Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
File: S8K4kvLb729UtFNg_rD4QUpahQQ.mft (raw, json)
Hash identifier: 3lkdzYnnRk5aN1tLWhCPcUz6vatIWIEYqwbuX4DJJO0=
Subject key identifier: A8:13:B1:83:0A:B1:8A:C5:E7:16:97:BF:33:E1:85:6B:14:2D:40:BA
Authority key identifier: 4B:C2:B8:92:F2:DB:EF:6F:54:B4:53:60:FE:B0:F8:41:4A:5A:85:04
Certificate issuer: /CN=4bc2b892f2dbef6f54b45360feb0f8414a5a8504
Certificate serial: 01967C45AAFC1686B865EEE60C5D87D87D33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
Manifest number: 0F0D
Signing time: Mon 28 Apr 2025 12:01:02 +0000
Manifest this update: Mon 28 Apr 2025 12:01:02 +0000
Manifest next update: Tue 29 Apr 2025 12:01:02 +0000
Files and hashes: 1: 8XxbJK1GWPrtjat_Lpe2HKly_9k.roa (hash: 1REGOqOGYIsLrmhSt5pZG4EmBpaR7Cf++uPRynahll8=)
2: S8K4kvLb729UtFNg_rD4QUpahQQ.crl (hash: 8Tm300i42oNhsnpHMQALCDeM+kEs6Cxha+/zYZg2ASI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 12:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7c:45:aa:fc:16:86:b8:65:ee:e6:0c:5d:87:d8:7d:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bc2b892f2dbef6f54b45360feb0f8414a5a8504
Validity
Not Before: Apr 28 12:01:02 2025 GMT
Not After : Apr 29 12:01:02 2025 GMT
Subject: CN=a813b1830ab18ac5e71697bf33e1856b142d40ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:80:a9:13:e1:64:33:4e:b1:06:a3:c1:c0:f7:
90:21:92:bc:8f:f9:40:fa:cd:4a:89:d0:63:86:e9:
99:0d:20:61:3f:aa:8f:d3:87:26:d5:1a:8b:ea:ba:
67:48:eb:dc:ad:2f:85:74:f7:00:ce:e8:5d:bc:bf:
2c:cf:dc:4b:89:ab:1f:b7:3e:45:d9:cc:6e:b5:ec:
e1:62:e6:4e:b8:0c:79:07:ae:e1:85:91:77:aa:30:
1e:d3:f1:d2:dc:c9:9b:1c:6c:8f:a1:6b:44:3f:59:
7d:07:39:e7:87:28:88:c9:cb:c7:38:6a:76:21:5f:
e7:04:83:79:f4:09:be:e3:f9:3f:16:a8:95:24:6e:
d6:72:a8:8d:15:23:23:21:fb:65:67:96:9c:5f:23:
73:71:70:7b:ed:0a:e2:2d:0c:f3:76:ec:7e:56:6b:
db:00:4a:93:0d:9c:13:d9:97:2b:ba:be:11:4a:49:
12:1e:1a:b1:c0:ac:48:10:63:7d:1b:e0:46:8a:5e:
d5:14:65:83:c8:cc:37:43:fa:5e:25:92:d3:0b:31:
8e:c2:d9:14:de:e3:1c:d0:41:4c:06:4d:7a:d8:f6:
bd:8b:b4:43:5c:8e:58:9a:1e:7b:83:e6:d7:16:c9:
2c:0d:b5:87:80:b5:36:eb:af:4e:80:65:01:6a:31:
1c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:13:B1:83:0A:B1:8A:C5:E7:16:97:BF:33:E1:85:6B:14:2D:40:BA
X509v3 Authority Key Identifier:
keyid:4B:C2:B8:92:F2:DB:EF:6F:54:B4:53:60:FE:B0:F8:41:4A:5A:85:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:7a:48:0d:c7:d3:55:5c:95:c5:01:56:1d:91:1f:d1:7f:28:
00:1e:76:4d:7e:7b:66:9a:0d:c4:82:43:b4:d1:ef:74:10:89:
87:3a:bb:c6:f7:3f:2f:3b:97:49:87:68:00:d6:2d:1d:a6:63:
45:af:4a:10:46:ef:e1:83:67:7c:d4:76:d7:41:32:ef:18:29:
09:ec:2b:5b:be:d6:e2:8b:4a:a1:a0:ee:f8:a9:27:75:c3:c5:
b9:1d:49:ae:5c:7a:62:71:ce:77:62:92:ef:23:7b:af:ce:cb:
0f:2b:7a:9f:41:b4:6a:4d:4c:3e:de:0b:28:41:75:f8:03:65:
e0:d4:2d:af:fd:a1:15:fd:93:d5:03:8c:e4:15:a0:75:89:39:
70:29:98:5b:6f:39:99:be:b6:27:a2:a5:8e:5e:7d:3e:98:55:
67:99:84:83:b2:af:d1:19:eb:7b:56:bd:63:f9:61:5b:3d:d1:
d9:ee:f2:a5:ed:61:07:db:f5:eb:82:1a:b0:7f:c4:cd:e4:97:
45:80:55:2a:a3:34:be:95:bc:04:34:25:7f:0e:18:8a:10:d6:
97:db:0f:a6:10:e0:b9:df:7b:56:05:8b:d8:91:9b:31:6e:b4:
e1:ad:bb:7c:f1:f5:7f:83:1e:6a:4f:f5:fa:4b:a8:13:10:ce:
d1:49:5a:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 18:42:32 2025 by rpki-client