Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
File: 70Ku0OkbI9DNy_skrIObDb5qoEs.mft (raw, json)
Hash identifier: zy4j+I5M91ucZOpW1pLLmMNzQ90SZn4GShL2C4iDsik=
Subject key identifier: 45:97:2C:2A:37:D3:67:63:14:EE:3C:BA:B5:6D:21:DD:DC:AA:0D:B4
Authority key identifier: EF:42:AE:D0:E9:1B:23:D0:CD:CB:FB:24:AC:83:9B:0D:BE:6A:A0:4B
Certificate issuer: /CN=ef42aed0e91b23d0cdcbfb24ac839b0dbe6aa04b
Certificate serial: 019652A4FDACE44397171441DB8F235AF478
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
Manifest number: 0A72
Signing time: Sun 20 Apr 2025 10:01:06 +0000
Manifest this update: Sun 20 Apr 2025 10:01:06 +0000
Manifest next update: Mon 21 Apr 2025 10:01:06 +0000
Files and hashes: 1: 70Ku0OkbI9DNy_skrIObDb5qoEs.crl (hash: Tuqestrk2NjNpqF0CDl7ZXMBT1GwvI8XzNrXvTfdsKg=)
2: FiLJrOB6VSbXcUW10ayq5u0-45c.roa (hash: SVzm6u7ARr2O1cZhcAUWJuayXj1RRfV/z3YIwyKiXZI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:a4:fd:ac:e4:43:97:17:14:41:db:8f:23:5a:f4:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef42aed0e91b23d0cdcbfb24ac839b0dbe6aa04b
Validity
Not Before: Apr 20 10:01:06 2025 GMT
Not After : Apr 21 10:01:06 2025 GMT
Subject: CN=45972c2a37d3676314ee3cbab56d21dddcaa0db4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d0:65:e6:8b:f8:b3:8b:cb:5d:eb:c4:c8:4f:
c7:e1:9a:6b:07:d3:2b:2e:c3:14:23:1d:c7:8e:38:
2f:c1:a0:ba:3d:b1:a0:f1:91:8b:0d:ef:b4:65:70:
03:d1:8f:f1:19:44:11:51:04:84:99:7b:a6:7d:2b:
5b:ec:d4:63:bf:03:d2:e4:d5:f9:8a:2f:a8:2a:99:
72:7a:fc:ad:57:b5:7c:7d:5d:9a:53:98:fe:b8:ef:
0d:53:63:3e:02:10:e2:05:30:3d:45:4c:a8:1e:1d:
68:e5:5a:69:cd:95:c6:2b:5f:6f:29:75:2a:44:d1:
8b:b2:0b:ac:bb:74:3a:c4:b0:d2:80:56:b5:dc:91:
02:d8:37:5a:79:a4:06:50:19:f6:ba:0f:d7:2d:0b:
b2:47:33:f5:8a:58:6d:94:27:22:08:46:d4:97:77:
ad:48:dc:fd:e8:5a:ba:68:a0:6f:26:fc:c7:7b:f5:
6c:e6:54:d5:76:9a:ae:f3:06:27:e3:c6:44:ed:10:
84:d0:f8:31:77:fa:a7:ee:aa:84:a2:61:88:c9:0d:
36:fe:84:9a:69:89:02:f5:68:a0:02:8d:5a:11:5e:
0b:1c:de:93:3c:d3:64:84:85:b4:44:f7:f7:17:9c:
e7:57:d2:3d:66:8e:42:b8:d9:93:be:1e:54:76:aa:
35:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:97:2C:2A:37:D3:67:63:14:EE:3C:BA:B5:6D:21:DD:DC:AA:0D:B4
X509v3 Authority Key Identifier:
keyid:EF:42:AE:D0:E9:1B:23:D0:CD:CB:FB:24:AC:83:9B:0D:BE:6A:A0:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70Ku0OkbI9DNy_skrIObDb5qoEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/bd75a2-fc6e-4a86-9edf-669909e11ce3/1/70Ku0OkbI9DNy_skrIObDb5qoEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
da:df:4c:21:85:57:28:84:af:24:d8:18:6b:29:3d:0c:5d:76:
6e:ac:2e:1a:93:85:fe:f4:ac:e5:85:87:d4:f5:92:8b:80:5c:
4b:94:c8:99:71:f8:b5:3b:c5:5a:72:54:cd:9c:91:78:7f:1c:
17:de:b3:35:e7:b4:2c:74:67:a1:93:f3:fe:07:9b:b0:5a:1a:
bd:f7:73:91:0f:63:f8:46:d8:ec:24:09:bf:55:2c:d9:51:32:
64:85:fe:3a:ca:cf:fa:5d:26:f3:5b:07:4e:e8:ac:f1:c2:a8:
4d:76:4a:9d:15:d0:3b:e2:d9:ee:08:c1:01:3c:6c:74:b4:e4:
12:9c:c2:0c:bc:00:c9:b9:cc:cd:dd:4f:b0:be:66:36:69:f9:
27:56:0d:2e:e7:a4:17:9b:65:42:17:26:71:f8:6a:14:56:e8:
9e:66:ca:c9:a5:7d:35:9f:64:2b:69:37:66:b3:d5:8b:b6:16:
08:ad:ec:98:c0:75:07:dc:7d:5e:46:da:9d:93:f0:d2:f0:06:
cc:65:b6:33:43:ab:90:36:e5:e7:b5:47:c6:d8:54:d7:b2:86:
b9:71:07:1f:15:f5:f4:85:71:aa:e0:5f:3f:30:78:68:2c:43:
77:9c:c1:22:69:20:21:00:89:07:d4:84:98:e6:6f:a2:e1:4e:
38:ed:e6:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:07:12 2025 by rpki-client