Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
File: 40Y8J4uE4t8ApHvC2AyNgP-puok.mft (raw, json)
Hash identifier: IpR1soa6Cxr2wMf0Sa06f+/+gXsTW2U5TWvXAjhaO2o=
Subject key identifier: E3:15:9C:6B:00:BA:D3:AE:B2:44:58:FB:22:21:42:05:BB:4D:46:1F
Authority key identifier: E3:46:3C:27:8B:84:E2:DF:00:A4:7B:C2:D8:0C:8D:80:FF:A9:BA:89
Certificate issuer: /CN=e3463c278b84e2df00a47bc2d80c8d80ffa9ba89
Certificate serial: 01967679D8ED958DE25C00E2EA7E2FC6DAAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/40Y8J4uE4t8ApHvC2AyNgP-puok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
Manifest number: 150E
Signing time: Sun 27 Apr 2025 09:00:18 +0000
Manifest this update: Sun 27 Apr 2025 09:00:18 +0000
Manifest next update: Mon 28 Apr 2025 09:00:18 +0000
Files and hashes: 1: 40Y8J4uE4t8ApHvC2AyNgP-puok.crl (hash: EJo0SDFokOdEWPdi+R9CheFkrgxwwy4ci5d5QzVS7W0=)
2: 4mphuMGYKre7KcVIZklqvnEwe9w.roa (hash: BDdrPj5npMilCe1H11h3z51bgzRRHnfwNgW8/PXQiwk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
rsync://rpki.ripe.net/repository/DEFAULT/40Y8J4uE4t8ApHvC2AyNgP-puok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:79:d8:ed:95:8d:e2:5c:00:e2:ea:7e:2f:c6:da:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3463c278b84e2df00a47bc2d80c8d80ffa9ba89
Validity
Not Before: Apr 27 09:00:18 2025 GMT
Not After : Apr 28 09:00:18 2025 GMT
Subject: CN=e3159c6b00bad3aeb24458fb22214205bb4d461f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:4d:d7:90:c4:98:88:d6:46:56:38:23:3d:9a:
3e:02:b8:41:00:02:32:23:35:71:f6:fd:68:96:80:
e5:44:cb:62:35:a9:9f:da:b0:be:a2:59:d5:61:90:
d9:c1:3b:fa:53:a8:25:ed:11:d6:0f:56:95:11:6e:
b3:62:38:5d:e8:eb:17:64:f9:39:ab:51:65:73:e6:
04:f4:3e:85:b6:1a:af:d3:d4:5d:f7:e2:93:a0:1b:
33:ee:c8:b9:03:25:40:5f:7d:04:e4:64:88:a3:f9:
85:c1:8c:9e:93:5a:97:f1:7d:15:8e:97:6c:db:35:
6c:07:8c:44:9b:9f:bf:f3:4c:e7:27:26:4e:6e:fb:
2d:81:69:04:68:c2:73:d4:52:e5:25:3b:5a:9a:84:
d5:e2:04:3b:77:f1:9c:02:7f:4f:cd:59:49:b2:c3:
5f:92:8d:68:2f:09:9c:e2:d2:cd:c5:3a:a3:73:0b:
1b:31:b1:7d:02:88:8b:4d:2e:58:81:de:de:8f:3a:
e9:a8:f1:59:4e:29:5d:70:5a:23:7e:3b:a4:5b:f0:
b6:46:4b:ff:2b:b4:13:fe:6b:2a:49:f7:97:ed:fb:
27:d4:92:6c:ea:7a:6f:b3:32:54:90:92:64:a1:0d:
fb:53:e4:50:d1:03:51:a5:4f:52:1d:54:c2:0d:5a:
e2:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:15:9C:6B:00:BA:D3:AE:B2:44:58:FB:22:21:42:05:BB:4D:46:1F
X509v3 Authority Key Identifier:
keyid:E3:46:3C:27:8B:84:E2:DF:00:A4:7B:C2:D8:0C:8D:80:FF:A9:BA:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/40Y8J4uE4t8ApHvC2AyNgP-puok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/97bace-b2d5-4052-8f61-5f2dfed5d1a4/1/40Y8J4uE4t8ApHvC2AyNgP-puok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:c2:b4:08:06:d4:7e:47:78:d9:f5:04:16:eb:91:c9:c5:92:
54:ee:c9:6a:b7:cb:09:4e:18:29:31:46:93:72:86:bc:31:6d:
1a:03:40:a5:f4:ac:b4:4b:5b:05:cc:da:63:81:df:2b:fb:d9:
59:c0:f3:17:c7:7c:82:c4:2c:8f:86:fd:3b:e8:f0:e9:ba:c5:
f2:fc:78:f6:9f:ca:c7:e2:d0:71:ae:55:c9:02:e6:4a:83:84:
73:69:c2:d5:05:b8:b0:4c:94:bd:34:90:1b:8c:38:6c:8f:05:
4e:a0:19:db:00:9e:83:7f:eb:75:b0:5b:89:06:fd:ff:c3:5a:
f5:c9:ee:ab:63:3e:16:b7:4f:f1:9a:44:f6:30:7c:d1:a9:c6:
c4:be:2a:60:64:a9:3a:58:78:8c:a4:e6:15:08:28:3e:ef:d9:
2c:0e:20:a5:5b:12:c8:7f:88:38:af:3c:3b:3d:3e:b4:0b:50:
a2:2a:e4:31:fc:28:d7:7a:ea:4a:6c:52:4d:a1:21:95:31:fb:
22:96:2c:cc:d6:c1:85:f7:18:6a:dc:bb:26:b2:ed:63:dd:1d:
37:ca:fa:c6:6c:20:55:23:3f:e7:58:95:b3:c4:fa:07:c6:39:
38:eb:5a:0f:d8:ce:ad:8d:77:90:3b:a7:d9:7d:a5:82:40:a9:
15:7d:3a:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:28:12 2025 by rpki-client