Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
File: rx7uIsUBU2MRinHSapRj3JN0uig.mft (raw, json)
Hash identifier: H2WG84Mk7iuyPi0lBUc59bLY3/pJ09zM6hLRLVDwFR8=
Subject key identifier: 91:71:1E:85:40:2E:53:6A:01:0F:10:10:C2:3B:53:50:A2:83:8F:41
Authority key identifier: AF:1E:EE:22:C5:01:53:63:11:8A:71:D2:6A:94:63:DC:93:74:BA:28
Certificate issuer: /CN=af1eee22c5015363118a71d26a9463dc9374ba28
Certificate serial: 019677FAFC7578525DCC53B1B06352BFACBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
Manifest number: 08C6
Signing time: Sun 27 Apr 2025 16:00:59 +0000
Manifest this update: Sun 27 Apr 2025 16:00:59 +0000
Manifest next update: Mon 28 Apr 2025 16:00:59 +0000
Files and hashes: 1: rx7uIsUBU2MRinHSapRj3JN0uig.crl (hash: 9v20E184s0GrDk6hBdscxd942MAL4PPut40ijAng4kY=)
2: vtzVAFS2sSXFMY4pT9LQwpwKXN8.roa (hash: IK29JkUi3ofZEZGY2PidWdMxcE655gfnkWlaKv3tisg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:fa:fc:75:78:52:5d:cc:53:b1:b0:63:52:bf:ac:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af1eee22c5015363118a71d26a9463dc9374ba28
Validity
Not Before: Apr 27 16:00:59 2025 GMT
Not After : Apr 28 16:00:59 2025 GMT
Subject: CN=91711e85402e536a010f1010c23b5350a2838f41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a0:0a:ef:2a:d1:03:13:05:b1:80:1b:6d:ed:
86:6a:ff:8e:67:64:62:95:20:10:a7:f1:f1:1b:70:
5c:b6:19:7f:f2:9e:3a:f1:50:ff:18:bd:46:f4:14:
fc:00:d3:69:0e:36:7b:f5:17:e6:ef:23:e3:c8:8c:
b9:3e:3c:78:25:93:b8:04:11:72:97:d6:d5:47:69:
47:aa:ec:a4:59:77:9d:97:76:c8:df:e6:0d:6a:38:
c7:7c:1d:66:cd:02:cd:a2:8e:a8:fb:bd:25:49:29:
72:eb:ae:2d:d3:da:2a:d4:a2:46:93:a2:92:c5:a1:
1c:7d:6d:45:d1:d7:2d:89:ad:0a:e7:45:a8:b0:cc:
7d:1d:7e:6a:9f:26:83:5f:c8:78:99:82:4c:c0:52:
a4:3f:2e:e8:2e:ba:ea:e6:7f:04:b1:9b:d1:33:38:
e8:a9:89:50:90:f3:73:48:36:09:a2:9a:67:bd:ba:
77:1b:cd:6c:87:ea:11:cf:03:a8:ac:c7:09:cb:31:
42:5f:df:1d:d7:ef:a8:a7:21:a9:2e:80:10:90:c2:
44:52:33:d9:28:2d:5f:be:d3:65:54:63:b2:81:dd:
a8:1e:f5:81:51:4f:20:53:ed:34:70:ce:9b:5c:3a:
96:33:db:5b:13:35:24:42:03:75:42:a8:59:50:d4:
cb:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:71:1E:85:40:2E:53:6A:01:0F:10:10:C2:3B:53:50:A2:83:8F:41
X509v3 Authority Key Identifier:
keyid:AF:1E:EE:22:C5:01:53:63:11:8A:71:D2:6A:94:63:DC:93:74:BA:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:08:00:1d:a3:5e:6e:92:b3:72:52:96:8a:87:ae:e3:54:b6:
d2:24:e6:f7:6b:0a:bb:57:6f:60:ca:7b:61:1f:28:1b:f2:d4:
91:dc:fa:06:74:18:20:e8:17:04:1f:20:2a:26:9f:26:a9:41:
5d:83:c4:94:b0:fd:38:cf:f1:27:72:37:e0:ca:c5:f9:84:b8:
2f:18:97:5a:35:f6:58:82:cc:04:55:f2:8f:53:af:98:9a:60:
64:c3:43:c6:19:49:d4:9c:94:c0:4c:55:64:43:fa:47:42:70:
e9:0b:7a:f1:9a:0e:7d:be:02:d1:b8:57:a1:38:e2:28:a5:8c:
0e:49:ef:ee:31:af:11:4d:3c:d9:e0:90:ed:26:f5:10:00:8e:
74:8c:d4:a1:00:2d:ab:2d:ec:87:5a:5f:86:be:f4:c3:25:22:
d4:d7:d1:79:d2:bb:63:0b:f5:98:df:ed:15:63:d5:50:d5:11:
be:87:62:8c:41:9a:e9:28:b4:f4:46:95:40:44:c1:0d:96:00:
6e:d1:c3:96:d3:12:a7:45:38:b9:fc:65:6b:72:ec:7c:b3:2c:
8f:cd:02:7a:b3:12:fd:05:70:fb:30:a5:00:a3:e4:e3:7d:f8:
c0:9b:4a:5f:25:6b:ef:7a:5b:b7:23:d2:55:5f:a8:4f:44:96:
09:a5:c5:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 21:09:03 2025 by rpki-client