Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
File: v5gt73eibXzBlHOzpAZNzFIX5HE.mft (raw, json)
Hash identifier: Vo1wMyIiabEcVKsstGD9px7/e+q3127KJYkhHiy0fjM=
Subject key identifier: C3:C0:84:DF:2C:09:64:C1:80:6E:6C:BA:0D:49:45:75:2E:DC:30:29
Authority key identifier: BF:98:2D:EF:77:A2:6D:7C:C1:94:73:B3:A4:06:4D:CC:52:17:E4:71
Certificate issuer: /CN=bf982def77a26d7cc19473b3a4064dcc5217e471
Certificate serial: 01964C6B349D1F2E85CC0ABDA10E4AF41887
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
Manifest number: 14FA
Signing time: Sat 19 Apr 2025 05:00:16 +0000
Manifest this update: Sat 19 Apr 2025 05:00:16 +0000
Manifest next update: Sun 20 Apr 2025 05:00:16 +0000
Files and hashes: 1: JoXkjArh1eQOEzJmDg5eyKhlAZU.roa (hash: IpnTumi25Jm35YnmbE0mTeFwDsMDbPll4BvRMHinz6I=)
2: v5gt73eibXzBlHOzpAZNzFIX5HE.crl (hash: 64vl9B+XLY+fTPkqS9zhMhpafPgsUkRJhVQur9P/I/Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:6b:34:9d:1f:2e:85:cc:0a:bd:a1:0e:4a:f4:18:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf982def77a26d7cc19473b3a4064dcc5217e471
Validity
Not Before: Apr 19 05:00:16 2025 GMT
Not After : Apr 20 05:00:16 2025 GMT
Subject: CN=c3c084df2c0964c1806e6cba0d4945752edc3029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:48:48:bf:f0:e7:86:ce:4a:af:8a:f2:d8:af:
55:b2:78:07:4c:52:f4:1e:b8:fc:3b:79:d8:e7:65:
27:c0:31:84:7e:e8:2e:8c:1c:73:10:bf:ab:5f:06:
2c:1f:29:19:bd:05:a8:73:eb:01:7a:4e:a5:b2:6e:
5b:9d:df:98:ef:5b:2f:80:14:0e:61:03:89:92:ea:
5b:e4:2d:17:a0:f1:2c:f1:ec:fe:91:6f:72:ef:ea:
8e:57:e1:4f:05:a5:a1:47:67:27:a8:2f:9d:fa:9e:
6f:31:0f:76:d9:02:08:98:4e:25:6a:df:fa:ab:78:
b3:9f:a1:1a:f4:cb:a1:a1:25:56:7a:e0:58:75:ed:
22:31:0e:04:d2:ec:12:d7:3d:62:cf:13:4b:4c:4f:
96:9f:80:a1:dd:95:82:a1:e6:c6:b4:a6:fb:01:f1:
e2:f2:4f:ba:d8:19:a1:a9:51:cd:92:0c:9c:8b:91:
38:bc:2c:93:6c:1d:ad:37:c4:85:35:3f:b0:a1:2f:
3b:66:d0:7c:e3:be:2b:d0:80:84:5d:c3:71:be:bd:
58:3f:6d:51:b3:27:dc:aa:13:09:e8:a0:09:96:92:
d1:ab:8b:b3:69:85:5d:24:72:0d:37:87:30:fa:0e:
3f:c0:9f:41:be:d5:05:b9:67:4b:bf:cb:44:df:c1:
43:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:C0:84:DF:2C:09:64:C1:80:6E:6C:BA:0D:49:45:75:2E:DC:30:29
X509v3 Authority Key Identifier:
keyid:BF:98:2D:EF:77:A2:6D:7C:C1:94:73:B3:A4:06:4D:CC:52:17:E4:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v5gt73eibXzBlHOzpAZNzFIX5HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/afa091-b16f-4527-8b00-1ddac2b08404/1/v5gt73eibXzBlHOzpAZNzFIX5HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:2c:64:23:58:13:a5:85:33:db:ef:85:06:62:fd:e3:27:51:
ec:62:a9:5b:36:40:3a:e9:15:81:ff:69:ac:ed:6f:97:0f:ba:
92:d4:a8:3a:b3:8d:5d:f2:66:3f:3b:77:a9:1c:b8:d4:56:07:
1f:ac:0b:78:04:9f:bf:44:8b:62:6c:ef:ef:d5:6f:24:ca:94:
c0:b7:c2:d8:eb:21:19:2b:92:26:45:df:2c:dd:a2:35:11:ea:
80:6d:90:7b:90:36:f0:88:49:bf:03:1d:83:ef:47:b4:45:01:
69:65:49:e3:42:38:26:79:0c:27:bd:f8:c6:78:58:fa:86:b3:
2c:86:87:32:43:e3:ef:77:a5:92:20:a9:5e:32:a2:5f:60:65:
bc:ed:03:f6:82:b5:4e:33:fa:78:60:7a:68:17:86:78:9d:7d:
d8:ba:8f:4b:77:93:e6:60:e7:9b:b0:74:9e:6b:d1:30:2e:7d:
39:0d:c8:35:dd:e4:80:eb:25:0f:13:bf:97:d9:c3:1e:a2:8c:
dc:72:f8:5c:c2:46:f7:01:7c:65:8d:9c:7c:f3:98:ac:83:cb:
0d:59:2a:11:42:35:59:8e:0d:45:2c:a4:20:ce:79:fd:74:79:
3c:08:c7:3a:b6:9e:e4:74:98:f8:3f:35:1d:64:8b:79:92:36:
c4:30:f0:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:36:34 2025 by rpki-client