Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
File: so7x9PiCePTfGec-M4HOzXjgacE.mft (raw, json)
Hash identifier: omnLlfbfEmoiVTskgbm/aF+mUI8dwX8nWNUQ7RqBCuo=
Subject key identifier: 72:68:15:2B:3B:66:FC:28:B6:22:AC:74:A2:A9:67:94:94:6C:E1:BF
Authority key identifier: B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
Certificate issuer: /CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Certificate serial: 019650489051329BF71BDD522FE045D72F60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
Manifest number: 01A4
Signing time: Sat 19 Apr 2025 23:00:54 +0000
Manifest this update: Sat 19 Apr 2025 23:00:54 +0000
Manifest next update: Sun 20 Apr 2025 23:00:54 +0000
Files and hashes: 1: ZWC54UPrMHyZ6gth2IDDnRYsMDY.roa (hash: 4Yk1QA2QugshfW9geeysUTQ4Sub4Aja/bv1m3JJnrLU=)
2: so7x9PiCePTfGec-M4HOzXjgacE.crl (hash: czIbMOaJn/sMWCFKzyfgUuVG5/F+PsHJyl6dGK1VtF0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:48:90:51:32:9b:f7:1b:dd:52:2f:e0:45:d7:2f:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Validity
Not Before: Apr 19 23:00:54 2025 GMT
Not After : Apr 20 23:00:54 2025 GMT
Subject: CN=7268152b3b66fc28b622ac74a2a96794946ce1bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f1:2f:d2:3e:8e:70:c7:46:db:13:71:df:0d:
6d:b3:8e:4a:29:7c:e6:72:e9:df:20:f0:2f:32:c9:
ff:7c:ab:78:7f:7f:3e:25:fd:3e:0c:de:3a:69:68:
c2:66:70:31:b7:6b:ad:33:33:aa:1f:81:c3:3d:b0:
55:45:43:fb:3b:f7:b4:4b:b7:4e:8a:19:00:75:5b:
eb:ba:37:a1:bb:6b:03:73:9b:7c:c8:75:77:be:e6:
dc:a1:d7:02:d2:bb:65:04:c5:7d:18:08:c7:58:d0:
c4:0c:17:a9:1e:0a:1b:56:f5:f2:25:7c:b5:16:70:
60:3c:02:d6:ba:63:6f:50:b9:dc:ec:aa:d9:c8:9b:
74:72:2e:04:a5:7b:c2:ba:1e:f0:af:cf:ac:8c:26:
4f:5a:86:80:03:dc:37:df:29:6d:b7:c6:94:cd:76:
b9:b4:ba:a6:1b:01:b7:36:7b:0f:c8:22:b3:e6:01:
11:72:dd:8d:8e:e4:5b:88:44:07:d9:e2:9c:f4:10:
c7:fe:75:55:e8:c6:23:06:24:73:5d:8f:45:95:9f:
30:b6:a4:80:19:1f:a1:63:2e:03:6d:27:6d:f7:1b:
54:27:bf:87:eb:3b:d3:79:98:f3:ac:09:8d:28:29:
58:4d:4b:8a:31:6a:af:0a:f9:e2:4a:ad:32:b3:f1:
47:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:68:15:2B:3B:66:FC:28:B6:22:AC:74:A2:A9:67:94:94:6C:E1:BF
X509v3 Authority Key Identifier:
keyid:B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:3a:b8:82:7f:7d:d9:bf:93:48:65:6f:9f:e1:ec:cd:cd:11:
7e:07:69:e8:10:64:97:9b:86:39:65:5d:58:06:6e:1a:c8:4a:
24:71:ff:fc:98:f9:68:09:6e:7a:5e:dc:eb:ca:48:a0:d0:6a:
80:19:18:de:50:e2:5f:05:f1:d8:36:52:df:91:e1:7b:59:e3:
97:a4:ee:4c:49:f2:d1:d5:7d:ad:9d:61:77:3f:b1:7f:88:5c:
4b:b1:5d:66:3d:3a:2e:2a:de:3d:54:71:d5:e8:6b:b8:06:7d:
a8:47:12:5f:0b:cf:f6:8b:d5:03:61:51:b1:7f:e4:16:9a:cb:
9d:20:56:1b:12:b6:d7:c2:c7:86:72:3f:de:08:1b:00:dc:8b:
53:d0:5a:f1:b7:09:b9:d8:9c:16:67:ec:1f:73:34:b5:75:1c:
84:4c:84:b1:05:ae:ca:f5:23:2d:86:1f:df:fe:ad:dd:82:92:
1e:d8:97:e9:f2:94:fc:ab:b8:42:87:43:94:a6:b1:d8:3a:c7:
1e:03:09:81:79:f6:b8:25:71:5f:f8:22:92:14:93:cd:ad:de:
d7:4a:0a:c8:d5:8e:a7:a8:4f:41:dd:c7:1a:27:a2:cd:6f:b4:
e9:fb:74:44:5e:f6:c1:4c:e2:a5:0b:70:a3:ac:6b:7f:ea:f1:
9b:93:4d:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:14:37 2025 by rpki-client