Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/40b2a9-b2c7-4223-8848-0d2e4205686f/1/67Ulb-PgcwKrcye3R7jfOCRcTt8.mft
File: 67Ulb-PgcwKrcye3R7jfOCRcTt8.mft (raw, json)
Hash identifier: qmyOeCaMXzhsj4IMtK93NCBhm88sAosGq+p2LUMMIxU=
Subject key identifier: 19:45:68:C8:09:39:BB:8D:9B:AF:8D:47:80:FA:BF:89:9D:C7:39:5B
Authority key identifier: EB:B5:25:6F:E3:E0:73:02:AB:73:27:B7:47:B8:DF:38:24:5C:4E:DF
Certificate issuer: /CN=ebb5256fe3e07302ab7327b747b8df38245c4edf
Certificate serial: 019676B12559AE33DB10A568A2C60677B82D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/67Ulb-PgcwKrcye3R7jfOCRcTt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/40b2a9-b2c7-4223-8848-0d2e4205686f/1/67Ulb-PgcwKrcye3R7jfOCRcTt8.mft
Manifest number: 33
Signing time: Sun 27 Apr 2025 10:00:42 +0000
Manifest this update: Sun 27 Apr 2025 10:00:42 +0000
Manifest next update: Mon 28 Apr 2025 10:00:42 +0000
Files and hashes: 1: 67Ulb-PgcwKrcye3R7jfOCRcTt8.crl (hash: Drp2wr+kh6Y7/CnY4GEOiUPQYy2NjyLVqZiItakVftM=)
2: R2qc8xIB7ETeFtMUELFMOTQfjZ4.roa (hash: BfeJlxl1OQPY3ScyZzCp1zSxOdUPgq5TTtPThWNATH0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/40b2a9-b2c7-4223-8848-0d2e4205686f/1/67Ulb-PgcwKrcye3R7jfOCRcTt8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/40b2a9-b2c7-4223-8848-0d2e4205686f/1/67Ulb-PgcwKrcye3R7jfOCRcTt8.mft
rsync://rpki.ripe.net/repository/DEFAULT/67Ulb-PgcwKrcye3R7jfOCRcTt8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:b1:25:59:ae:33:db:10:a5:68:a2:c6:06:77:b8:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebb5256fe3e07302ab7327b747b8df38245c4edf
Validity
Not Before: Apr 27 10:00:42 2025 GMT
Not After : Apr 28 10:00:42 2025 GMT
Subject: CN=194568c80939bb8d9baf8d4780fabf899dc7395b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c0:a9:81:24:20:51:b7:ca:3a:e0:48:91:c2:
53:77:71:14:0c:d4:25:ce:65:dc:32:14:1f:e7:12:
59:4d:9a:04:f8:95:bf:d3:c6:c2:3d:38:92:50:45:
d7:3c:19:c9:40:30:e1:39:12:3e:6e:d6:ad:3f:ab:
3a:35:72:69:ad:98:01:ae:c1:bd:44:f3:49:33:ef:
ba:6b:6e:59:a1:28:b9:61:f4:06:a3:c5:41:cc:b2:
11:43:b3:2b:e4:eb:b6:58:bf:39:f9:5f:22:3c:a7:
03:78:88:77:2b:c1:3e:9a:b1:67:3b:8d:cb:69:d9:
d3:88:60:74:91:f1:d0:0b:02:f7:31:11:91:e1:33:
24:b4:3e:a3:70:ad:aa:d0:f7:6d:e9:5d:e9:d4:c9:
60:ab:3c:03:da:9a:de:42:6a:41:68:af:56:8a:fd:
03:48:b2:90:56:9b:41:0a:a6:54:51:e2:ca:59:7e:
94:ef:33:fe:d4:b9:23:5a:ea:c0:df:18:fd:da:1f:
7e:f2:35:00:48:17:7d:ad:d2:c3:c7:c8:e4:f5:4c:
d8:b2:22:7c:8b:85:75:ce:56:93:e2:8b:02:84:9c:
95:94:fc:c0:1d:40:99:8e:08:8f:9d:ab:3a:5d:62:
2c:87:3c:52:ec:e4:0c:0e:8b:b6:d0:d0:b3:4f:b1:
30:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:45:68:C8:09:39:BB:8D:9B:AF:8D:47:80:FA:BF:89:9D:C7:39:5B
X509v3 Authority Key Identifier:
keyid:EB:B5:25:6F:E3:E0:73:02:AB:73:27:B7:47:B8:DF:38:24:5C:4E:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/67Ulb-PgcwKrcye3R7jfOCRcTt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/40b2a9-b2c7-4223-8848-0d2e4205686f/1/67Ulb-PgcwKrcye3R7jfOCRcTt8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/40b2a9-b2c7-4223-8848-0d2e4205686f/1/67Ulb-PgcwKrcye3R7jfOCRcTt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:d4:54:e8:f4:6d:be:16:a9:a7:ee:de:59:0b:81:bc:e2:dd:
84:ef:87:27:f2:4e:f9:84:43:9b:55:24:c2:2a:ed:3a:42:87:
f5:5a:09:5e:41:c3:28:52:83:a0:9a:ff:1f:8f:01:71:aa:2d:
32:6e:cc:ab:34:2e:a7:ad:38:89:ef:45:24:bc:7d:10:b9:64:
66:75:93:d3:d0:4c:2c:f9:7a:8d:20:1e:bc:98:e5:0c:10:27:
b2:1e:9d:c8:fc:8b:e9:99:e8:6b:9a:83:60:a4:e5:b7:e3:c1:
a9:92:88:a9:0d:3b:46:b0:04:19:9f:0e:73:0e:3e:36:6e:95:
49:e3:09:46:7f:7e:5d:11:73:65:44:de:d9:f9:83:8e:84:cb:
36:98:11:fa:7c:28:b0:92:d7:65:90:5c:e7:55:0d:4e:75:07:
a1:c8:3c:e3:73:4e:20:cb:81:00:55:65:2b:9f:9a:51:41:a8:
1d:63:1f:c9:d1:ec:2f:0a:7a:29:3c:34:c4:57:03:ee:69:36:
cb:3b:bd:7f:ca:da:b4:39:85:1f:68:bd:d4:65:dc:a8:7c:ef:
21:33:e8:4e:24:ad:f3:3d:c5:8e:97:9e:45:1e:0f:2b:49:04:
9f:72:d4:ab:ac:33:b7:04:02:7c:43:59:28:ec:63:db:41:ab:
bb:02:b0:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:58:10 2025 by rpki-client