Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.mft
File: up78qG3qcNPukBgWeMjrMOaRbR0.mft (raw, json)
Hash identifier: JOpgmZ4HdxiJZy/mlN5r7uJjNZnWt0zzUV72Hp9zRzc=
Subject key identifier: D8:58:BC:6B:05:17:72:7B:19:CE:0D:DD:67:9D:23:38:8D:E4:32:95
Authority key identifier: BA:9E:FC:A8:6D:EA:70:D3:EE:90:18:16:78:C8:EB:30:E6:91:6D:1D
Certificate issuer: /CN=ba9efca86dea70d3ee90181678c8eb30e6916d1d
Certificate serial: 01968A00A33925C4DB48469CB53C56EF67BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/up78qG3qcNPukBgWeMjrMOaRbR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.mft
Manifest number: 148F
Signing time: Thu 01 May 2025 04:00:19 +0000
Manifest this update: Thu 01 May 2025 04:00:19 +0000
Manifest next update: Fri 02 May 2025 04:00:19 +0000
Files and hashes: 1: TcxQ_LIgSlnQjiSbvcx7DOq2_Zc.roa (hash: v9utTlGogD+SmAb7nxAo7ersLZspEGf0TY5tMFbjRB8=)
2: up78qG3qcNPukBgWeMjrMOaRbR0.crl (hash: Qcg65ie+Z3syioXefQjBmtVqW2koD3nZdxxA4+L7nxM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.mft
rsync://rpki.ripe.net/repository/DEFAULT/up78qG3qcNPukBgWeMjrMOaRbR0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 04:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8a:00:a3:39:25:c4:db:48:46:9c:b5:3c:56:ef:67:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba9efca86dea70d3ee90181678c8eb30e6916d1d
Validity
Not Before: May 1 04:00:19 2025 GMT
Not After : May 2 04:00:19 2025 GMT
Subject: CN=d858bc6b0517727b19ce0ddd679d23388de43295
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:69:a2:95:49:b5:2a:b9:09:8f:7a:a0:5c:16:
2c:fb:17:6a:67:2d:55:a3:4e:23:7d:3c:aa:d2:1f:
f0:0f:e4:90:af:1a:2e:32:d7:f8:7c:ce:09:d4:7c:
19:af:88:3a:52:e8:75:7c:e1:d5:95:17:8c:ce:90:
1c:1b:37:aa:90:75:98:62:28:2b:26:42:ee:b7:c4:
ee:03:38:48:1b:78:f5:2c:b7:a3:35:9b:cc:0e:7c:
e8:54:93:39:ab:4d:a5:50:f1:fa:da:39:ae:d1:cd:
47:fc:09:16:0e:58:0c:b8:19:b9:46:b8:68:83:72:
9d:95:11:41:65:90:0b:48:f4:a5:f6:d0:e2:49:e8:
93:54:a8:91:6c:7b:a3:84:d1:36:ac:86:ac:21:95:
08:7e:52:3f:b4:07:02:97:64:b8:18:59:2a:2b:53:
78:b1:d4:76:9d:92:b7:e4:d8:9c:41:fe:61:58:d7:
85:10:ca:e8:6e:e7:1d:c0:94:8e:90:fe:1a:99:ef:
15:a5:f1:d0:7e:e6:fe:62:2e:37:56:28:2a:48:23:
ec:05:27:b8:30:73:95:60:c5:0c:ba:7f:1a:cc:d0:
e6:70:f2:32:95:a4:63:21:cd:70:b3:c4:08:84:bb:
f2:ab:d3:48:fd:61:0a:f2:6d:cc:35:3e:bf:9c:ef:
7d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:58:BC:6B:05:17:72:7B:19:CE:0D:DD:67:9D:23:38:8D:E4:32:95
X509v3 Authority Key Identifier:
keyid:BA:9E:FC:A8:6D:EA:70:D3:EE:90:18:16:78:C8:EB:30:E6:91:6D:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/up78qG3qcNPukBgWeMjrMOaRbR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/75b838-4ece-4998-8ad8-17d31dee8e12/1/up78qG3qcNPukBgWeMjrMOaRbR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:29:75:b1:70:3d:a3:f9:80:fa:a7:42:9b:78:24:ac:e3:cc:
74:7e:04:7b:1c:11:bc:71:8f:e8:04:42:2f:4d:f6:ba:cc:ac:
3a:95:a7:93:df:8a:de:6f:6a:4c:58:3f:73:3e:c2:52:d8:4d:
0a:65:be:63:27:cb:1f:2c:0a:8b:4c:2c:5e:dc:92:43:ad:3e:
92:d8:fc:78:a2:4d:a9:ad:7d:51:5e:50:ae:55:35:99:b9:7e:
cf:21:06:c7:12:7a:94:25:5a:d4:cf:87:f6:c7:fc:a4:9a:09:
47:e3:32:06:82:95:3c:fa:a2:57:77:b3:e2:09:72:81:e0:b2:
6a:48:e5:c0:43:d6:92:f2:8a:b5:ff:96:6b:2c:77:a2:94:ca:
67:b5:04:15:7e:b9:28:df:67:36:f8:f3:0e:bb:33:84:e6:05:
de:8b:6f:16:84:b7:d2:df:47:b9:63:0e:c2:b1:84:95:5e:af:
2a:4d:93:0d:1a:d1:e8:f3:2e:5d:47:03:49:ad:49:f4:c1:33:
e8:23:23:ac:4a:5a:6f:e5:f9:81:9f:63:33:fb:16:df:6e:9b:
86:46:3e:7f:58:6a:ff:84:87:6e:f4:da:10:65:56:72:e0:da:
d5:51:0c:24:4f:e8:71:f3:bd:fe:d6:3d:8c:ac:70:ce:1d:dd:
db:a4:82:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 09:36:52 2025 by rpki-client