Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
File: rXz7zh1tOmok8lZSBl0xV1go7bU.mft (raw, json)
Hash identifier: EyOBnjOqD9H6N4lGzRUSZL4RaEdGzWK7HJzsX+q8Llc=
Subject key identifier: 0C:B7:8D:03:C4:69:EF:FD:1B:9B:6C:6A:51:F1:71:2C:33:91:52:D1
Authority key identifier: AD:7C:FB:CE:1D:6D:3A:6A:24:F2:56:52:06:5D:31:57:58:28:ED:B5
Certificate issuer: /CN=ad7cfbce1d6d3a6a24f25652065d31575828edb5
Certificate serial: 019675D555234E47D55FCA805C92C2E20DAD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
Manifest number: 0C20
Signing time: Sun 27 Apr 2025 06:00:37 +0000
Manifest this update: Sun 27 Apr 2025 06:00:37 +0000
Manifest next update: Mon 28 Apr 2025 06:00:37 +0000
Files and hashes: 1: Im3NuoFQdX7egdBojqG76hMiXq0.roa (hash: MBZCzXbY6/6xAtTJ9sYOEhNyw2Jnz8TgfEJHylhcfdM=)
2: rXz7zh1tOmok8lZSBl0xV1go7bU.crl (hash: m+kI396+KNn9eqfrggiTG04GvznmAh2yXetgdOEqRzs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:d5:55:23:4e:47:d5:5f:ca:80:5c:92:c2:e2:0d:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad7cfbce1d6d3a6a24f25652065d31575828edb5
Validity
Not Before: Apr 27 06:00:37 2025 GMT
Not After : Apr 28 06:00:37 2025 GMT
Subject: CN=0cb78d03c469effd1b9b6c6a51f1712c339152d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:04:3f:c9:55:82:a0:e0:80:f8:c9:ee:f7:86:
b1:3a:96:a0:f1:f0:54:df:59:c6:dd:22:be:4d:3a:
05:68:8c:c5:41:58:97:9c:1e:4d:f9:7f:21:a1:d8:
b4:54:c5:8a:f9:84:76:39:37:75:0d:16:f8:a0:42:
7b:3e:56:4a:db:34:0d:36:e9:92:7d:8f:90:b1:12:
96:4c:ba:9a:45:89:56:ae:cb:91:57:e0:0b:31:70:
14:50:ec:df:90:45:b0:9c:51:4b:57:cb:ce:2c:a9:
f0:8b:25:6a:3c:93:0c:94:7d:27:44:7c:7b:20:65:
be:83:b3:8c:64:b6:9d:c6:7f:01:4e:1e:06:02:a6:
2f:9f:78:69:9d:9f:67:c3:01:2e:56:15:84:5a:ff:
6c:a1:a9:b3:18:45:d0:14:e5:3c:fc:29:19:c0:7a:
65:a6:57:20:56:07:29:22:61:7d:6b:b5:ad:e2:27:
69:98:12:80:97:dc:02:ff:1a:ca:e9:0a:22:e1:ee:
c5:b1:4e:08:cd:36:b7:be:da:4a:79:04:60:2b:9a:
99:de:65:66:a4:2f:e5:99:8e:a3:78:d4:37:61:89:
46:a1:09:ea:6e:d3:4e:4b:96:21:e9:ec:c7:03:6f:
34:fa:b0:22:20:a0:b1:84:38:f6:a9:c5:65:fe:37:
79:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:B7:8D:03:C4:69:EF:FD:1B:9B:6C:6A:51:F1:71:2C:33:91:52:D1
X509v3 Authority Key Identifier:
keyid:AD:7C:FB:CE:1D:6D:3A:6A:24:F2:56:52:06:5D:31:57:58:28:ED:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:86:c6:f2:b1:8d:47:db:79:96:87:d4:99:53:5a:39:9e:32:
4f:8a:34:4d:b4:5c:9c:6c:5b:00:e5:0b:d9:65:b8:9d:92:53:
7e:71:20:87:9f:ec:db:fd:1c:bf:e8:24:71:9b:a2:27:08:98:
40:cc:9d:46:4c:bf:3f:4c:dd:84:77:06:bd:8c:a3:23:47:bb:
f8:45:49:13:82:e7:3c:a4:4a:6a:17:47:9c:2d:02:bb:85:56:
6d:9e:22:3f:e4:a8:4c:30:a6:bb:c8:69:4b:a1:a7:25:99:07:
62:d2:9d:7e:c1:7e:cb:91:3b:42:4f:b2:e3:14:3e:88:33:c1:
7f:75:02:56:fd:b8:14:c8:7f:4f:bc:0c:b2:02:f4:a3:a1:5d:
a9:e3:fe:3a:f8:1c:c5:bd:61:21:0a:8c:60:85:79:82:83:0e:
e8:b7:a7:94:21:6a:5c:c8:51:44:e4:14:5f:61:54:84:12:f0:
79:89:ee:35:c0:c3:3c:10:62:5a:00:b2:73:60:f0:28:4d:6a:
e8:b6:f7:a8:c6:52:37:1d:db:5c:b5:b9:85:1b:06:ce:23:21:
4d:29:d2:47:e1:4c:73:0a:fd:40:ca:1e:db:15:7c:a4:07:cf:
59:a2:41:67:57:b0:02:81:d4:d4:11:2d:96:8b:e4:6e:61:28:
45:b0:b8:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 10:26:23 2025 by rpki-client