Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
File: r8GT7hHlRxYWn5TI-THq4fyFSSE.mft (raw, json)
Hash identifier: ZClBZatipOGWmW8q/D41N+8OyKGbTELAarrVY/lEEGk=
Subject key identifier: 3A:90:B8:C1:3D:68:4C:8C:3B:F6:FD:0F:4D:61:70:45:19:10:18:00
Authority key identifier: AF:C1:93:EE:11:E5:47:16:16:9F:94:C8:F9:31:EA:E1:FC:85:49:21
Certificate issuer: /CN=afc193ee11e54716169f94c8f931eae1fc854921
Certificate serial: 01967DC579039D6C1FCCA432764BDE1319C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
Manifest number: 0A66
Signing time: Mon 28 Apr 2025 19:00:15 +0000
Manifest this update: Mon 28 Apr 2025 19:00:15 +0000
Manifest next update: Tue 29 Apr 2025 19:00:15 +0000
Files and hashes: 1: AaiQ-SNQmt6l5xOeIk4PwVHWfh4.roa (hash: 6CQTrWnDAV45WpOAHO1NfVL9iDI/ELlZY8vizp+bA9s=)
2: r8GT7hHlRxYWn5TI-THq4fyFSSE.crl (hash: +sop+N3JI9zhsYqWybCf+tOT/RwupGb2F97Nyf+2hU8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:c5:79:03:9d:6c:1f:cc:a4:32:76:4b:de:13:19:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afc193ee11e54716169f94c8f931eae1fc854921
Validity
Not Before: Apr 28 19:00:15 2025 GMT
Not After : Apr 29 19:00:15 2025 GMT
Subject: CN=3a90b8c13d684c8c3bf6fd0f4d61704519101800
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b9:c3:0d:b2:73:87:80:20:4b:3d:b9:4a:01:
aa:23:3b:26:5d:2f:d4:05:76:fd:f9:67:f2:af:51:
e0:3b:47:e9:fc:ae:61:63:32:f7:f3:cf:9b:a5:bd:
fe:89:43:a5:4d:cb:f8:d7:39:8e:42:c7:1e:1e:66:
a6:da:b1:01:d1:5e:9e:7a:d0:c7:90:e1:cb:ea:be:
f6:94:02:9e:52:c4:f8:60:6a:c6:bc:30:b0:13:f6:
2e:5f:96:e9:92:98:b1:db:dc:32:9b:f3:b8:46:58:
0b:5c:72:3f:18:63:4d:17:55:49:d4:81:bf:25:33:
89:bd:0c:38:27:f6:b1:78:7e:47:63:ab:bf:e3:4c:
1a:b8:fc:0f:2d:b9:8c:6e:70:8f:eb:9a:62:83:c3:
7d:1e:e0:0c:dc:ae:e1:d0:b9:ff:3b:c7:50:39:77:
37:23:3e:09:ed:a0:07:cc:52:36:11:b0:94:a5:e1:
11:41:7d:8d:4a:39:81:52:c3:62:84:d1:4c:da:33:
dd:3c:79:e4:87:a3:04:e2:10:33:77:b9:29:5c:ce:
e3:9a:be:13:60:35:94:66:70:04:61:89:4a:86:e8:
63:51:65:2a:76:4b:40:b3:bf:4f:12:fe:46:62:b7:
d2:90:7d:3e:64:f6:ac:f4:55:d7:a8:da:e9:f3:2f:
f8:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:90:B8:C1:3D:68:4C:8C:3B:F6:FD:0F:4D:61:70:45:19:10:18:00
X509v3 Authority Key Identifier:
keyid:AF:C1:93:EE:11:E5:47:16:16:9F:94:C8:F9:31:EA:E1:FC:85:49:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:0a:36:07:40:db:9b:dc:39:bd:41:9e:cd:2c:82:9d:b3:3b:
c6:f1:ac:47:e2:e0:2d:a1:f7:8d:a3:f4:9b:3c:65:cf:42:43:
41:6b:4e:c5:d8:19:3d:7c:b6:a2:77:bc:3b:b7:d8:56:d5:0b:
7b:91:ca:9f:66:ee:5f:e0:f3:f6:dd:fb:38:18:56:0f:df:8d:
85:dd:7f:51:eb:4a:33:5c:76:90:2a:89:25:cb:79:e7:59:38:
01:e0:b4:b9:9f:f3:d2:01:10:54:1d:86:6b:e7:15:fa:5a:ff:
22:3b:0f:68:09:e8:15:5c:02:7b:86:f1:d0:57:e6:1d:58:81:
7b:24:b8:c2:3d:dc:14:27:7c:75:a6:06:c9:08:3a:6c:3f:1d:
eb:01:94:4e:e0:67:a0:a5:0d:42:c4:89:df:6c:29:4e:1a:02:
9f:33:6a:e0:10:8c:b1:2a:73:03:e5:22:d5:25:96:6d:ae:dc:
47:e5:35:80:c9:47:ec:4c:bb:23:9d:2d:e5:b7:d4:f5:3f:d2:
a3:28:04:7a:30:44:eb:06:23:99:1a:e5:ee:99:b7:81:28:0b:
cb:52:1c:81:44:84:dd:1d:36:3b:38:49:1d:e8:56:f7:81:a9:
ca:1f:41:4c:67:a3:8a:45:1c:dd:93:da:e4:fc:f5:0d:1a:9e:
65:d8:10:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 00:15:02 2025 by rpki-client