Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
File: cPaM3tOePsVM7iIzJS7zk3upgo0.mft (raw, json)
Hash identifier: 7NNUM0ZVvXudfw8+ADpS9g3OHSebyEdr80Ggdj+x0U0=
Subject key identifier: BF:68:39:DD:F4:BA:69:E2:CA:F9:C8:30:A7:C7:7B:4A:4C:29:19:50
Authority key identifier: 70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
Certificate issuer: /CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Certificate serial: 019642C4049C8DFB6B205AE403BE60AD132C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
Manifest number: 076D
Signing time: Thu 17 Apr 2025 08:01:04 +0000
Manifest this update: Thu 17 Apr 2025 08:01:04 +0000
Manifest next update: Fri 18 Apr 2025 08:01:04 +0000
Files and hashes: 1: cPaM3tOePsVM7iIzJS7zk3upgo0.crl (hash: K+FRNdX0hnQpcRA+mxrlt/AKerqiLmzkFKQ0iNXuXx0=)
2: pc3D-RJai3Sy0xY8-tFzVCI1yUM.roa (hash: uBxXsxOQORpc24Ptxkp92Yz5fKaDuCXBuTLa8unFs14=)
3: yzS5saqZmvfLrP5ZMitifKMGoG8.roa (hash: AF5+gCr6uoirpp1iHmwqxTO2TQvWrmslD/huU/aCXCo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:42:c4:04:9c:8d:fb:6b:20:5a:e4:03:be:60:ad:13:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f68cded39e3ec54cee2233252ef3937ba9828d
Validity
Not Before: Apr 17 08:01:04 2025 GMT
Not After : Apr 18 08:01:04 2025 GMT
Subject: CN=bf6839ddf4ba69e2caf9c830a7c77b4a4c291950
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:17:6e:98:b5:15:05:aa:2b:79:ed:e9:c8:8b:
05:2d:49:06:17:01:09:65:8f:12:a6:4b:70:8b:74:
60:aa:9c:be:52:fe:ed:7f:7c:e0:54:e7:0b:86:5f:
4f:0a:2d:3a:8b:32:d8:b3:bc:16:79:30:4d:33:b1:
b5:a0:c2:7e:e2:db:75:3d:fa:c1:95:b4:f1:fc:82:
18:58:6b:26:38:e0:5a:f0:23:c0:cd:52:dd:1a:f4:
0c:0f:82:d0:47:f3:d5:bb:ba:36:98:9a:e4:27:33:
25:91:03:74:90:38:6b:98:f7:36:8c:27:df:b4:72:
45:32:2f:ba:a3:f1:f8:dc:1f:3c:0e:f9:3c:3f:bf:
f2:01:1f:3e:5a:12:3e:7e:1a:af:3f:82:97:a4:77:
8f:ca:28:7b:cb:42:ea:93:ee:28:36:98:91:8c:29:
7f:93:60:4b:a5:14:2f:67:90:5f:a7:7a:d4:f1:81:
32:e2:c2:ff:3d:82:1a:bc:63:08:e2:d1:a6:87:d7:
ed:7e:59:84:1c:01:78:46:51:8f:bb:fe:15:e7:0f:
60:84:4c:3b:04:97:d8:eb:81:c0:2a:26:55:be:fd:
27:0f:74:42:2e:9a:4c:ee:21:74:de:29:d2:6f:fd:
66:0a:b8:6c:63:42:7a:e3:71:ca:77:82:50:c8:f5:
ce:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:68:39:DD:F4:BA:69:E2:CA:F9:C8:30:A7:C7:7B:4A:4C:29:19:50
X509v3 Authority Key Identifier:
keyid:70:F6:8C:DE:D3:9E:3E:C5:4C:EE:22:33:25:2E:F3:93:7B:A9:82:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPaM3tOePsVM7iIzJS7zk3upgo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/f0cc41-b3e7-46ff-a976-29df4e2611f1/1/cPaM3tOePsVM7iIzJS7zk3upgo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:b0:23:ef:9c:9d:15:06:e3:08:5d:f1:92:7e:40:15:3f:bb:
62:25:ba:d0:a7:49:7e:b8:c1:e7:2a:a3:29:d4:18:27:67:ff:
7c:16:23:06:dc:c8:2f:bb:5e:47:44:da:9a:8f:56:ad:d1:c0:
f4:3c:6a:e7:0a:b7:11:16:0c:e4:2e:ab:4c:f3:0f:65:b3:9c:
ac:23:c8:54:88:6a:17:8b:96:5e:66:78:35:bb:8a:cb:64:9a:
71:75:63:0a:5a:67:9e:d8:1f:af:fa:1b:87:48:49:ee:90:7a:
01:0a:9a:6d:f5:da:b0:c5:bb:c1:f9:32:08:ad:c9:b7:44:97:
5d:10:fb:72:a5:38:09:5a:09:97:a8:74:25:12:70:65:58:4c:
86:83:d1:a2:d3:a4:64:cb:eb:3f:1c:53:60:fc:3c:21:60:8c:
53:26:e1:15:97:96:3f:cf:7e:3f:b2:b9:81:cc:c2:c2:11:d3:
4a:66:d3:82:b3:d3:de:27:24:f2:79:40:80:91:10:8c:1e:44:
aa:47:e9:e4:df:ae:f5:ac:c8:67:25:3c:00:fc:29:cf:d0:71:
1f:1a:52:4f:e1:28:22:f7:bb:13:7b:45:a6:74:33:59:47:0a:
68:d0:ac:a8:40:53:9e:87:f3:91:99:9e:3b:4d:72:ed:f0:7f:
9f:f6:54:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 17:24:27 2025 by rpki-client