Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/0841b5-1955-4f00-8bf1-289f95893e84/1/D-Gntqa4WzwyZ8gDmW7YGKSmZHk.mft
File: D-Gntqa4WzwyZ8gDmW7YGKSmZHk.mft (raw, json)
Hash identifier: QZevqmFiqxxmFyxnjgR02kDFx3Fe94YAeR8+5ateVsc=
Subject key identifier: CD:57:4B:48:75:7E:E6:0D:E0:FB:EF:33:27:F8:43:1B:B3:D7:5C:93
Authority key identifier: 0F:E1:A7:B6:A6:B8:5B:3C:32:67:C8:03:99:6E:D8:18:A4:A6:64:79
Certificate issuer: /CN=0fe1a7b6a6b85b3c3267c803996ed818a4a66479
Certificate serial: 019659824BD86AA94F2DA736EDFB0B713CF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D-Gntqa4WzwyZ8gDmW7YGKSmZHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/0841b5-1955-4f00-8bf1-289f95893e84/1/D-Gntqa4WzwyZ8gDmW7YGKSmZHk.mft
Manifest number: 28
Signing time: Mon 21 Apr 2025 18:00:33 +0000
Manifest this update: Mon 21 Apr 2025 18:00:33 +0000
Manifest next update: Tue 22 Apr 2025 18:00:33 +0000
Files and hashes: 1: D-Gntqa4WzwyZ8gDmW7YGKSmZHk.crl (hash: 1NiQ7VdOwbVYYVKh6qoLWO9LEe2U26ZahdwMPY9K45M=)
2: jcTO1fBkVXsp4y6wlcBbebFM8iw.roa (hash: NkT9ooqiKYOuDT79Rkr1WXdOvqeB/1D8TcQH5fNDnzE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/0841b5-1955-4f00-8bf1-289f95893e84/1/D-Gntqa4WzwyZ8gDmW7YGKSmZHk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/0841b5-1955-4f00-8bf1-289f95893e84/1/D-Gntqa4WzwyZ8gDmW7YGKSmZHk.mft
rsync://rpki.ripe.net/repository/DEFAULT/D-Gntqa4WzwyZ8gDmW7YGKSmZHk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 18:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:82:4b:d8:6a:a9:4f:2d:a7:36:ed:fb:0b:71:3c:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fe1a7b6a6b85b3c3267c803996ed818a4a66479
Validity
Not Before: Apr 21 18:00:33 2025 GMT
Not After : Apr 22 18:00:33 2025 GMT
Subject: CN=cd574b48757ee60de0fbef3327f8431bb3d75c93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:44:fa:64:88:ef:f3:5c:f0:64:85:37:7f:a5:
86:71:79:6b:dd:04:1c:d9:64:6d:ca:02:79:ef:82:
bb:80:e0:7d:ac:01:a5:96:d8:7d:04:5b:5c:05:2e:
33:56:71:86:3d:10:ae:35:b0:89:1b:18:64:58:5c:
57:c7:20:18:c1:26:e3:d8:7e:64:9b:f2:5b:de:d3:
f9:72:af:e5:05:33:6c:5b:ca:ac:33:0f:df:f8:92:
79:d4:e4:92:9a:04:20:03:fa:9a:ee:e5:d1:f4:18:
c8:38:99:0f:96:3a:dc:64:83:d9:59:3c:0e:1b:08:
c9:f5:78:be:75:28:30:75:77:3b:3c:b7:0d:81:33:
f1:88:fc:f2:04:5f:82:bf:2a:a8:d4:2f:b8:42:1e:
4b:c1:0c:92:03:e0:30:85:d8:79:05:30:ac:c1:e2:
fe:8a:6a:4d:a2:3a:46:68:03:df:2d:ae:8e:40:0d:
ca:a4:b6:24:75:8d:b4:26:25:0a:09:0a:2f:ec:6c:
b2:71:a3:3f:ba:7e:3d:1c:09:aa:e6:f5:f1:3f:3a:
d9:0a:e6:cf:40:20:8e:c1:8d:a3:e7:14:43:04:62:
d3:d6:62:a8:7e:72:b3:98:f3:d7:99:6f:4b:8c:ee:
be:83:18:ea:bf:48:7c:1b:37:fe:d5:9d:7f:5f:28:
5f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:57:4B:48:75:7E:E6:0D:E0:FB:EF:33:27:F8:43:1B:B3:D7:5C:93
X509v3 Authority Key Identifier:
keyid:0F:E1:A7:B6:A6:B8:5B:3C:32:67:C8:03:99:6E:D8:18:A4:A6:64:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D-Gntqa4WzwyZ8gDmW7YGKSmZHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/0841b5-1955-4f00-8bf1-289f95893e84/1/D-Gntqa4WzwyZ8gDmW7YGKSmZHk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/0841b5-1955-4f00-8bf1-289f95893e84/1/D-Gntqa4WzwyZ8gDmW7YGKSmZHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:a1:df:8f:95:5e:f1:2a:99:fc:64:18:66:bc:a2:be:bf:d9:
73:fe:6a:60:5f:fe:44:48:85:cd:8b:8a:58:42:d1:a7:d1:a4:
ef:a7:7f:58:0c:df:b7:90:0c:63:d7:cb:a8:70:c0:08:e3:14:
90:be:00:e5:25:2f:75:e7:32:89:7e:8c:ee:21:97:6b:66:0b:
5a:bf:ea:9b:82:1b:c2:ae:78:05:9d:0a:3d:cb:25:9e:78:ca:
39:3f:20:e4:78:c4:47:f6:ba:b6:4a:f6:64:32:9e:1d:b9:7b:
bc:ba:7e:aa:be:08:25:e8:97:32:eb:76:66:b2:d8:ff:e0:d5:
98:6f:37:56:87:a0:54:97:f7:1b:08:dc:4d:01:ef:6b:36:4d:
0a:fd:b0:3e:4c:c7:36:68:7b:2c:86:83:4b:3e:8c:29:60:4d:
29:e9:d8:05:fb:85:e1:d4:69:6f:a1:82:03:ba:2d:88:f8:b7:
30:9d:92:c0:0c:0e:59:eb:db:2d:be:8a:17:4c:86:de:00:8d:
ec:01:3b:d8:63:79:4b:e2:4c:71:fb:e8:0d:21:5f:7a:7e:56:
b1:8a:9f:79:aa:a0:00:9c:98:fa:b9:7a:ea:bf:04:07:a1:3d:
a5:1e:37:b2:aa:dc:43:d8:c2:98:c4:07:ad:ca:29:db:a2:d8:
de:4a:50:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 02:28:19 2025 by rpki-client