Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.mft
File: sXQMTAefLR3uhUOfgngbm651apU.mft (raw, json)
Hash identifier: cgOi8MuPcPACskIkov2bUk0JBVLgtfe2QBQt0VSRXk8=
Subject key identifier: 35:72:31:82:CC:08:44:4E:A6:71:8B:29:05:26:6D:20:02:2A:DB:85
Authority key identifier: B1:74:0C:4C:07:9F:2D:1D:EE:85:43:9F:82:78:1B:9B:AE:75:6A:95
Certificate issuer: /CN=b1740c4c079f2d1dee85439f82781b9bae756a95
Certificate serial: 019645568C572F2E82AA76ECA0C1D701AEA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXQMTAefLR3uhUOfgngbm651apU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.mft
Manifest number: 1142
Signing time: Thu 17 Apr 2025 20:00:22 +0000
Manifest this update: Thu 17 Apr 2025 20:00:22 +0000
Manifest next update: Fri 18 Apr 2025 20:00:22 +0000
Files and hashes: 1: 0kGm7IS6foM84ApNB5wMBZmcs70.roa (hash: fsNAu7RVtrbBsKEN64Ou91zqn3ieSIW0lwlDv3luCl0=)
2: QHGLz4vDf8HU0PXuv58AHJKDNwE.roa (hash: zsAsJqx3Xlx/j+LLE8QbsIeKt4A9wuocERvf2nTmf7A=)
3: Sz2kPMld2S0NhbWe3VBXUQg4E_g.roa (hash: CgZe2V9k88f5ug37ai2G7ohUxSeYSwTeyOJXFySNdfc=)
4: sXQMTAefLR3uhUOfgngbm651apU.crl (hash: ItAyOx4BM2j+JgzdcJxuCHctuB6L8WDZ8GFSEgitmHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXQMTAefLR3uhUOfgngbm651apU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:56:8c:57:2f:2e:82:aa:76:ec:a0:c1:d7:01:ae:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1740c4c079f2d1dee85439f82781b9bae756a95
Validity
Not Before: Apr 17 20:00:22 2025 GMT
Not After : Apr 18 20:00:22 2025 GMT
Subject: CN=35723182cc08444ea6718b2905266d20022adb85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c0:63:18:33:26:e2:88:23:ea:e8:88:87:ff:
9e:2c:62:34:ab:d1:ee:64:c8:cb:5f:71:93:bc:c0:
bd:59:ed:04:80:56:aa:e4:61:e7:16:ae:80:59:d4:
0d:ec:17:d4:74:c7:d5:62:bc:4b:ac:ba:55:01:c9:
cd:3b:a2:fb:95:ca:42:f4:6f:ee:08:e2:25:cf:07:
15:13:98:8f:7b:88:78:ee:a3:df:3e:5c:54:04:7e:
fc:3e:e2:c2:cc:6a:8b:0c:06:86:3e:76:42:b7:31:
00:91:0d:b5:ea:df:e4:e3:94:c5:2f:89:7b:9e:06:
60:08:6f:73:13:ad:8f:79:45:23:19:71:2f:82:e9:
da:26:e3:cb:73:0a:1c:2e:3c:03:50:d3:dc:d5:d2:
1a:97:55:14:ac:2f:93:f3:fa:ae:8f:35:2f:5a:ef:
e6:f3:f0:61:cb:dd:ba:3e:1f:2f:ab:87:61:f8:86:
91:82:80:33:c2:ba:3e:54:58:db:26:ff:98:a1:e6:
f0:35:ba:4e:2c:64:6c:37:71:a5:67:4c:13:02:38:
c1:71:a8:43:62:a9:a1:fa:28:1f:0e:67:ba:ba:f9:
5d:c4:5e:70:87:8c:b1:a7:7f:41:55:68:a7:15:4c:
67:d1:39:7d:61:c7:79:6c:6f:58:e8:ba:6c:13:10:
29:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:72:31:82:CC:08:44:4E:A6:71:8B:29:05:26:6D:20:02:2A:DB:85
X509v3 Authority Key Identifier:
keyid:B1:74:0C:4C:07:9F:2D:1D:EE:85:43:9F:82:78:1B:9B:AE:75:6A:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXQMTAefLR3uhUOfgngbm651apU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:bc:3d:de:eb:bc:a6:20:84:b8:7f:95:3b:7b:43:4c:61:26:
b8:58:44:47:ed:d0:1e:be:90:9b:5c:d5:07:6d:2b:47:c4:a5:
b2:f6:37:21:42:4a:6e:23:66:a9:5d:d4:69:8a:de:90:05:87:
a3:12:12:79:05:3b:29:05:f7:5b:b5:76:28:f7:3d:38:34:85:
2f:95:bd:f9:90:44:4a:89:db:06:23:ba:93:17:01:bb:1c:24:
f7:eb:86:d8:f9:2f:da:68:97:48:84:0f:99:42:cf:5f:8a:09:
cc:f7:6d:a9:4d:21:d7:d6:5b:ee:50:c6:51:80:43:1d:30:3e:
50:68:7e:07:ab:a0:f5:fc:c2:56:e1:4f:2c:79:b6:31:0c:5a:
03:ce:02:38:9d:ac:69:a9:3d:5d:36:e6:b3:a6:b8:b2:36:56:
5f:37:06:47:64:49:ad:8b:0e:1c:8d:92:e0:12:57:87:48:2a:
87:5d:cd:72:71:a9:da:8e:22:fb:8f:81:8e:88:ba:ee:60:ba:
d8:0c:af:a5:9e:29:90:54:75:9d:ee:35:cf:1d:ba:c3:63:5f:
b9:14:f9:7b:35:ba:f7:27:61:f2:80:ec:58:56:5d:f4:e5:1f:
7c:20:43:bc:b9:8c:a7:44:ec:a3:1f:26:67:fd:95:a9:b3:c2:
96:5f:28:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:50:39 2025 by rpki-client