Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
File: 0RIqXLBkP3NsfseWGAmiWThmjw4.mft (raw, json)
Hash identifier: SQLXfJPlmmXhoHBMVb/UGbL4uFwaOhNipdaSw5OOPC8=
Subject key identifier: 20:4C:7A:0B:FD:43:B7:55:1D:9F:53:42:F2:B1:6F:B1:8D:05:EC:72
Authority key identifier: D1:12:2A:5C:B0:64:3F:73:6C:7E:C7:96:18:09:A2:59:38:66:8F:0E
Certificate issuer: /CN=d1122a5cb0643f736c7ec7961809a25938668f0e
Certificate serial: 0196515B121CB42D365F9B1C5601F6566020
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0RIqXLBkP3NsfseWGAmiWThmjw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
Manifest number: 14FC
Signing time: Sun 20 Apr 2025 04:00:44 +0000
Manifest this update: Sun 20 Apr 2025 04:00:44 +0000
Manifest next update: Mon 21 Apr 2025 04:00:44 +0000
Files and hashes: 1: 0RIqXLBkP3NsfseWGAmiWThmjw4.crl (hash: 542Sr6nM6q8eFlKatN625ucjWGK5C3WnVEnJOjbPTSo=)
2: zKQIfOeURvANDMREU7yI_nE_KFw.roa (hash: rsODojes6psnJwHqpB6iZWFEwYShL6Rps2nkmwoPbsQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0RIqXLBkP3NsfseWGAmiWThmjw4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 04:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:5b:12:1c:b4:2d:36:5f:9b:1c:56:01:f6:56:60:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1122a5cb0643f736c7ec7961809a25938668f0e
Validity
Not Before: Apr 20 04:00:44 2025 GMT
Not After : Apr 21 04:00:44 2025 GMT
Subject: CN=204c7a0bfd43b7551d9f5342f2b16fb18d05ec72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8f:26:0d:6d:50:c3:08:33:b7:3e:20:d2:3b:
79:a1:fa:fd:08:f0:1d:a3:c6:07:51:ed:55:01:9c:
eb:05:18:ea:27:94:fe:98:6d:d2:dc:cc:fd:1b:5c:
40:0d:d9:e2:89:14:17:b2:73:39:47:e5:16:48:a1:
a2:85:37:35:df:d0:14:be:4f:56:ef:71:ed:3b:e8:
e9:8a:75:b3:82:07:85:c2:c9:4e:ee:50:46:55:55:
bd:01:12:21:e3:dd:c1:c2:3b:df:35:ef:14:33:76:
9c:81:f0:71:b3:58:41:0a:a2:55:cd:0e:53:93:7e:
7a:c9:ae:6b:3e:52:be:fb:f9:60:65:54:e4:06:98:
2b:43:4b:04:ba:77:d4:c8:8e:45:8f:d8:de:70:75:
53:04:ce:50:cd:01:f7:56:ad:32:01:7b:67:ab:ad:
9d:10:f2:a1:c9:a3:57:39:95:b1:db:04:af:04:70:
9d:34:b8:d9:cf:ba:97:f6:98:55:16:57:b8:bd:5c:
f5:ea:2e:7f:e4:6a:53:2c:f0:74:4e:3b:71:9b:e9:
d6:dc:66:89:e3:b6:59:ec:7b:a4:b3:1e:32:63:6a:
9f:94:b1:18:6a:df:ec:49:56:a1:73:47:c0:e0:90:
61:fc:a8:23:2d:12:eb:92:78:29:c1:76:76:d6:70:
49:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:4C:7A:0B:FD:43:B7:55:1D:9F:53:42:F2:B1:6F:B1:8D:05:EC:72
X509v3 Authority Key Identifier:
keyid:D1:12:2A:5C:B0:64:3F:73:6C:7E:C7:96:18:09:A2:59:38:66:8F:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0RIqXLBkP3NsfseWGAmiWThmjw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:c7:72:e3:2a:2d:fe:c2:a1:8e:2e:6c:39:6a:80:bf:b4:d2:
0c:d8:cc:ec:df:de:2f:30:9a:67:29:e2:77:6d:ef:69:cc:33:
d1:f1:b9:c4:d3:bc:77:f3:d1:5b:21:03:1e:16:b1:02:9c:9f:
17:c4:a3:7f:f9:0e:dc:56:51:28:88:38:ec:f2:a3:58:4b:eb:
1b:2d:a0:e8:b3:7f:c9:4b:7c:ed:11:75:96:9c:e4:3d:37:74:
9e:e1:e4:94:3d:24:48:bf:c2:35:ff:97:68:ce:7a:03:9c:25:
57:2b:2a:b4:d4:21:6a:c7:22:56:75:77:40:ac:b3:67:ac:09:
d5:ca:b1:e8:9d:8b:02:ea:a7:d7:70:c3:53:1b:2c:20:e8:6d:
33:fa:4d:e0:65:50:0e:16:c2:b3:ff:3e:67:c2:45:1b:07:c6:
9c:45:16:4a:f5:a8:f9:77:58:65:fb:a5:99:7a:20:54:9e:db:
29:2c:c9:74:31:c7:5c:f8:a7:a4:aa:2a:bd:24:bb:5e:dc:f7:
96:77:44:f5:26:f7:fd:63:99:aa:3d:fa:80:34:c9:94:1d:8f:
13:0c:14:f3:21:a2:d2:af:a0:70:fb:d2:6b:72:4b:63:df:7a:
42:7c:ba:8e:97:d4:61:b7:58:bd:b9:e5:15:f7:a2:e4:24:fc:
45:1a:a5:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 14:43:30 2025 by rpki-client