Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
File: rONjRGSGG9S_jFvH48m_09JGpN0.mft (raw, json)
Hash identifier: hRYN3T2UKCicHJIk3VathaMr8N99IIBrcLOhOBXKiEI=
Subject key identifier: 68:6F:21:9D:84:DF:50:1D:A7:92:17:3D:2C:C0:4C:AD:4B:11:8A:37
Authority key identifier: AC:E3:63:44:64:86:1B:D4:BF:8C:5B:C7:E3:C9:BF:D3:D2:46:A4:DD
Certificate issuer: /CN=ace3634464861bd4bf8c5bc7e3c9bfd3d246a4dd
Certificate serial: 01963D2F78D30F3F85F1B979BDEC048F2F2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
Manifest number: 14F2
Signing time: Wed 16 Apr 2025 06:00:43 +0000
Manifest this update: Wed 16 Apr 2025 06:00:43 +0000
Manifest next update: Thu 17 Apr 2025 06:00:43 +0000
Files and hashes: 1: Obsiy3NGEoUjL-DLQo0yhLx4KAI.roa (hash: p9j2sVfI93AXLXtc3YNcT/Xcs3W13x3825+kRDw3Ko8=)
2: rONjRGSGG9S_jFvH48m_09JGpN0.crl (hash: YwPuqi9d8WS7OZ1XCguv8UjVVS4gPKWLLtVh8Tb/Rhg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3d:2f:78:d3:0f:3f:85:f1:b9:79:bd:ec:04:8f:2f:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ace3634464861bd4bf8c5bc7e3c9bfd3d246a4dd
Validity
Not Before: Apr 16 06:00:43 2025 GMT
Not After : Apr 17 06:00:43 2025 GMT
Subject: CN=686f219d84df501da792173d2cc04cad4b118a37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:0b:27:bc:9d:36:44:cd:e0:f8:72:74:3f:85:
1b:9f:d6:1c:cf:61:e4:f3:81:34:1e:e6:62:7a:c3:
35:63:35:70:e3:06:a1:3d:18:cd:32:f9:09:bd:9d:
83:1d:d9:21:21:2f:af:57:fe:3e:da:39:3b:f7:9d:
a7:9d:47:c8:87:f3:0a:f5:de:9c:97:52:22:58:8b:
a7:36:f9:e0:fd:48:63:f5:69:9a:57:b0:d9:46:5a:
51:e4:a7:19:12:d6:57:a5:13:33:20:73:65:d0:49:
0b:1c:94:f2:6e:24:ef:55:fc:f0:16:1d:e0:99:f6:
7e:c1:df:dd:da:10:1d:45:fb:73:5d:3c:2f:61:df:
50:6f:ff:e8:a4:0f:fa:8b:34:a5:c1:30:ec:3e:e3:
7c:67:a7:92:8b:94:af:32:e0:b3:de:9a:a2:c7:57:
3c:68:cd:21:6d:44:6d:6f:6a:3c:2b:51:cc:d2:68:
ab:d1:35:51:88:9d:f9:40:be:0f:0c:9f:d9:98:c7:
00:fb:36:c4:1e:5b:8b:7a:bb:40:5f:ea:c9:88:98:
12:39:2b:bb:e0:ad:61:e1:58:91:e0:52:1f:7f:75:
5d:42:8f:d7:01:22:d1:6f:79:8b:06:67:b7:40:5b:
7e:bf:d9:a1:51:63:d0:f9:25:66:06:66:48:43:b6:
be:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:6F:21:9D:84:DF:50:1D:A7:92:17:3D:2C:C0:4C:AD:4B:11:8A:37
X509v3 Authority Key Identifier:
keyid:AC:E3:63:44:64:86:1B:D4:BF:8C:5B:C7:E3:C9:BF:D3:D2:46:A4:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:ed:4f:fc:52:8e:63:49:0d:cf:da:e1:0c:b6:84:a0:10:0b:
6c:bb:1c:34:cd:d0:dc:81:9c:c8:3d:00:f5:3d:29:8f:df:39:
d9:e5:a3:97:0e:dc:37:83:42:b0:7b:7f:6a:11:8c:97:96:d9:
af:87:40:53:1d:66:74:5a:5e:ef:64:78:45:b1:b4:b9:75:fd:
ea:a7:8b:47:c0:ea:b7:61:8f:3f:89:07:60:d0:dc:d8:27:46:
d3:eb:20:be:be:5d:ee:3f:4c:97:2a:cf:60:e7:f2:46:fe:a6:
71:c4:96:af:4a:fd:5e:df:3b:eb:3b:7c:a0:56:98:5b:93:48:
f8:89:e7:1e:0f:ca:b2:ef:22:24:12:84:44:7d:9f:53:d7:f2:
1c:03:75:46:e6:74:25:2b:28:1a:03:38:28:77:28:2c:e8:30:
91:ca:52:b7:95:19:e9:d1:42:fc:17:01:c4:8d:e6:af:83:c3:
d1:a3:06:6a:49:70:58:8c:b7:58:ee:82:40:76:92:51:6d:19:
c4:ea:11:94:e0:e7:b8:23:b7:c3:ea:8e:ae:01:3a:77:d2:55:
28:07:e6:f5:cf:1c:53:f7:0e:64:8a:25:4d:23:29:a0:fd:e0:
e4:85:ae:a8:6a:50:82:7b:7c:ef:2f:a0:21:35:cd:91:39:a7:
82:93:8b:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 09:17:47 2025 by rpki-client