Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
File: siDZG06dcPA0-hahaoh9QlV5Kt4.mft (raw, json)
Hash identifier: kzbknfa68wXpBOk2K+zpeWMHQW3NK0hprn10pH+bC4A=
Subject key identifier: 7A:F9:8E:99:22:B2:31:D8:B6:36:4C:27:A1:FD:F4:03:75:C8:5B:57
Authority key identifier: B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
Certificate issuer: /CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Certificate serial: 01969604DE637B79A161694BF87E543DE0F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
Manifest number: 1520
Signing time: Sat 03 May 2025 12:00:23 +0000
Manifest this update: Sat 03 May 2025 12:00:23 +0000
Manifest next update: Sun 04 May 2025 12:00:23 +0000
Files and hashes: 1: mCm-KBIMQ6gtgsW9oEUxZqdGcRM.roa (hash: ItOlCehgUekOH/ud/IMp3e9dVCyKMOt54wV1YDUzoCg=)
2: siDZG06dcPA0-hahaoh9QlV5Kt4.crl (hash: AUh6Tyh5Tk3qyoheAyjJlfMNsWHK0O+N/u7IhY17NEM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 04 May 2025 10:06:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:96:04:de:63:7b:79:a1:61:69:4b:f8:7e:54:3d:e0:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Validity
Not Before: May 3 12:00:23 2025 GMT
Not After : May 4 12:00:23 2025 GMT
Subject: CN=7af98e9922b231d8b6364c27a1fdf40375c85b57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0a:23:c6:75:6e:88:8b:d4:72:e8:07:a4:9b:
60:59:a1:31:fd:99:d0:f4:e9:92:92:f3:75:78:4f:
f9:4f:a6:50:24:6c:e9:59:9d:e6:88:42:42:dc:43:
1b:3b:63:b7:1f:d8:fd:4f:33:dd:c8:81:e8:80:6f:
be:2d:aa:25:72:b4:9a:5a:5b:d1:48:6b:4c:f8:fd:
76:d9:ca:2e:2a:43:14:70:86:56:5c:d3:58:b5:da:
46:b1:5d:65:bc:bc:ae:c5:60:86:66:ef:2d:06:0f:
10:8d:e3:ce:72:cf:5f:ab:72:ec:cd:b4:38:c0:60:
c9:c4:c9:55:e1:2d:d4:6f:b7:a2:1d:85:8e:06:fc:
89:96:0f:45:8f:f1:47:02:e4:fc:3b:70:58:b6:89:
db:ca:fc:43:10:bc:9f:89:37:24:9d:44:3e:96:21:
45:bd:8a:3d:63:86:19:fc:ca:de:10:da:73:14:72:
eb:72:9b:3b:30:b5:af:cd:0f:08:2a:0b:cf:b5:1b:
16:9b:c4:e3:22:51:8e:9d:07:f8:19:c5:cc:5c:33:
2b:be:72:65:b8:fe:92:de:43:96:04:83:b3:44:fe:
1e:e0:3e:35:f7:4a:cb:aa:65:4b:9f:2d:0f:7c:c4:
48:50:66:68:f1:31:eb:85:4c:d1:9a:aa:f7:6d:5c:
85:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:F9:8E:99:22:B2:31:D8:B6:36:4C:27:A1:FD:F4:03:75:C8:5B:57
X509v3 Authority Key Identifier:
keyid:B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:45:9c:e5:f8:3a:74:21:0e:fb:1c:f6:fd:d1:c5:b1:c8:61:
d4:2e:a5:86:2b:55:4b:83:36:ea:26:ff:b1:44:84:a9:3f:95:
c3:09:7c:80:48:cf:36:91:71:59:19:32:e9:75:d3:fa:4c:8c:
f5:8f:ca:5b:cd:dd:79:b0:3b:c6:bb:c6:0d:d1:c1:73:74:83:
5e:ef:0b:76:b4:b1:99:bf:e8:0d:57:ff:2a:c3:ad:b5:d8:e0:
e9:c5:b6:bd:87:e6:b3:ac:97:c9:94:c2:98:ff:d9:2c:42:07:
0a:9b:67:38:73:d2:fa:89:f0:e3:41:e6:fe:61:64:69:98:9d:
42:76:25:61:d8:db:55:d1:62:8d:fa:97:76:ab:f7:8b:21:db:
b5:f8:3e:b0:f8:34:c1:e9:37:c9:79:7b:73:d1:b0:a9:4a:96:
32:87:45:23:19:ef:0b:58:63:10:ad:d7:32:4e:e7:ee:10:06:
e0:0e:52:d1:c0:f6:0d:bd:46:b7:1e:2f:43:f9:75:49:76:2e:
35:7f:72:8e:22:b3:ba:98:c7:e4:8f:9d:46:6f:d0:d9:b0:79:
2f:fa:16:0f:7e:58:18:69:65:33:a5:29:15:97:4a:54:20:6e:
f6:3a:26:ef:be:22:29:f1:c1:df:5c:fb:6a:df:cf:60:d5:4b:
c1:51:3e:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 18:36:29 2025 by rpki-client