Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
File: mRyTTgj1egPvTro2taTaeYolIgc.mft (raw, json)
Hash identifier: 5zzmwsbN0rCdU21QUrcTOiQklrp1Viii2Noe9RPS9Lc=
Subject key identifier: 81:EA:CE:06:CE:E1:23:56:EF:2E:3A:29:F6:82:B7:F5:AE:B4:68:E3
Authority key identifier: 99:1C:93:4E:08:F5:7A:03:EF:4E:BA:36:B5:A4:DA:79:8A:25:22:07
Certificate issuer: /CN=991c934e08f57a03ef4eba36b5a4da798a252207
Certificate serial: 019653B6DD8FCC4D5372ACECB65158C80652
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRyTTgj1egPvTro2taTaeYolIgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
Manifest number: 14FA
Signing time: Sun 20 Apr 2025 15:00:15 +0000
Manifest this update: Sun 20 Apr 2025 15:00:15 +0000
Manifest next update: Mon 21 Apr 2025 15:00:15 +0000
Files and hashes: 1: db9OeH46tzqgA4Lx9Y7WIwYTuDM.roa (hash: FuLyiACFaT6BITOZPeoXwp9XiYIYBsR3kP7HfHr2tYI=)
2: mRyTTgj1egPvTro2taTaeYolIgc.crl (hash: i/Dx73PWslIjNcjJviYHpTMVQDfURR/o6jM/zQJqcxQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mRyTTgj1egPvTro2taTaeYolIgc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 15:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:b6:dd:8f:cc:4d:53:72:ac:ec:b6:51:58:c8:06:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=991c934e08f57a03ef4eba36b5a4da798a252207
Validity
Not Before: Apr 20 15:00:15 2025 GMT
Not After : Apr 21 15:00:15 2025 GMT
Subject: CN=81eace06cee12356ef2e3a29f682b7f5aeb468e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:8f:df:e2:d3:73:86:7c:d1:9d:12:a6:9c:f2:
91:e7:39:ff:85:6b:73:f3:76:6a:22:eb:6b:61:ab:
ae:87:a1:20:9d:96:91:71:95:76:23:6b:84:bb:2e:
54:67:21:9a:03:c9:f2:c9:3e:0d:6e:fa:b5:3b:b0:
ea:01:54:50:22:79:73:06:9a:cb:b2:1f:03:19:a7:
82:95:b5:16:bf:96:07:0d:8b:b2:f9:bc:19:80:7e:
a8:5d:ad:68:b0:88:3b:24:06:92:af:ac:5c:b4:be:
e3:0e:24:cd:0c:50:f3:4a:19:7f:95:62:14:a7:77:
93:16:f2:65:87:1d:33:cf:24:56:d3:69:77:28:3e:
46:bf:e0:3c:90:d1:01:9e:9c:0d:76:c2:5a:32:90:
c0:70:fd:d9:9c:40:97:c0:37:c1:19:66:8a:90:7c:
8d:fa:35:bd:db:88:57:a3:21:3f:eb:0a:78:75:59:
da:3d:27:2f:22:e2:6e:84:18:85:da:e5:28:05:fc:
35:8d:49:a3:89:54:08:c3:e8:ee:6b:99:40:23:9c:
34:be:74:3a:6d:ba:f9:11:6a:cc:82:8f:f8:7d:b5:
c0:04:02:68:fd:a8:8d:57:7e:6a:ad:91:f2:ce:51:
b2:1c:6f:6b:f8:fe:69:a2:e2:54:b4:be:45:4b:1a:
33:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:EA:CE:06:CE:E1:23:56:EF:2E:3A:29:F6:82:B7:F5:AE:B4:68:E3
X509v3 Authority Key Identifier:
keyid:99:1C:93:4E:08:F5:7A:03:EF:4E:BA:36:B5:A4:DA:79:8A:25:22:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRyTTgj1egPvTro2taTaeYolIgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/04c239-8869-46e2-95b7-93b392525175/1/mRyTTgj1egPvTro2taTaeYolIgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:de:b9:43:d1:6b:d5:6f:5c:03:8c:c2:c9:0c:b1:69:6a:14:
8f:b4:8a:e0:5d:0a:3b:7f:7f:cb:49:ea:56:71:38:12:b2:b8:
ba:00:79:da:ff:03:56:55:9e:bf:0a:a2:e1:a0:d9:6d:8f:d6:
b2:0c:28:fc:ed:5d:cc:a6:44:29:45:73:93:80:e8:10:af:e8:
dc:a7:59:f4:27:ad:03:6a:83:54:ab:bd:d3:0d:04:7e:10:8f:
56:8b:08:a3:ce:f2:5b:46:77:16:a2:c7:66:60:2c:b5:ab:ed:
5d:bc:6b:59:55:96:e7:dd:be:fc:41:fd:c1:71:a9:2e:05:9b:
fc:c2:99:01:ed:28:71:fa:5f:2e:fa:ce:e4:35:85:fa:7d:0d:
bd:09:6d:47:fd:4a:4b:df:3a:56:b8:08:d0:6f:1a:9e:55:9f:
99:53:44:75:2f:ce:c8:c1:d9:a8:bf:49:25:d3:88:d6:dd:ec:
c4:58:5f:c7:4a:d5:b6:a4:61:39:c0:71:ba:39:66:ec:ba:3c:
20:9b:5d:a5:37:83:44:d2:c8:25:4a:33:a8:8e:bf:3d:2d:d2:
c6:d2:87:e0:88:5d:23:a9:54:e4:dc:f2:4d:7e:7d:b6:bb:76:
fd:8f:aa:4f:13:d2:4a:89:88:1c:5e:dd:bc:6d:ab:d0:6f:9a:
9a:0e:d9:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 19:42:07 2025 by rpki-client