Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
File: CWmio5Y1t5dHbx8WM66PJ78ztTM.mft (raw, json)
Hash identifier: lPgQ2rsmj+GepA0k/YQ46a0D9xIcip9hqeZbA0HE1pA=
Subject key identifier: 8A:8F:45:FE:5D:17:AA:E9:0F:5E:5D:D8:34:2F:03:EA:57:44:CA:BD
Authority key identifier: 09:69:A2:A3:96:35:B7:97:47:6F:1F:16:33:AE:8F:27:BF:33:B5:33
Certificate issuer: /CN=0969a2a39635b797476f1f1633ae8f27bf33b533
Certificate serial: 01960B9E736BF598F99DE5BE82A8318F1AED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
Manifest number: 0631
Signing time: Sun 06 Apr 2025 15:00:55 +0000
Manifest this update: Sun 06 Apr 2025 15:00:55 +0000
Manifest next update: Mon 07 Apr 2025 15:00:55 +0000
Files and hashes: 1: CWmio5Y1t5dHbx8WM66PJ78ztTM.crl (hash: U1xExhuSJ7PbRHGjcJ0+jppfZREnKDHVGMrTzXUdxQE=)
2: MzxQnXbI2W7tTUv9-GpYRiwer6Y.roa (hash: ShncGR7jcZH4xdPF/fjNQO1+bVZJWb8hKZoGUpL2aXI=)
3: NsSedmTQW8OnTTsqv3X8CBZy-xU.roa (hash: WFkKh3bAC4MDDNtqyFfpo7GUVyreugPfu/r7LcM/fN4=)
4: TeB088r0q83Xt0BxDsUFRJ09n_w.roa (hash: G48KXbKrX68pg0VWA7DNE58/xU413WQGSqX5xHVo4rY=)
5: eZ1oRKw2ZmvD0_NWa-kdmh2g-eo.roa (hash: 2jAE9EFeYAI0mBmHLdLHHE90HLI9cIG+7iKSbXwklN4=)
6: l5LQQJ1hscP11M9PGOZJoYipJjA.roa (hash: 1Qefj38Zjj0ROOLLrKtBW86/Osz3b9lr4tBY77Lptdo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 15:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0b:9e:73:6b:f5:98:f9:9d:e5:be:82:a8:31:8f:1a:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0969a2a39635b797476f1f1633ae8f27bf33b533
Validity
Not Before: Apr 6 15:00:55 2025 GMT
Not After : Apr 7 15:00:55 2025 GMT
Subject: CN=8a8f45fe5d17aae90f5e5dd8342f03ea5744cabd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5d:ea:7b:0e:68:db:d9:04:56:a7:9f:08:2c:
c9:11:89:39:0c:22:db:da:d5:ba:08:b4:43:08:77:
d7:05:22:2f:b9:a2:ad:6d:ab:03:7c:80:7f:08:f8:
e0:62:81:cf:3b:33:54:3d:84:38:15:d8:2b:26:18:
99:e1:7b:dc:07:af:19:fa:06:7a:fe:54:68:d3:30:
74:29:dc:ff:44:38:e0:cc:c6:3d:8a:d7:ed:6f:65:
db:f5:70:cc:1b:5d:a3:b5:aa:22:e3:cf:96:0e:9e:
04:4e:d6:37:95:5d:89:54:53:0e:72:6b:4e:ed:bc:
ff:ac:84:69:4c:21:32:32:e3:a4:1a:ac:74:13:ff:
2f:08:de:eb:b9:df:df:6e:6e:5e:1c:71:3b:51:56:
6a:d1:4b:29:4e:94:3e:72:25:83:64:97:7d:7c:88:
d1:b2:54:8f:fc:c7:c0:70:a8:81:d4:37:96:ed:eb:
9a:79:ec:29:cb:33:a5:4e:8c:8d:cc:be:44:29:f9:
92:2c:47:8a:68:55:9a:d0:9d:8c:33:bc:7d:2c:0d:
8a:ed:bb:a3:f3:0c:8b:f9:1e:21:db:b9:77:34:4c:
87:24:bf:2d:99:cb:65:69:37:d1:ad:b8:8e:4d:56:
f9:06:09:7c:ba:4d:81:c0:e5:5b:67:2a:14:be:95:
d2:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:8F:45:FE:5D:17:AA:E9:0F:5E:5D:D8:34:2F:03:EA:57:44:CA:BD
X509v3 Authority Key Identifier:
keyid:09:69:A2:A3:96:35:B7:97:47:6F:1F:16:33:AE:8F:27:BF:33:B5:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWmio5Y1t5dHbx8WM66PJ78ztTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/6db427-f7dc-4ea9-ae95-41490872fc4e/1/CWmio5Y1t5dHbx8WM66PJ78ztTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:94:bf:61:5d:e6:33:4a:e3:81:c6:f6:fc:92:4c:73:7a:1b:
ce:17:97:f2:33:7a:97:93:be:dd:22:07:0b:2e:3b:7e:9a:76:
40:3d:eb:b9:b9:66:2a:c7:b4:27:3a:19:4d:ab:9e:f0:d5:ef:
61:5d:07:51:5f:86:bf:ae:46:1a:7e:07:59:07:df:85:31:38:
e4:c7:02:79:ed:d9:d3:0b:e7:32:ae:84:39:93:5e:59:cf:04:
71:e5:e3:cd:7b:ee:64:cb:49:ef:d7:29:8b:88:97:b3:b8:5e:
39:e1:56:09:d3:ac:f3:5e:a7:5f:54:a4:8a:cd:2e:9e:25:22:
92:0b:18:a2:69:58:3c:4f:ba:05:05:fe:2b:82:8b:59:2e:59:
d3:6f:97:2a:63:5c:d2:85:8a:b4:7e:8d:cc:33:6c:91:cd:29:
0e:dd:44:f6:b4:45:e8:eb:b2:be:4a:17:6d:9f:05:3d:89:84:
ac:1f:0b:91:48:c3:53:c9:13:e1:c0:53:50:4f:ba:dc:68:db:
01:8b:ca:bd:42:b0:44:f8:d8:c0:4c:cb:47:26:a8:b0:6f:cf:
b6:c2:ea:06:a0:ee:80:64:da:20:e3:6a:b4:13:01:12:10:ee:
80:d1:38:e1:d9:0e:b7:2c:dc:fb:10:b7:2d:b2:1c:53:bd:e6:
d2:1f:d7:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 00:00:21 2025 by rpki-client