Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
File: RDTtvhtBAbKKviMvK88qAUiXglo.mft (raw, json)
Hash identifier: XJB2hpsPTRKBgn6C4dq5mLoVYkFowqmxR0fGDHIdWIo=
Subject key identifier: D7:05:77:B4:C5:FE:C8:66:E8:2D:2A:97:1E:37:E5:94:9D:ED:6F:7B
Authority key identifier: 44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
Certificate issuer: /CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Certificate serial: 0196440D38363057B6D58829440B9A143FA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
Manifest number: 0EE0
Signing time: Thu 17 Apr 2025 14:00:39 +0000
Manifest this update: Thu 17 Apr 2025 14:00:39 +0000
Manifest next update: Fri 18 Apr 2025 14:00:39 +0000
Files and hashes: 1: MBnjR0q6eR7PujQYuvXc6EY3kbo.roa (hash: HNqzyjDd+TtlMN5tniTDAwjj1tssNX0++6C4Wyg438o=)
2: RDTtvhtBAbKKviMvK88qAUiXglo.crl (hash: Xa6McPQt8+pB934cDf37rXDn1WnVDKsQOGI1l2sFIao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 14:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:0d:38:36:30:57:b6:d5:88:29:44:0b:9a:14:3f:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Validity
Not Before: Apr 17 14:00:39 2025 GMT
Not After : Apr 18 14:00:39 2025 GMT
Subject: CN=d70577b4c5fec866e82d2a971e37e5949ded6f7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:26:1d:87:6e:02:e2:05:1f:63:a4:84:e9:c5:
9e:2b:4a:ec:95:39:67:10:d2:ab:3d:b8:ed:dc:d3:
1e:ab:e1:be:f5:a8:a8:e7:7d:2c:f3:5b:8d:39:6e:
b3:44:09:45:7b:b2:4f:13:e9:5f:0e:90:81:db:62:
cd:bc:e8:ee:1d:d4:bd:04:8d:df:82:ee:92:49:d5:
f8:10:47:5b:c6:28:56:a6:2c:a6:0c:8b:c9:3f:ea:
ba:51:88:a2:92:72:f1:00:bf:b8:d8:ea:93:c1:d7:
b3:94:58:04:eb:d0:75:53:e9:c2:4a:96:25:f7:1b:
44:7f:61:9c:48:83:b1:28:0e:d7:ef:94:50:bd:ed:
33:f7:e6:15:e2:d5:3f:67:97:aa:b7:0e:b1:2d:98:
22:af:d6:ce:41:50:36:cb:42:65:22:3f:41:70:da:
e3:23:20:5d:54:95:24:4f:b6:19:08:b1:25:4f:37:
bb:fc:35:b2:3d:07:59:ae:2e:8f:35:e6:ae:cb:28:
35:fc:e9:7b:90:2d:23:d0:92:fa:00:b7:73:e7:52:
54:3d:52:fb:f0:11:33:3e:e4:e1:ba:bd:3c:c5:49:
95:85:db:86:74:11:a1:3a:b0:5d:bb:ee:64:b8:c8:
8a:e4:ec:cc:e3:8f:01:6a:32:22:b2:9e:a1:b8:5a:
8b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:05:77:B4:C5:FE:C8:66:E8:2D:2A:97:1E:37:E5:94:9D:ED:6F:7B
X509v3 Authority Key Identifier:
keyid:44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:0d:4a:2b:bf:2b:3d:a9:fa:6c:69:91:43:f4:1d:9b:e2:7f:
05:83:e1:07:0a:8d:df:da:b0:54:14:51:57:f7:8b:77:70:55:
87:e0:da:de:21:a5:43:48:49:7b:12:6f:01:65:0e:12:05:15:
17:b3:02:b4:ed:bc:b2:78:54:fd:53:bc:b8:f0:11:19:2e:73:
19:b0:a5:ee:9a:25:de:16:62:bd:63:03:a5:39:6b:df:e5:4e:
b8:3e:55:19:e6:89:b4:f6:8c:66:13:7c:50:a7:6b:33:eb:f7:
68:e3:bb:d5:59:eb:15:dc:90:85:c0:d7:73:83:0b:15:b0:cc:
db:2a:e9:a3:7f:ff:44:3f:f1:d7:f4:49:16:ac:56:df:15:59:
91:7d:fd:6e:e4:70:81:42:9a:12:27:c8:d3:93:82:32:8f:07:
03:b8:73:fc:40:70:0b:f6:2a:e5:47:04:41:f2:fb:0e:af:42:
76:c5:56:fb:db:f5:c6:fe:02:45:af:45:2a:7a:97:fa:8e:87:
3e:c6:54:93:4a:c1:c3:00:d5:61:b7:d5:2d:2a:ea:fb:6c:15:
7f:aa:dc:6d:80:67:35:c0:e2:ac:ba:09:84:40:4a:30:cc:74:
8d:8b:96:1e:2b:77:54:3d:93:97:f1:84:d3:ab:15:43:fa:56:
48:65:e1:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:32:33 2025 by rpki-client