E99DDEF95A10EA734AB35AD0012FF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
Manifest number: 108F
Signing time: Mon 28 Apr 2025 01:01:15 +0000
Manifest this update: Mon 28 Apr 2025 01:01:15 +0000
Manifest next update: Tue 29 Apr 2025 01:01:15 +0000
Files and hashes: 1: HjTMoAYNnig_SLdG7cjgafMO6sM.roa (hash: vtEs32Udg21ECRrqFxXkvtH2fOMUI8ZhlpPEmcfn7YU=)
2: czQP17PChWN63ADx5h4rjkAmWPM.crl (hash: 3gEEYhinhCXngoorjnO5vLaYqSpboaewY85xxzqzyzI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:e9:9d:de:f9:5a:10:ea:73:4a:b3:5a:d0:01:2f:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73340fd7b3c285637adc00f1e61e2b8e402658f3
Validity
Not Before: Apr 28 01:01:15 2025 GMT
Not After : Apr 29 01:01:15 2025 GMT
Subject: CN=5d3246192738a335be181486b8253bc339062eeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b2:8b:2f:77:d3:7f:61:e9:81:1a:43:38:e7:
94:4b:ca:15:da:5f:12:39:31:42:ec:17:84:8e:b7:
85:5d:c1:31:05:86:83:4f:a6:9b:c8:ae:93:df:4d:
c6:03:86:f6:08:56:25:93:5b:cc:b3:f5:8e:40:68:
3d:dc:f6:2c:79:7c:b8:1f:a0:2c:e6:56:b9:f5:7f:
ef:d7:4a:8a:b9:42:a4:9a:2d:88:0d:0f:c0:93:64:
45:ae:3f:7c:51:39:05:13:dc:36:cb:02:84:81:6f:
d1:da:4e:c5:00:f3:5f:39:bc:52:9e:5a:c1:b0:42:
7f:86:f6:65:38:e8:0a:a8:f3:fd:23:c1:22:da:26:
4b:7a:19:bd:74:8e:bd:25:57:23:9e:21:f5:84:df:
7f:bb:8c:a4:20:63:5e:a5:6d:28:3d:03:23:b0:8b:
2b:28:4d:fb:cc:1a:d3:c6:0e:8a:10:3c:80:28:da:
b0:04:63:9f:23:da:a3:00:89:24:65:09:d6:63:c7:
f2:73:44:37:76:57:c4:44:db:8a:88:00:de:1c:23:
e9:ae:59:bd:ba:80:5f:cc:c7:ae:17:d5:52:c5:f0:
96:a2:26:68:6a:77:bb:dc:81:73:8c:fa:7c:24:7d:
ec:42:eb:0b:b6:8e:8b:00:ba:3e:13:a5:4b:79:8b:
c6:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:32:46:19:27:38:A3:35:BE:18:14:86:B8:25:3B:C3:39:06:2E:EB
X509v3 Authority Key Identifier:
keyid:73:34:0F:D7:B3:C2:85:63:7A:DC:00:F1:E6:1E:2B:8E:40:26:58:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czQP17PChWN63ADx5h4rjkAmWPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/0b4dba-0747-4e0f-8036-f2223606c538/1/czQP17PChWN63ADx5h4rjkAmWPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:7a:a1:fb:e9:74:84:90:2e:5f:46:2e:b4:bb:48:4d:74:1a:
9c:7d:c1:30:06:ae:b1:c7:73:e4:65:8e:5b:19:ec:19:82:0d:
f6:72:8d:6e:8b:f5:49:8d:29:db:66:0b:be:7a:ab:c3:6c:2e:
df:ae:6e:0c:27:d1:96:0c:f5:c8:c6:e1:a7:75:22:2d:3b:35:
b2:67:13:a2:de:b3:09:a4:fa:ab:07:b2:11:c1:c6:d3:a1:27:
a6:ec:79:fb:b7:7c:10:77:51:4f:1c:f9:f3:ef:5f:75:df:61:
14:7c:c7:3c:04:ee:38:1d:7e:4d:09:34:e2:e5:0a:41:71:36:
b4:9f:c4:7c:ea:dc:e3:12:f9:72:39:c1:d0:e8:5e:01:11:73:
92:62:dc:f9:0c:7a:df:05:11:4a:74:00:17:00:35:c4:75:a5:
e2:b6:22:f3:fe:89:84:53:52:bf:16:5e:d8:34:54:28:3f:ab:
31:18:4e:d4:ad:b6:8f:bd:57:e0:2a:31:f1:3f:a1:c8:f2:3a:
20:c6:1c:72:c4:e6:71:2f:f0:8d:94:97:93:78:83:3e:a6:06:
60:9f:99:b4:53:e0:fe:28:0c:f2:f2:16:56:a2:01:a5:a4:90:
71:9a:be:a2:db:f9:2e:b5:91:84:72:87:9b:4a:be:9d:6c:32:
76:f1:41:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 06:07:20 2025 by rpki-client