Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
File: rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft (raw, json)
Hash identifier: 2ms/wZnw+mJXxDiqiG78cZD/Kw7yxfrGZ8KniusXfBA=
Subject key identifier: 3C:E8:E7:30:EB:96:18:9E:AD:18:1A:A5:58:42:8D:D7:28:82:37:CC
Authority key identifier: AC:FB:BC:A8:52:B9:57:38:59:09:F6:BD:28:8C:DF:36:3F:21:8B:06
Certificate issuer: /CN=acfbbca852b957385909f6bd288cdf363f218b06
Certificate serial: 0196602921B629DDC76E3BE6D428BFCED61C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rPu8qFK5VzhZCfa9KIzfNj8hiwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
Manifest number: 11D9
Signing time: Wed 23 Apr 2025 01:00:30 +0000
Manifest this update: Wed 23 Apr 2025 01:00:30 +0000
Manifest next update: Thu 24 Apr 2025 01:00:30 +0000
Files and hashes: 1: IsJ0c25oEMcq2hs62WVn3JnR5kc.roa (hash: FVZnWTpWqx/hdTsogFHC4HE54Isaap3vLQprMcgXpZE=)
2: rPu8qFK5VzhZCfa9KIzfNj8hiwY.crl (hash: 2ERgj/R8uZIA3xqBm3qngw8M2MkwYjmEpy/iXnVA1Fc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rPu8qFK5VzhZCfa9KIzfNj8hiwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:60:29:21:b6:29:dd:c7:6e:3b:e6:d4:28:bf:ce:d6:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acfbbca852b957385909f6bd288cdf363f218b06
Validity
Not Before: Apr 23 01:00:30 2025 GMT
Not After : Apr 24 01:00:30 2025 GMT
Subject: CN=3ce8e730eb96189ead181aa558428dd7288237cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d3:0a:f8:ff:3b:a5:19:b9:04:fe:c7:49:6f:
6f:01:2b:15:db:c7:52:f1:9d:78:11:b0:d5:12:4c:
5a:3c:c4:97:e6:72:f9:a7:81:c2:6c:0f:28:ae:04:
34:3c:bb:ce:4c:04:a8:3e:9c:2b:9f:a9:11:b6:2e:
02:2f:4e:8b:71:c1:a9:63:d9:47:92:5f:01:7b:27:
11:1a:b0:35:46:3c:01:d9:56:ce:c9:90:52:63:57:
81:2d:b5:2a:75:06:73:3f:a8:ab:6c:35:7e:ee:73:
e3:e9:49:83:70:c7:27:43:c4:67:70:67:b6:0a:61:
60:43:3b:74:d3:cb:73:78:58:55:3d:38:4b:16:8e:
5d:0d:38:c7:e6:59:8a:17:05:a8:f5:1e:f5:6e:40:
b3:bb:0f:53:5c:a6:bf:3d:59:fb:e8:26:f6:ff:cd:
7f:2e:9e:19:b9:ff:21:db:c2:f7:48:66:4b:2e:63:
9c:e7:c4:15:ad:bb:f2:6b:a3:0c:5b:e6:16:3a:9e:
36:34:c9:08:f9:44:75:0b:b9:4b:d2:84:e7:67:1e:
3c:d4:55:97:e5:d6:e7:47:e5:cd:54:10:cc:7e:20:
0b:58:4b:5a:7b:df:29:f3:54:ad:5c:e4:67:d7:e5:
75:48:b4:39:88:8b:68:b0:f0:b2:90:87:a0:e5:3d:
1f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:E8:E7:30:EB:96:18:9E:AD:18:1A:A5:58:42:8D:D7:28:82:37:CC
X509v3 Authority Key Identifier:
keyid:AC:FB:BC:A8:52:B9:57:38:59:09:F6:BD:28:8C:DF:36:3F:21:8B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rPu8qFK5VzhZCfa9KIzfNj8hiwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:92:33:5f:c4:3f:ce:e5:38:46:7e:c4:79:8f:20:ce:87:d8:
1f:ab:37:08:6d:c9:00:21:62:d1:5e:89:c3:9f:75:a2:a6:4a:
f9:4b:e4:1a:85:b8:d8:99:1c:7e:3f:db:a8:c4:04:d0:98:ca:
5e:6e:18:80:8d:a2:67:dd:bf:df:b8:12:20:a0:0a:b1:be:e2:
02:2b:2e:0d:01:63:68:81:21:a5:25:41:aa:3b:53:50:35:cb:
80:ef:5a:7f:14:74:50:ae:5a:77:87:61:d1:ba:3b:cc:77:59:
29:7a:61:8b:be:c7:26:e6:e0:2b:70:37:d5:70:4b:ff:e2:ad:
bb:5e:5f:17:f8:4e:14:17:d3:bc:97:a8:7d:2e:91:c2:ef:a2:
e2:56:ff:eb:68:f1:7f:e7:26:cb:05:b9:97:87:c2:f3:42:21:
a4:15:ca:0d:2c:33:f4:98:19:46:af:00:82:c5:e0:ad:d4:2b:
fb:ea:48:ac:74:ce:e4:a1:dc:fd:40:a8:aa:7a:3f:e0:b3:57:
5e:85:6f:7d:73:84:c7:80:12:9a:3c:26:07:c4:4e:7f:60:7f:
e0:d4:7d:f4:ba:03:27:7d:5c:11:7b:d3:11:06:0e:83:88:dc:
11:6a:0b:34:19:b2:a0:aa:ca:b4:f8:67:6d:df:05:3c:2f:b8:
91:4f:f4:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 04:20:38 2025 by rpki-client