Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
File: sd-OADfxroL3viI1rmEsQBD2_pE.mft (raw, json)
Hash identifier: BGhHCd0OQ07k48Q5Y/sxAcZgMn/MszM34oE3oUZS7Ss=
Subject key identifier: E1:20:08:46:7A:A4:82:2D:EA:B8:45:26:23:89:5F:2F:7E:7B:6E:83
Authority key identifier: B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
Certificate issuer: /CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Certificate serial: 01965425674F1E24CE8B091671F26831A4B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
Manifest number: 13
Signing time: Sun 20 Apr 2025 17:00:59 +0000
Manifest this update: Sun 20 Apr 2025 17:00:59 +0000
Manifest next update: Mon 21 Apr 2025 17:00:59 +0000
Files and hashes: 1: GdRMKH6WdmmVubPmURRtVnS8GV8.roa (hash: gQYTKVfews/6lfRAQlloM0LgEpj91iqOXwXozcwIpNc=)
2: sd-OADfxroL3viI1rmEsQBD2_pE.crl (hash: HP0BtK51VViIdpd3TV7LavG+R+XQeoz0qPAJv2r4gFM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 17:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:25:67:4f:1e:24:ce:8b:09:16:71:f2:68:31:a4:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Validity
Not Before: Apr 20 17:00:59 2025 GMT
Not After : Apr 21 17:00:59 2025 GMT
Subject: CN=e12008467aa4822deab8452623895f2f7e7b6e83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ed:60:03:b0:18:c4:75:a7:dc:3b:b5:3b:7a:
00:c5:49:d8:22:5d:d7:eb:9b:6b:f8:e4:52:cd:bc:
e7:25:7b:80:dc:21:2a:51:88:4e:d2:15:59:82:f2:
bd:6f:d8:36:3a:2a:65:38:ef:01:62:94:00:e7:5c:
aa:c3:bd:4e:31:13:e4:26:f3:09:e5:f4:7b:41:bf:
33:ec:98:4a:26:d0:28:1b:56:3d:5d:7b:05:1d:bf:
6d:88:67:bd:89:b9:33:af:89:9c:1a:85:a0:5a:63:
31:a2:b9:24:2f:e5:44:30:34:18:91:4f:99:27:05:
65:64:88:4f:cb:60:08:9a:fd:d0:22:c2:ea:f6:44:
8a:e1:aa:40:a6:80:5e:9c:51:1e:96:ab:9b:04:1e:
bb:29:65:e4:39:35:4f:be:ca:3d:35:9b:1a:df:51:
b9:f2:93:1b:94:a6:fb:e0:1e:f2:b9:6e:e2:3c:78:
1b:f3:b5:6e:12:cb:88:e7:c8:fb:3f:7a:47:01:44:
c9:a8:a3:aa:2c:61:2c:4b:eb:4d:d4:f6:0f:ad:0a:
bd:64:77:66:04:c5:ea:9f:7c:f9:55:0e:b8:83:7b:
c8:05:24:6b:7a:db:7e:ee:49:8b:97:76:88:f9:0c:
09:2a:23:8b:16:58:e5:57:22:1a:b1:7e:d2:13:f7:
95:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:20:08:46:7A:A4:82:2D:EA:B8:45:26:23:89:5F:2F:7E:7B:6E:83
X509v3 Authority Key Identifier:
keyid:B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:8e:67:ba:d2:5b:10:1d:91:27:a3:5e:89:57:03:a8:56:2c:
aa:67:d1:c8:89:60:93:ec:7a:fb:08:96:16:dd:33:6a:a3:ff:
d2:f0:55:1c:a2:7b:48:db:05:4d:d2:7e:f1:67:37:06:e3:b1:
b9:3a:02:bb:5e:08:65:25:d4:69:22:b8:be:7b:0b:88:3b:b8:
83:31:2a:9d:8f:2b:46:6f:f6:7d:9c:1b:ba:13:23:18:54:0e:
bf:2d:d3:46:39:ce:7b:09:bd:d5:7a:bc:ef:3f:de:eb:df:80:
82:43:a2:e3:e8:f7:59:3f:aa:96:70:3e:f7:a8:79:c7:0c:a5:
ca:5e:fa:fb:c8:09:db:34:94:0f:d2:be:b5:1d:c4:2b:86:ec:
ee:c1:68:8b:c7:df:9a:9a:e9:49:a0:81:ae:ed:97:3c:97:22:
c0:ad:1a:67:65:ce:41:07:7b:3b:a5:6a:e7:58:c9:71:99:b7:
62:db:f2:ed:8a:b0:24:82:87:e9:3d:bb:75:7f:95:0e:90:fc:
03:23:a7:45:63:39:c7:14:bb:d5:4e:93:c4:96:cf:65:48:14:
03:55:85:6e:c5:b2:85:39:d0:a5:6f:a5:28:77:c5:c1:3e:d6:
5c:58:29:5a:b7:6d:0a:f7:6f:24:7b:10:d7:f3:8f:bf:7d:7c:
47:e5:73:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 03:40:02 2025 by rpki-client