Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.mft
File: pI2lIJvWz5DG321-bWOmOVW61LU.mft (raw, json)
Hash identifier: BiTnEYCqDVDZdd4Ktx4vTTTIFNHNaUFfsNN23PNwqPs=
Subject key identifier: B4:69:3A:9C:17:72:B0:80:A4:B3:90:C2:2C:6E:31:53:E3:1B:75:D7
Authority key identifier: A4:8D:A5:20:9B:D6:CF:90:C6:DF:6D:7E:6D:63:A6:39:55:BA:D4:B5
Certificate issuer: /CN=a48da5209bd6cf90c6df6d7e6d63a63955bad4b5
Certificate serial: 01967831431AC95BF5AB394BB4D950100B88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pI2lIJvWz5DG321-bWOmOVW61LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.mft
Manifest number: 0599
Signing time: Sun 27 Apr 2025 17:00:16 +0000
Manifest this update: Sun 27 Apr 2025 17:00:16 +0000
Manifest next update: Mon 28 Apr 2025 17:00:16 +0000
Files and hashes: 1: gZ0yVDfN4vy-eK7OCEPSZaBaBxs.roa (hash: LNpaqhIXeGRj9rxSqG8l9W+yrY/Iu+GRMv3w/Y4Inpo=)
2: pI2lIJvWz5DG321-bWOmOVW61LU.crl (hash: 3mWDaDS1BXyUoQZQgNoAkfl5MtxhMtpu8NRpncewz6A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.mft
rsync://rpki.ripe.net/repository/DEFAULT/pI2lIJvWz5DG321-bWOmOVW61LU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:31:43:1a:c9:5b:f5:ab:39:4b:b4:d9:50:10:0b:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a48da5209bd6cf90c6df6d7e6d63a63955bad4b5
Validity
Not Before: Apr 27 17:00:16 2025 GMT
Not After : Apr 28 17:00:16 2025 GMT
Subject: CN=b4693a9c1772b080a4b390c22c6e3153e31b75d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1a:fd:f5:84:0e:ea:fc:ae:36:64:02:5f:19:
ff:01:01:36:e0:64:ac:ab:d8:5b:6a:70:f8:62:e2:
d6:5a:c7:b8:38:db:8f:9c:d7:04:6f:79:44:c7:78:
e4:b5:d8:7c:30:bd:f2:13:2f:b4:a5:af:b0:47:7b:
da:84:3d:40:96:13:3d:50:11:6b:e4:b7:22:d0:d4:
a2:78:63:41:01:8d:fd:58:4d:34:af:b1:cf:0f:38:
b1:86:b1:b2:c2:b9:8e:b7:34:52:fc:07:45:76:b1:
d4:57:a7:0a:b4:16:74:f9:07:81:2b:7d:b6:a6:db:
d8:01:e2:10:8a:ff:fd:64:7f:ac:10:c0:0f:55:1c:
54:b0:94:e5:db:f8:b5:9f:ba:d8:05:93:f9:49:30:
40:bf:e8:c2:5d:8a:0b:c0:81:6f:29:e0:99:73:4a:
bc:9c:81:0d:c3:48:ce:1d:10:50:3f:04:4c:2e:7c:
72:52:e5:6b:c4:77:97:f1:dd:cf:c1:f0:06:e0:3b:
f5:3d:49:f0:3a:55:4b:ae:7f:58:7d:8d:f4:c4:31:
62:17:d0:0c:fe:b2:4a:ed:f9:98:3d:39:bd:de:bf:
5a:f3:26:18:77:49:e0:1f:ed:2e:07:b6:b8:2f:9b:
28:a6:fa:fa:72:81:ec:9d:bb:ee:bf:02:54:07:03:
b5:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:69:3A:9C:17:72:B0:80:A4:B3:90:C2:2C:6E:31:53:E3:1B:75:D7
X509v3 Authority Key Identifier:
keyid:A4:8D:A5:20:9B:D6:CF:90:C6:DF:6D:7E:6D:63:A6:39:55:BA:D4:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pI2lIJvWz5DG321-bWOmOVW61LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/e631bf-de95-4cff-b0dd-5cb2d7258b0d/1/pI2lIJvWz5DG321-bWOmOVW61LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:84:61:84:c7:d4:51:a7:f7:db:3c:60:cf:78:6a:3e:d6:e0:
f4:3c:c9:a6:fe:1a:80:e1:a0:7b:30:13:fe:b1:fb:85:d3:d1:
55:f0:eb:be:cc:a3:d2:a2:b2:a4:d7:67:7e:8b:f0:ca:1a:ca:
78:70:a4:c4:5e:d6:9d:1b:c2:d9:57:a8:64:b0:1a:54:33:9f:
43:e6:87:9d:44:ed:50:3c:60:4e:c5:02:55:94:77:0d:e2:6b:
e2:5c:f3:f3:f2:e7:1b:16:ec:42:ad:6f:34:ad:66:72:7d:bc:
93:63:30:ac:9d:40:54:fe:5a:8b:51:86:aa:08:70:35:35:bc:
7d:1b:2e:14:f8:06:54:5a:2c:ee:f5:0b:64:b8:2d:f0:e6:00:
fb:ef:75:dd:cd:ba:53:cf:81:68:c2:ef:0e:33:38:5a:94:0d:
86:79:cb:d3:45:eb:2d:1c:cd:c8:f0:1f:d5:90:d5:24:90:c0:
0a:49:76:70:22:14:85:2f:0b:11:bf:e9:5b:ad:d6:e8:f1:f5:
f0:7b:bf:b7:f7:7d:2e:73:d3:db:66:00:bd:dc:51:f9:97:94:
de:4e:2b:28:8e:64:3f:eb:e5:bd:c6:bf:8f:ca:03:ab:06:26:
b8:7a:0e:a4:99:f7:29:0b:0c:f6:d2:fe:7f:77:31:0a:ae:6c:
8e:0e:1c:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:21:05 2025 by rpki-client