Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.mft
File: dHWiyViPxpXSdUKD3NPRI9H3eBE.mft (raw, json)
Hash identifier: IKTIag71I0SZtuShmQJiACxcBRoHr+ULsjs7WSRdapg=
Subject key identifier: D4:2E:8C:3D:CD:7F:37:29:F1:DF:AA:4F:FE:D0:FC:12:39:31:E4:57
Authority key identifier: 74:75:A2:C9:58:8F:C6:95:D2:75:42:83:DC:D3:D1:23:D1:F7:78:11
Certificate issuer: /CN=7475a2c9588fc695d2754283dcd3d123d1f77811
Certificate serial: 019650484B6910D087230AFA9C78200E7AEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHWiyViPxpXSdUKD3NPRI9H3eBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.mft
Manifest number: 14FC
Signing time: Sat 19 Apr 2025 23:00:37 +0000
Manifest this update: Sat 19 Apr 2025 23:00:37 +0000
Manifest next update: Sun 20 Apr 2025 23:00:37 +0000
Files and hashes: 1: byfAz36QPO1zWRGDAvBxGCJUgUc.roa (hash: cj5k9JTRqENUIcOxIhQN0l2jcQzpbWQBrAEBDWIt2vI=)
2: dHWiyViPxpXSdUKD3NPRI9H3eBE.crl (hash: hirv+JTr4U0cVcTOlJmhDeqhn/QCFhPur4QsFFhCL/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/dHWiyViPxpXSdUKD3NPRI9H3eBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:48:4b:69:10:d0:87:23:0a:fa:9c:78:20:0e:7a:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7475a2c9588fc695d2754283dcd3d123d1f77811
Validity
Not Before: Apr 19 23:00:37 2025 GMT
Not After : Apr 20 23:00:37 2025 GMT
Subject: CN=d42e8c3dcd7f3729f1dfaa4ffed0fc123931e457
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:03:c8:60:80:1d:e6:42:06:f2:54:bf:84:6c:
a6:3b:11:43:ce:bf:50:a6:2d:e0:b5:e1:4b:83:f3:
35:bf:0a:78:8d:78:0e:36:fc:b5:e4:b2:db:da:ba:
6a:1c:ee:57:5d:a1:31:b5:e9:39:6e:29:5c:11:ec:
8f:a0:ca:ec:70:46:d4:9d:49:18:ca:e3:65:5f:3c:
1f:80:48:7b:03:c2:2d:2f:e3:52:ac:a2:c5:c4:ec:
30:40:73:e3:f2:e8:c7:c9:28:12:ca:1d:19:fb:8e:
4a:79:0c:03:d0:c0:b0:be:5e:06:48:a6:8a:bb:da:
13:39:66:2e:e4:c5:e4:71:0e:f5:aa:0b:01:67:c5:
04:4a:fc:83:79:9f:a3:67:3e:3a:5e:7f:b3:48:1f:
fa:6b:73:3b:b8:cf:ce:28:a4:dd:ad:d9:42:79:8b:
ea:31:2b:57:20:3c:72:e5:cd:e3:53:53:d4:4d:af:
e2:fc:19:42:60:ff:4c:07:a8:6e:7e:4f:83:ed:04:
a1:23:30:61:d2:78:ca:0d:3e:e4:4e:ff:4e:83:7d:
48:64:f2:53:20:4d:c4:aa:ac:ba:c9:ab:e9:f5:4f:
67:e1:cc:0c:92:d0:37:44:2d:e9:6e:b0:45:71:f2:
4f:6f:c1:58:bf:79:83:1a:b5:fe:3d:dd:c3:3d:89:
7e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:2E:8C:3D:CD:7F:37:29:F1:DF:AA:4F:FE:D0:FC:12:39:31:E4:57
X509v3 Authority Key Identifier:
keyid:74:75:A2:C9:58:8F:C6:95:D2:75:42:83:DC:D3:D1:23:D1:F7:78:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHWiyViPxpXSdUKD3NPRI9H3eBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2898e6-0d79-454e-ab54-40be0c463b90/1/dHWiyViPxpXSdUKD3NPRI9H3eBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:64:27:5b:c3:7a:ce:86:3c:ef:16:9c:97:9c:4a:fb:bc:ab:
c7:1f:71:ea:a2:83:d3:74:bf:f6:95:55:65:f1:dd:23:56:a2:
c2:f1:e0:04:91:c2:28:ca:78:a5:83:ae:52:7c:f6:1e:3e:9a:
a5:c2:69:09:12:ce:29:19:72:2a:64:65:8a:ef:41:e0:12:84:
be:66:39:0f:16:1f:80:94:18:ad:ea:d9:a5:ac:62:fa:26:41:
8a:4e:7b:5b:30:e9:87:af:8f:3d:07:e2:d6:c7:2b:7d:47:32:
81:ff:ee:c0:9b:6f:d3:ad:7e:7c:21:9e:07:be:d7:a4:a1:73:
d4:29:10:cc:68:1f:51:99:f3:4e:ef:89:9a:9c:e1:46:42:54:
ac:f5:26:bb:28:f6:e0:02:d2:02:28:6b:33:60:78:be:af:74:
d1:33:51:4b:52:52:79:e1:bb:32:ed:dc:d0:15:bc:65:f1:4b:
eb:af:14:21:cf:03:42:99:dd:50:58:b8:e9:e9:9e:e3:96:06:
28:eb:96:75:68:9a:69:07:bf:cc:b6:bc:c4:70:62:b8:60:7b:
00:1d:85:1b:d1:e5:a9:db:50:1a:f7:6e:dc:2d:91:cc:49:f5:
40:f2:37:07:1b:4c:e1:5c:ad:4e:94:2e:af:99:2a:54:4d:6b:
0f:f5:54:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:16:58 2025 by rpki-client