Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
File: h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft (raw, json)
Hash identifier: Xa+33o5ul6+tposUKX13fUFNTOMTt5mgdPTM6WErvSo=
Subject key identifier: 3B:EE:A3:76:31:27:BB:9B:0B:21:D1:C0:1A:DA:54:A9:A7:99:51:1B
Authority key identifier: 87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
Certificate issuer: /CN=877aad307ad330ebb8cf44ec21389a170436fd53
Certificate serial: 0196797B3A3445D8C0E7B9AA08EA85391AD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
Manifest number: 1513
Signing time: Sun 27 Apr 2025 23:00:40 +0000
Manifest this update: Sun 27 Apr 2025 23:00:40 +0000
Manifest next update: Mon 28 Apr 2025 23:00:40 +0000
Files and hashes: 1: Dk5BhXJ_gIsgQ0utb4gvZ39LMIc.roa (hash: 9IdU4NLUHr5S9QPXNXQfwW6+YPaEhUYFtSNkpxSH/2Q=)
2: h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl (hash: Ag8qlxiDizXpxts1zUOtznT95dp5vpsviSeqrVXMlZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:7b:3a:34:45:d8:c0:e7:b9:aa:08:ea:85:39:1a:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=877aad307ad330ebb8cf44ec21389a170436fd53
Validity
Not Before: Apr 27 23:00:40 2025 GMT
Not After : Apr 28 23:00:40 2025 GMT
Subject: CN=3beea3763127bb9b0b21d1c01ada54a9a799511b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e1:4b:21:3d:a2:ca:e7:fc:1f:bb:f7:a8:f8:
78:1f:40:36:38:f8:7c:22:c4:17:6a:ea:3a:6e:92:
17:51:7d:fa:a6:14:8b:63:c0:7a:79:3e:25:12:5f:
bd:c4:bf:74:ef:6c:27:7e:2b:ab:bb:37:0c:fa:a2:
21:3c:c9:18:8d:c4:cb:c3:e6:30:e6:f5:d4:a9:7c:
e8:8a:1b:5c:c3:e0:5b:e0:f7:59:54:7f:44:26:6f:
18:96:7e:14:54:8c:c6:88:bc:c8:4c:65:7a:94:e3:
58:e7:cb:2b:65:3a:ed:b4:95:7b:34:21:69:86:90:
c3:aa:df:ec:23:55:a2:f1:cc:f0:ba:6e:0b:4c:c5:
ca:99:82:e5:10:bb:0f:a7:af:d7:78:93:fa:5e:55:
eb:23:f0:97:5e:c9:6b:fd:4f:7e:3f:24:fd:31:80:
cc:67:7f:a0:80:9f:d9:e2:af:0d:ac:4a:6c:55:81:
c2:5f:cd:45:35:64:60:5a:58:58:f7:fe:f0:1f:2d:
12:3b:44:ff:85:84:da:97:1a:f0:dd:0e:c6:39:f2:
29:42:30:da:33:8a:51:63:ba:48:75:9f:c5:2a:50:
a8:28:64:02:0e:36:9b:ea:a9:9d:92:d6:80:7b:32:
e9:ad:92:24:ad:09:13:d0:01:a0:cf:77:0f:53:93:
0f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:EE:A3:76:31:27:BB:9B:0B:21:D1:C0:1A:DA:54:A9:A7:99:51:1B
X509v3 Authority Key Identifier:
keyid:87:7A:AD:30:7A:D3:30:EB:B8:CF:44:EC:21:38:9A:17:04:36:FD:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3qtMHrTMOu4z0TsITiaFwQ2_VM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9ae221-c101-497f-91fe-508099c133bb/1/h3qtMHrTMOu4z0TsITiaFwQ2_VM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:0a:a5:3d:f4:60:71:99:49:c8:11:09:28:6f:5f:11:2b:66:
6d:ce:e8:8a:d4:37:9f:4e:42:e2:5d:0f:8d:db:0d:89:79:f1:
f6:28:ab:dd:5f:67:1b:f4:ee:c2:ae:06:0d:cc:b3:f5:64:89:
67:0b:36:c0:43:78:b5:61:dd:1f:81:9a:c6:9d:87:6f:1d:8f:
60:2b:c7:e6:6b:56:9a:66:35:ae:7f:53:10:ed:02:2f:ff:1a:
33:7c:79:8c:b5:e1:d1:5a:9e:91:85:1d:8d:4a:86:89:4c:3b:
57:6c:f3:03:f5:52:6f:70:25:82:7f:e0:65:88:d2:5a:f7:9e:
17:1b:9f:d5:d1:05:a5:d4:a5:2d:6e:9f:9a:47:b1:8e:8b:7d:
74:c3:90:8e:1d:3b:ae:40:73:f7:b8:6d:b6:d3:a8:0c:ec:25:
ca:02:d0:08:a8:1c:8c:5e:50:25:56:c3:5a:74:d1:90:c8:a2:
a2:5f:f4:d5:dc:76:26:dd:67:70:b0:7a:7a:16:a9:8e:db:21:
1a:29:68:76:5a:de:ad:ed:7a:d2:76:df:5d:ca:80:1b:6a:62:
bf:10:53:05:3d:9d:29:0e:af:11:c3:96:5d:f2:e6:9e:8d:38:
41:49:91:f6:51:3e:e6:f3:65:ab:dd:19:b1:7c:27:9e:89:cc:
73:d0:7c:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 07:35:10 2025 by rpki-client