Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft
File: diY1mUnOzyQYxaLbIayrhd2Rk9g.mft (raw, json)
Hash identifier: 281XGCshHMsotV/gUyEEBfdCYSqLp3qQzViGADh7tAc=
Subject key identifier: 4D:31:20:FC:D3:4B:C6:ED:AC:5C:AF:6D:4C:AA:7C:01:47:9F:AB:80
Authority key identifier: 76:26:35:99:49:CE:CF:24:18:C5:A2:DB:21:AC:AB:85:DD:91:93:D8
Certificate issuer: /CN=7626359949cecf2418c5a2db21acab85dd9193d8
Certificate serial: 01965011849623957DEA77386A6A7DCE788F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/diY1mUnOzyQYxaLbIayrhd2Rk9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft
Manifest number: 14FC
Signing time: Sat 19 Apr 2025 22:00:47 +0000
Manifest this update: Sat 19 Apr 2025 22:00:47 +0000
Manifest next update: Sun 20 Apr 2025 22:00:47 +0000
Files and hashes: 1: 808eb-9aLu41roSMSaHO8r-sCJ0.roa (hash: rCM5eGiyr6wuq7y0i6XZdzgH6YJOrFxOSIfhu9ZqAu0=)
2: diY1mUnOzyQYxaLbIayrhd2Rk9g.crl (hash: 0SlDlrVFwTga8psx63FJeQ19II9bWtXPYZ3ZrBOPdz4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/diY1mUnOzyQYxaLbIayrhd2Rk9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:11:84:96:23:95:7d:ea:77:38:6a:6a:7d:ce:78:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7626359949cecf2418c5a2db21acab85dd9193d8
Validity
Not Before: Apr 19 22:00:47 2025 GMT
Not After : Apr 20 22:00:47 2025 GMT
Subject: CN=4d3120fcd34bc6edac5caf6d4caa7c01479fab80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:18:e9:c1:2e:f6:cf:55:df:18:21:23:3b:b2:
81:8b:e6:28:77:7c:a4:0f:35:1f:5a:75:de:c5:80:
2c:d4:a0:67:c9:10:04:b8:4a:70:7f:66:10:75:91:
f4:0f:82:f1:b1:38:5a:21:17:b0:eb:0f:cd:21:e0:
b8:a7:ef:fb:94:e8:36:da:ce:e9:67:69:ab:ef:21:
84:d5:a0:b4:37:87:05:85:e7:3f:de:d8:34:b6:f8:
59:f6:52:42:ea:e5:90:5c:62:70:92:69:f1:f0:62:
4a:43:d2:7f:e1:fa:7f:42:32:2f:31:24:85:a6:b6:
46:54:20:fa:b0:0c:48:bf:1a:a6:df:5c:18:95:a9:
13:2b:83:10:a0:67:5f:ca:b9:f8:0e:db:c5:57:89:
b5:40:38:c6:09:83:22:3a:08:d7:a3:8a:3c:02:78:
a3:e1:e9:f5:dc:e1:32:33:df:a3:4d:a5:2d:d3:17:
ca:d8:2d:8d:e2:4d:04:d6:4e:d2:15:42:f4:1f:d0:
29:06:0f:39:d4:6a:51:94:d5:85:a4:fb:c1:c3:63:
b8:b3:48:23:39:35:01:ad:74:ce:d6:ed:51:43:0e:
1f:3a:83:e3:65:3d:ba:0d:11:de:3d:fd:78:33:fa:
72:83:d8:dc:06:9e:10:3b:5b:2b:c9:1a:81:6c:c9:
8a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:31:20:FC:D3:4B:C6:ED:AC:5C:AF:6D:4C:AA:7C:01:47:9F:AB:80
X509v3 Authority Key Identifier:
keyid:76:26:35:99:49:CE:CF:24:18:C5:A2:DB:21:AC:AB:85:DD:91:93:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/diY1mUnOzyQYxaLbIayrhd2Rk9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:c6:43:a9:bf:02:02:3d:7e:c0:8f:83:70:e5:6a:a2:d0:52:
de:f7:6d:d3:1c:39:82:45:43:b6:ab:04:92:c9:e6:f1:ff:5a:
05:b7:d2:38:a9:eb:20:1d:d3:3a:91:60:55:cb:91:bb:a9:bc:
74:22:5d:81:4e:ae:71:57:31:b9:f8:70:db:09:91:5e:63:90:
16:f4:2f:3c:86:3c:ce:c6:92:dc:84:90:89:55:86:7a:c0:a4:
96:ea:33:78:f1:98:fc:9e:ad:f0:8f:7a:d3:23:aa:b4:9a:1b:
ee:e2:46:1e:60:9e:6a:03:9a:c2:b2:85:98:d7:33:4d:f1:0f:
82:b8:06:54:b9:a8:dc:99:59:d9:e8:f4:c9:c0:da:51:b6:dd:
03:e2:a5:59:b2:45:93:1f:f9:93:59:8c:ad:eb:6c:01:53:bb:
a3:5e:ca:69:e1:35:c8:92:57:7c:3a:94:8f:c9:b9:a9:1c:cb:
c1:12:16:ad:74:ad:ac:4e:c9:76:20:da:c4:92:fc:57:77:ba:
8e:ba:ab:5b:3c:c9:15:5b:6c:d8:cd:78:0b:66:82:49:e1:1b:
bd:b9:ef:51:00:bb:89:11:05:eb:f3:4e:1c:fb:0d:62:46:f5:
bd:fe:82:de:dd:4c:91:43:f3:2e:e4:60:b8:39:a7:73:25:ea:
04:85:8b:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:18:25 2025 by rpki-client