Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/e10057-99bb-44f9-9774-2752b3759066/1/WhoxkJeA6Bc0r2YHJy0YUl23ZX0.mft
File: WhoxkJeA6Bc0r2YHJy0YUl23ZX0.mft (raw, json)
Hash identifier: vhGJzb6jZiBA+7OaxGwisHJ/MQguaxbNmR86MlpOc/o=
Subject key identifier: 4D:31:96:99:E1:5A:8A:81:19:92:6F:A1:2E:EF:13:DC:18:D4:EC:26
Authority key identifier: 5A:1A:31:90:97:80:E8:17:34:AF:66:07:27:2D:18:52:5D:B7:65:7D
Certificate issuer: /CN=5a1a31909780e81734af6607272d18525db7657d
Certificate serial: 019655DC8DA8A5B431F379AEA1B07EA18CDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WhoxkJeA6Bc0r2YHJy0YUl23ZX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/e10057-99bb-44f9-9774-2752b3759066/1/WhoxkJeA6Bc0r2YHJy0YUl23ZX0.mft
Manifest number: 09D1
Signing time: Mon 21 Apr 2025 01:00:39 +0000
Manifest this update: Mon 21 Apr 2025 01:00:39 +0000
Manifest next update: Tue 22 Apr 2025 01:00:39 +0000
Files and hashes: 1: 05We7KAwOd8ZrvHSdSmKgB3AkYs.roa (hash: /6T/kf5A77qhojsVT6JQ5gSyGwEMhPcCMY7KI031bSc=)
2: WhoxkJeA6Bc0r2YHJy0YUl23ZX0.crl (hash: z8Uf5NMBbsLXuvA4aQA9ROL9kp19Sv9tzVF0d3fhj+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/e10057-99bb-44f9-9774-2752b3759066/1/WhoxkJeA6Bc0r2YHJy0YUl23ZX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/e10057-99bb-44f9-9774-2752b3759066/1/WhoxkJeA6Bc0r2YHJy0YUl23ZX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/WhoxkJeA6Bc0r2YHJy0YUl23ZX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:dc:8d:a8:a5:b4:31:f3:79:ae:a1:b0:7e:a1:8c:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a1a31909780e81734af6607272d18525db7657d
Validity
Not Before: Apr 21 01:00:39 2025 GMT
Not After : Apr 22 01:00:39 2025 GMT
Subject: CN=4d319699e15a8a8119926fa12eef13dc18d4ec26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:6d:a4:01:d3:32:77:dc:df:be:bd:57:47:8d:
71:43:6c:a4:2e:40:87:3e:07:36:46:82:8e:ad:4d:
b6:cf:8d:be:cd:7a:8f:55:bf:10:07:48:bd:e5:b9:
81:80:e5:32:e7:8d:26:24:a2:a3:be:ae:4d:a3:96:
81:8b:0e:cd:a2:bc:19:81:18:4e:0e:f9:26:b4:76:
2d:d1:47:72:7d:87:fb:e4:8a:67:cb:3b:96:0f:07:
9e:ac:08:cc:f7:26:78:b3:30:86:58:91:e8:f0:08:
29:4d:0b:cc:eb:be:1a:27:6d:b9:a9:5f:7c:a4:67:
04:03:c2:63:4c:83:eb:45:6b:4b:95:08:3d:2f:ae:
5b:9f:75:f2:80:09:d2:f1:0b:dc:22:7c:34:b4:41:
7a:1c:b4:c1:12:16:8f:e5:7c:6d:3a:dd:5a:a4:11:
52:fb:47:34:75:66:f0:7a:a8:84:1a:dc:1c:c9:7d:
8b:fc:86:c7:a2:35:58:d9:47:99:ec:71:6f:8a:f9:
5e:36:18:6b:c8:45:0b:25:6c:ac:a2:81:e7:a5:a9:
ad:4f:06:2a:13:09:69:4f:f4:5e:dd:28:eb:67:40:
73:49:81:68:07:df:0e:2b:51:0d:33:1a:13:2b:a2:
0b:59:95:2f:44:f6:f1:f8:9b:63:61:39:ea:10:51:
7f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:31:96:99:E1:5A:8A:81:19:92:6F:A1:2E:EF:13:DC:18:D4:EC:26
X509v3 Authority Key Identifier:
keyid:5A:1A:31:90:97:80:E8:17:34:AF:66:07:27:2D:18:52:5D:B7:65:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WhoxkJeA6Bc0r2YHJy0YUl23ZX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/e10057-99bb-44f9-9774-2752b3759066/1/WhoxkJeA6Bc0r2YHJy0YUl23ZX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/e10057-99bb-44f9-9774-2752b3759066/1/WhoxkJeA6Bc0r2YHJy0YUl23ZX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:38:53:f9:ff:ff:42:15:44:55:8a:04:a4:b4:4e:e6:ca:c7:
12:c8:43:1d:6a:fd:6c:c4:c1:7a:1f:7f:eb:cd:13:72:26:d6:
5f:8d:59:86:10:73:7a:a9:2e:68:4f:f4:6d:dd:4e:28:90:84:
3b:54:fa:3c:c1:4a:15:93:34:9a:9b:9b:0e:02:73:3a:31:d8:
f1:11:6a:b1:78:6e:af:ea:51:b8:0f:65:71:91:b0:a8:a1:db:
52:5f:d9:99:e0:09:a0:ca:98:14:1b:af:66:f7:0b:63:63:e3:
8c:c4:67:75:6e:a2:41:9d:3b:55:1c:d4:73:35:2b:2c:93:cd:
d0:d5:40:ec:19:db:89:ec:30:d9:f7:e3:7f:cd:b6:53:63:2b:
5c:4c:4a:56:b2:85:54:b4:95:16:b0:a0:51:c1:d4:50:20:fd:
4f:9d:e8:02:9e:d6:43:86:71:54:8f:00:85:f0:35:04:69:5d:
6e:3c:07:5e:35:4c:d5:24:a1:01:8d:b3:12:fb:90:aa:f7:80:
a1:33:1c:5b:3f:64:f8:d2:ad:ab:60:51:87:d1:84:20:ea:c3:
aa:90:12:17:a0:1d:26:6e:44:36:7f:fe:df:12:72:29:22:41:
47:6e:09:da:12:40:8e:0a:79:26:74:14:3e:10:ff:27:4d:1e:
c2:e8:e4:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:38:59 2025 by rpki-client