Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/b64a59-9fed-41da-b835-9ae8809c8515/1/f3YJUscz9vLuklTtzRTg2qeLOIw.mft
File: f3YJUscz9vLuklTtzRTg2qeLOIw.mft (raw, json)
Hash identifier: KLheelxOWC8m6XiGSrZvQXrZ28WsxcVdtJnf2fjbxEc=
Subject key identifier: 63:BB:A0:E4:1B:3D:C8:A4:47:D2:91:3E:FE:B4:F4:17:08:42:C1:19
Authority key identifier: 7F:76:09:52:C7:33:F6:F2:EE:92:54:ED:CD:14:E0:DA:A7:8B:38:8C
Certificate issuer: /CN=7f760952c733f6f2ee9254edcd14e0daa78b388c
Certificate serial: 01959073ABF63F8B3D78EB60361F80C3CE35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f3YJUscz9vLuklTtzRTg2qeLOIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/b64a59-9fed-41da-b835-9ae8809c8515/1/f3YJUscz9vLuklTtzRTg2qeLOIw.mft
Manifest number: 027C
Signing time: Thu 13 Mar 2025 17:00:54 +0000
Manifest this update: Thu 13 Mar 2025 17:00:54 +0000
Manifest next update: Fri 14 Mar 2025 17:00:54 +0000
Files and hashes: 1: ZCBQTSRDp2Vji2C9hSrbiPFq7OY.roa (hash: PB9NVbc1SKDdgUUB+S0NaDZM0GQCTky3OkA9OktttX0=)
2: f3YJUscz9vLuklTtzRTg2qeLOIw.crl (hash: 55RXBM0XRkYUaPX44BaUQB3h8k+n2EbKYA7v+B9exKA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/b64a59-9fed-41da-b835-9ae8809c8515/1/f3YJUscz9vLuklTtzRTg2qeLOIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/b64a59-9fed-41da-b835-9ae8809c8515/1/f3YJUscz9vLuklTtzRTg2qeLOIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/f3YJUscz9vLuklTtzRTg2qeLOIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 15:28:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:73:ab:f6:3f:8b:3d:78:eb:60:36:1f:80:c3:ce:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f760952c733f6f2ee9254edcd14e0daa78b388c
Validity
Not Before: Mar 13 17:00:54 2025 GMT
Not After : Mar 14 17:00:54 2025 GMT
Subject: CN=63bba0e41b3dc8a447d2913efeb4f4170842c119
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:05:e3:60:c0:9d:78:99:5e:bb:9a:41:38:30:
b9:a3:57:c8:38:af:df:14:c8:41:a0:98:e5:5f:8d:
6d:85:bc:f4:52:bd:59:79:6d:f8:44:87:1c:d6:60:
ec:01:78:5f:e9:4b:d2:d5:bd:f6:fe:bc:c5:36:93:
18:a1:52:8f:19:5f:c2:8f:25:4f:ba:5a:ba:2e:96:
df:57:b3:81:46:4d:9a:84:36:82:7b:a5:b3:43:f0:
18:ac:4d:fa:7f:63:4e:40:dd:51:fa:25:d6:0a:bd:
a2:2b:7b:16:22:96:fa:42:25:fd:14:36:61:5f:89:
62:74:4e:51:45:7f:fb:6c:a0:eb:71:fc:f8:fb:3b:
8a:4a:e3:43:f9:9d:08:1d:23:68:4b:05:6d:35:cc:
8d:51:e2:8a:b0:b4:bf:da:19:9d:0b:58:2f:db:60:
aa:13:f5:28:08:18:44:78:a9:ba:d3:62:3e:44:a2:
02:b0:22:c5:e4:20:3c:7a:65:c4:76:2e:f4:fd:ec:
26:82:92:43:57:a4:13:ca:3c:a8:08:30:0b:ee:2a:
79:c4:ac:99:5c:8a:14:b0:83:67:06:9c:30:89:24:
cb:49:a8:dc:76:fb:a4:69:1f:52:d5:12:fb:d3:64:
a5:c7:79:7e:71:b1:30:26:58:22:f8:8b:86:1e:4d:
9e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:BB:A0:E4:1B:3D:C8:A4:47:D2:91:3E:FE:B4:F4:17:08:42:C1:19
X509v3 Authority Key Identifier:
keyid:7F:76:09:52:C7:33:F6:F2:EE:92:54:ED:CD:14:E0:DA:A7:8B:38:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3YJUscz9vLuklTtzRTg2qeLOIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b64a59-9fed-41da-b835-9ae8809c8515/1/f3YJUscz9vLuklTtzRTg2qeLOIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/b64a59-9fed-41da-b835-9ae8809c8515/1/f3YJUscz9vLuklTtzRTg2qeLOIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:9c:17:c1:f4:86:33:2d:a7:71:fd:9b:b1:c0:68:32:d4:51:
e7:1c:82:8c:20:61:d7:d1:56:d6:0c:1d:41:64:a2:c3:46:2f:
b0:65:73:11:44:da:4b:37:f3:e9:61:bb:21:a6:66:d7:1f:86:
13:63:65:41:af:98:e5:39:62:14:d7:6e:fc:4e:1c:7e:5d:15:
f3:45:3a:6b:b9:35:8e:3d:a9:b4:8b:f0:52:ff:19:d9:a9:d1:
72:0d:a4:f8:1c:d6:df:3c:8b:a0:e6:a7:f4:38:d1:53:12:f3:
e2:6d:92:31:ee:8c:97:6a:f2:a3:18:74:bc:d1:68:33:c5:9f:
f2:03:1a:28:a8:b3:0f:06:10:85:db:1f:da:d5:48:99:93:bd:
58:ac:59:47:e2:02:b8:bc:88:49:7e:e1:c5:5c:d0:d9:c0:bd:
d0:8c:c4:37:ec:b9:c5:8d:76:00:2f:79:a9:7f:c9:20:35:f4:
d9:32:44:24:3f:d3:83:88:77:22:a5:0d:ca:98:f4:f5:01:3a:
34:9c:c1:e7:b1:86:76:98:72:52:30:31:9e:97:1b:b2:4d:70:
e2:67:30:3c:27:df:1a:7d:ea:17:d7:57:a2:1d:33:71:a3:b5:
d6:20:69:f6:54:85:83:53:46:90:7e:c1:8d:40:2d:ef:ea:b3:
f9:f8:61:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:25:31 2025 by rpki-client