Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
File: F3khM2kRpWiNeOk__l5HIRO7Gb4.mft (raw, json)
Hash identifier: 5mtCo10dklh1gs0JrXHFDtqnIckQCmplqHz5FRGrt08=
Subject key identifier: 7A:80:C3:93:50:FA:22:52:17:3C:2B:84:5F:23:60:98:87:6B:D5:B9
Authority key identifier: 17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE
Certificate issuer: /CN=177921336911a5688d78e93ffe5e472113bb19be
Certificate serial: 019673E69DB65E58A0DB2B15ED6967A01D1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
Manifest number: 04EF
Signing time: Sat 26 Apr 2025 21:00:15 +0000
Manifest this update: Sat 26 Apr 2025 21:00:15 +0000
Manifest next update: Sun 27 Apr 2025 21:00:15 +0000
Files and hashes: 1: F3khM2kRpWiNeOk__l5HIRO7Gb4.crl (hash: t7Q+cEtmxQ0PLmgL84HPE+OebW73/HQte8cZr1tW8Lg=)
2: WN1QsY4J0xzhzXI37At9k24AG4s.roa (hash: aONG4etXL5aCmGtS97ulkTYk4UjXjlB6E7tpLdYeDEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:73:e6:9d:b6:5e:58:a0:db:2b:15:ed:69:67:a0:1d:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=177921336911a5688d78e93ffe5e472113bb19be
Validity
Not Before: Apr 26 21:00:15 2025 GMT
Not After : Apr 27 21:00:15 2025 GMT
Subject: CN=7a80c39350fa2252173c2b845f236098876bd5b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:75:db:68:23:e1:9b:f9:d6:59:79:cb:bb:e7:
64:09:fc:77:94:6c:d1:fe:5b:60:9e:2e:c9:2f:76:
16:a2:0e:67:95:62:74:fa:4a:bc:3d:2e:f4:39:bb:
aa:fa:2a:76:11:07:b8:c2:5c:c8:34:89:47:8c:65:
8d:12:f0:bc:78:e4:8e:30:f2:89:8e:f8:05:1a:e5:
cc:c2:d7:f6:ae:98:fb:91:37:f6:37:57:88:75:a1:
49:59:63:75:cc:89:2d:da:b2:e4:1a:60:4a:b7:88:
e9:52:22:48:fb:ff:b3:e0:d6:01:15:67:f0:f6:1b:
2b:d3:6e:b9:e3:4d:df:2e:e0:26:59:26:8b:e1:d3:
bb:68:44:86:3e:4c:42:fa:9c:e4:b4:a2:91:0b:57:
b0:87:9c:5f:eb:17:fb:90:12:57:11:ef:6b:1f:3d:
67:90:69:f3:53:49:5e:bb:f0:b6:cb:e9:3d:73:fc:
04:6e:d6:24:f6:bc:7f:f1:30:e2:9c:f1:4b:a4:27:
90:cc:76:ed:90:0f:79:89:c9:ec:59:9a:dd:4b:ac:
9c:48:9e:54:0f:e7:db:b7:73:d7:fb:32:5f:db:ee:
09:1d:1a:b8:15:80:c2:b2:6c:be:c6:ee:72:34:bb:
d9:7b:94:59:6a:17:c4:99:6f:07:3d:cc:d2:3a:f1:
4a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:80:C3:93:50:FA:22:52:17:3C:2B:84:5F:23:60:98:87:6B:D5:B9
X509v3 Authority Key Identifier:
keyid:17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:9c:e2:f9:3b:c9:b6:2c:6b:e3:8d:87:c5:e5:a4:6b:2a:24:
9a:f8:69:15:b6:36:e2:f8:c2:94:e5:2e:fa:86:a4:54:3f:1b:
00:a7:bf:31:b4:54:80:69:47:f3:63:4a:e0:6e:de:dc:ea:97:
45:bb:75:04:d2:9c:3f:6f:52:0f:94:4d:ac:06:f5:5e:ec:ec:
a2:cf:61:a3:48:d4:a9:cb:e4:a7:08:c9:6b:42:52:65:d3:03:
85:81:d2:e2:ab:bb:ea:96:71:d4:7b:bf:04:c7:04:be:3c:eb:
6c:70:33:15:0d:29:d0:04:7b:b8:02:04:b2:da:ac:0e:ef:ce:
22:5a:35:eb:06:b4:0b:b9:79:3a:60:b8:83:29:a6:c0:f9:f6:
a5:eb:0d:41:12:0a:40:0f:61:76:c1:c4:d1:ce:74:6f:5a:81:
9e:ff:6e:cb:d4:a0:a7:ef:ef:91:0c:0b:a9:f2:28:b6:87:51:
e8:71:8e:c1:b2:c0:64:f1:8f:d3:13:8e:01:cc:98:ce:a4:f4:
fe:62:55:55:0b:3a:b5:9a:a8:87:92:1a:f8:45:bf:a9:f2:c1:
ab:f9:fc:05:56:31:62:eb:bb:b1:bc:34:df:ca:2e:2c:c5:10:
e5:e7:f7:69:9c:a8:8e:bd:92:11:ca:1e:f0:49:4b:05:ca:58:
b4:ac:b5:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:36:32 2025 by rpki-client