Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
File: SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft (raw, json)
Hash identifier: s17VsL28U2w4GkdVwOtjxRH2KdhF+GR7s6F58pK+UNM=
Subject key identifier: AA:0B:47:63:B6:62:92:D7:A4:FC:5E:AF:BD:D3:05:44:42:43:AF:3D
Authority key identifier: 49:F8:06:97:FE:2E:2D:97:B5:91:AD:5B:91:58:05:55:A4:4D:03:88
Certificate issuer: /CN=49f80697fe2e2d97b591ad5b91580555a44d0388
Certificate serial: 019679E98A5EDD1EA3AE3852FD3592400E8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
Manifest number: 14F3
Signing time: Mon 28 Apr 2025 01:01:10 +0000
Manifest this update: Mon 28 Apr 2025 01:01:10 +0000
Manifest next update: Tue 29 Apr 2025 01:01:10 +0000
Files and hashes: 1: SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl (hash: +wybKmNQNoD5OEB9pa1qCNGLjQz7DdY5waxUJJKWFkI=)
2: WSqfYF0o_2MY8iXoAQ6LcMj2LjQ.roa (hash: nuyZOzY7bMRC2v/YnYG+WMrpV9UWVB2dFhkYTUc112E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:e9:8a:5e:dd:1e:a3:ae:38:52:fd:35:92:40:0e:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49f80697fe2e2d97b591ad5b91580555a44d0388
Validity
Not Before: Apr 28 01:01:10 2025 GMT
Not After : Apr 29 01:01:10 2025 GMT
Subject: CN=aa0b4763b66292d7a4fc5eafbdd305444243af3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f2:02:0f:cb:dd:06:3d:34:35:28:15:f6:39:
3b:cf:02:63:bb:3a:68:52:e0:cd:89:3c:d9:3c:57:
ea:90:6c:3c:f5:8e:b5:e4:dc:1e:c9:46:a8:e5:ee:
66:57:8b:79:6e:bc:16:2d:60:b1:a3:d0:0b:78:18:
44:53:7d:c9:bc:b4:d3:13:0f:9a:c0:fc:21:ec:0f:
35:81:00:b8:04:ae:ff:2c:30:5d:ea:6f:17:d2:7e:
47:05:b8:61:eb:2d:05:74:20:be:10:67:a5:da:b4:
a1:43:dc:f2:bd:28:a3:c3:3f:61:a2:7d:1b:e0:29:
61:f9:54:8b:e8:d7:40:a9:3b:42:25:c7:a4:2d:46:
30:f7:ae:41:47:69:1f:e1:d6:34:f8:95:95:0e:8b:
3e:6d:c1:5e:97:91:9e:c7:ed:49:35:93:b7:eb:72:
f6:b9:3d:2c:fa:8c:d5:bc:cd:06:df:ae:b2:18:f8:
d0:6e:3e:e4:08:8a:f2:8a:a6:9c:df:af:fd:f7:b7:
0f:db:da:fc:8a:70:ec:67:b0:ce:81:b6:1d:bc:c5:
32:33:1e:7b:70:87:54:51:f4:41:cc:c7:64:1f:55:
fc:b4:6e:83:d5:ba:82:09:9a:d4:58:dd:e9:d3:25:
f8:21:92:ea:a1:91:5c:10:e0:1f:26:b0:ca:50:7f:
71:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:0B:47:63:B6:62:92:D7:A4:FC:5E:AF:BD:D3:05:44:42:43:AF:3D
X509v3 Authority Key Identifier:
keyid:49:F8:06:97:FE:2E:2D:97:B5:91:AD:5B:91:58:05:55:A4:4D:03:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:43:f8:9e:c1:a5:64:99:f4:d7:05:26:b1:50:34:3b:f9:20:
02:eb:48:38:9c:25:4b:cd:83:9e:8b:9f:51:8e:9a:70:5c:3c:
1f:02:0f:4c:f1:4c:48:8a:f0:e7:a2:f3:35:6a:fd:32:bb:69:
d0:4f:5c:92:c3:e6:57:f1:ec:08:0a:20:b4:0f:62:50:d5:67:
44:87:66:cf:12:28:5c:46:34:92:66:e7:b1:0b:08:49:fd:19:
86:fe:e4:cf:78:f1:78:56:91:1f:77:a7:09:04:8e:fd:c8:6d:
db:fe:c8:7d:46:c1:2b:70:ec:26:a0:bc:cb:be:7e:53:18:ad:
ff:10:d7:f9:f8:b8:0e:47:d1:7a:1a:6a:90:fa:ec:ce:15:44:
f2:9f:6a:5c:e0:e8:2a:b6:18:23:b5:38:66:b9:33:89:c9:c0:
3a:29:ef:80:17:b6:79:b3:b1:74:dd:31:ba:68:f1:4a:9a:d8:
75:a2:4f:ab:d7:82:43:76:1c:35:39:7c:80:e6:c7:c1:7f:5a:
cf:71:54:59:78:ce:24:a3:d4:1f:89:7c:8a:73:dc:cb:1e:a0:
80:32:5d:e2:43:72:4c:77:9e:6c:ef:16:e9:ac:cf:39:64:e6:
69:e7:ca:b0:82:ae:49:d4:f8:41:8a:b6:fb:66:d4:42:c4:d5:
89:47:4b:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 08:14:01 2025 by rpki-client