Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
File: _caA7hsnw6bwcBPI_CXr_wxn-50.mft (raw, json)
Hash identifier: +NJXcaAMdOisw86s9LBYpLkbiU8PhFfIKtjqyrBruYA=
Subject key identifier: 55:0D:E7:46:B3:49:62:2F:C6:D5:44:31:86:D7:2E:D4:B5:E0:B6:FB
Authority key identifier: FD:C6:80:EE:1B:27:C3:A6:F0:70:13:C8:FC:25:EB:FF:0C:67:FB:9D
Certificate issuer: /CN=fdc680ee1b27c3a6f07013c8fc25ebff0c67fb9d
Certificate serial: 01967C7C486DF402630170BE8194002EAAC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_caA7hsnw6bwcBPI_CXr_wxn-50.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
Manifest number: 0BF3
Signing time: Mon 28 Apr 2025 13:00:41 +0000
Manifest this update: Mon 28 Apr 2025 13:00:41 +0000
Manifest next update: Tue 29 Apr 2025 13:00:41 +0000
Files and hashes: 1: H5zExKsN_X1SPJQSwEakZzqeC2I.roa (hash: FjXiEi3V3MLLSMvrOdppNODHARmQ2b/yPySFztutI1Q=)
2: _caA7hsnw6bwcBPI_CXr_wxn-50.crl (hash: zvaeWWYuxNYybBBFYHZJrtkE8om9Wc/0HYhD6qhuQpU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
rsync://rpki.ripe.net/repository/DEFAULT/_caA7hsnw6bwcBPI_CXr_wxn-50.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 13:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:7c:48:6d:f4:02:63:01:70:be:81:94:00:2e:aa:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdc680ee1b27c3a6f07013c8fc25ebff0c67fb9d
Validity
Not Before: Apr 28 13:00:41 2025 GMT
Not After : Apr 29 13:00:41 2025 GMT
Subject: CN=550de746b349622fc6d5443186d72ed4b5e0b6fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c0:e8:3d:61:fc:a1:1f:2c:7c:3c:e4:b7:bc:
a1:46:93:fd:74:41:15:aa:c3:e3:9b:09:4f:cb:c5:
f8:74:1a:40:1f:95:9c:ed:24:76:e2:bd:ae:9a:ce:
0c:bb:48:28:28:43:45:a5:0f:8c:4c:40:92:e5:4f:
fb:fe:6b:b8:10:b3:37:44:da:fd:a2:8c:d2:a7:20:
1f:85:ab:0e:18:58:df:26:a2:a4:c8:0e:4d:25:0e:
3a:0c:4b:98:80:46:51:29:44:ba:a2:18:49:28:71:
72:df:7a:82:9e:db:95:3b:f8:78:3a:a0:7a:5b:48:
fe:b3:f1:7b:aa:37:20:3e:68:12:81:e4:c2:0c:b0:
b6:76:42:3f:ef:f0:f8:6b:16:62:86:da:6d:a4:fb:
84:f4:e5:05:fe:11:9d:13:63:91:2f:bf:93:72:56:
9f:48:a1:82:9b:0f:32:89:df:c3:60:22:7c:6f:4a:
dd:4e:c0:0f:93:ef:1c:bf:08:4d:92:ea:0b:ed:d8:
b6:b6:39:d2:ed:d2:2d:16:e2:9b:e0:93:7c:75:97:
5c:97:b3:8d:d7:0a:24:bf:4a:a9:2a:bc:3f:f4:a3:
78:43:54:7e:41:7e:bb:fb:d1:28:d1:4a:3b:c6:ec:
52:c9:17:93:b0:f3:f6:5f:40:84:ff:f9:72:5c:3d:
06:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:0D:E7:46:B3:49:62:2F:C6:D5:44:31:86:D7:2E:D4:B5:E0:B6:FB
X509v3 Authority Key Identifier:
keyid:FD:C6:80:EE:1B:27:C3:A6:F0:70:13:C8:FC:25:EB:FF:0C:67:FB:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_caA7hsnw6bwcBPI_CXr_wxn-50.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a12e1c-1b10-4938-96d3-7bed26743bcc/1/_caA7hsnw6bwcBPI_CXr_wxn-50.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:aa:6c:35:20:bb:ad:dc:0c:e1:b9:fd:01:d0:6a:23:9a:3b:
47:cb:5c:9d:cd:62:e3:23:db:57:79:ee:2e:23:8c:d8:72:73:
1f:99:ac:d0:2e:f8:f8:fa:0f:3d:a2:10:8b:c7:b7:cd:31:5e:
42:6e:21:24:9d:96:a0:28:e4:dd:ac:1c:c2:40:e1:7c:38:d6:
35:a6:c6:97:cd:58:5f:19:78:b6:f8:53:37:f2:b8:bc:d0:ad:
90:ea:4a:fe:ad:3d:a0:72:98:9c:07:5a:3e:e5:a9:84:1d:14:
4b:c2:44:ea:c3:3f:fd:ed:21:ab:47:03:46:ee:b7:cb:93:65:
ae:f2:36:48:be:38:8b:75:2b:3d:07:66:6c:60:9b:4a:90:15:
49:ea:b5:a1:0d:d7:95:8f:95:aa:64:21:3d:66:15:a6:9c:68:
52:77:6a:69:51:e4:9d:98:10:03:1e:bd:28:73:81:51:f0:92:
f9:27:bb:22:94:66:f5:d7:c4:9a:2b:06:27:ad:a1:56:b0:43:
34:60:e7:79:58:cf:61:0c:ad:0d:9e:9f:dd:60:ec:44:b8:55:
63:d2:21:69:09:4d:37:62:8f:b1:85:38:ec:66:5f:9f:e4:f9:
b4:f1:1f:12:5a:ce:6e:c7:4b:74:44:bb:0c:81:36:a1:f3:21:
9d:85:13:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:50:44 2025 by rpki-client