Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
File: tU3fbwMzHNdzx-ersVQpuo0gvXg.mft (raw, json)
Hash identifier: HlXowdqTyxa6t4xsYBNY69PCe0HdT9CVlUNRGNVhNwo=
Subject key identifier: 2B:B3:DA:8A:47:35:8F:88:8A:3E:B9:9D:27:B7:2D:34:34:41:BE:4E
Authority key identifier: B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
Certificate issuer: /CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Certificate serial: 0196760C1698F96FDE675D69E9C051275FDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
Manifest number: 0652
Signing time: Sun 27 Apr 2025 07:00:25 +0000
Manifest this update: Sun 27 Apr 2025 07:00:25 +0000
Manifest next update: Mon 28 Apr 2025 07:00:25 +0000
Files and hashes: 1: 1SqAG3Japdqs2uBvGFHguJLvhqE.roa (hash: tRLIPOPh9GLi7wL54w2K0S63l5p5YYde2YPqeJx3wD8=)
2: tU3fbwMzHNdzx-ersVQpuo0gvXg.crl (hash: +04cR7+abNW6yjsPSBddKSPydUFxHTBPwg2hA2I4wpo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:16:98:f9:6f:de:67:5d:69:e9:c0:51:27:5f:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b54ddf6f03331cd773c7e7abb15429ba8d20bd78
Validity
Not Before: Apr 27 07:00:25 2025 GMT
Not After : Apr 28 07:00:25 2025 GMT
Subject: CN=2bb3da8a47358f888a3eb99d27b72d343441be4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6c:19:66:42:c4:65:6b:20:2d:0b:59:17:36:
c4:d4:57:c0:1d:89:70:42:c5:1b:55:1f:3d:41:d6:
0c:a4:40:4a:1d:6c:65:44:ad:a8:84:06:a6:71:0a:
3d:ad:a5:38:32:30:29:26:7a:54:19:a4:be:71:2c:
1f:ed:94:fc:d6:49:a9:b2:5f:92:f0:b4:d6:52:f5:
3a:42:09:98:11:31:93:50:99:6a:bf:95:30:e2:e8:
e7:53:a8:c4:81:b2:d7:4b:6d:62:51:2c:9e:d1:ee:
d9:19:4f:41:7a:4c:6c:b8:b1:16:f5:b2:94:47:3c:
09:af:b5:78:8e:f3:d4:4b:3b:79:1f:d5:fb:9a:50:
15:62:09:e3:de:3c:c9:97:2b:e1:9a:ff:22:34:d0:
f5:db:33:ee:26:03:67:97:7b:48:e0:1c:d4:ea:f0:
99:a6:8c:d6:6b:07:21:23:d0:39:4e:3b:5d:0e:3e:
c0:19:22:72:77:ee:56:4c:51:51:de:6b:b6:84:96:
e0:e2:e3:f3:c7:06:64:83:7a:67:9c:24:9c:50:1c:
67:0d:d6:cb:ba:a6:0e:b6:fa:f2:fd:fd:14:59:7a:
ef:fd:6d:d3:df:f8:a2:7e:6e:70:e6:d4:c2:c9:0a:
89:c5:88:2f:1b:86:3d:4f:fa:0b:60:ed:93:4e:7b:
30:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:B3:DA:8A:47:35:8F:88:8A:3E:B9:9D:27:B7:2D:34:34:41:BE:4E
X509v3 Authority Key Identifier:
keyid:B5:4D:DF:6F:03:33:1C:D7:73:C7:E7:AB:B1:54:29:BA:8D:20:BD:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tU3fbwMzHNdzx-ersVQpuo0gvXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/65bcff-ba01-498c-b54d-84026bc852f0/1/tU3fbwMzHNdzx-ersVQpuo0gvXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:2d:62:88:dd:6b:c9:cd:e7:2a:e8:cf:bc:e5:37:df:9b:83:
b8:68:81:5f:42:50:24:57:14:af:9b:1e:d0:2f:40:ab:2d:c3:
34:22:e6:eb:11:14:24:31:36:0c:fc:2d:0f:b8:14:13:47:8b:
e9:18:13:58:fd:b7:0d:9e:4e:41:18:63:22:2e:b4:0c:d3:15:
09:72:cf:c2:6b:d6:47:13:ab:41:d8:1c:08:a7:c3:0f:24:c5:
fc:fd:e0:00:0b:03:3e:7b:58:4d:9a:88:bc:6a:e5:19:91:b8:
a6:6d:a0:1f:83:c7:08:2b:da:b1:87:fb:5f:c7:c8:b0:1a:ed:
06:c7:e5:e7:70:ea:65:8d:78:8f:85:0c:53:5b:56:2c:f8:6a:
fd:4c:7f:40:7c:57:1d:93:61:05:56:f7:ac:5f:db:66:3e:6c:
1a:89:85:a3:bd:45:fa:d1:d8:5f:4e:24:80:5b:0f:60:68:4f:
97:84:c9:98:4d:75:77:6b:b1:43:fe:37:86:f1:e2:b2:e5:6e:
df:32:d0:ed:76:54:a2:0d:b7:16:10:64:c0:4c:8a:fb:68:22:
68:8d:da:47:c6:08:9e:1f:5f:ac:42:b3:bf:e5:31:7c:0b:2c:
96:cb:e6:a1:de:a2:7a:c3:46:32:c8:6c:cf:de:1e:e2:30:8c:
02:a9:e9:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:55:45 2025 by rpki-client