Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/488f90-224e-4634-967f-8f181d3a3e8f/1/jPCwtGoI0ecPy92Hetk5oBMuEmk.mft
File: jPCwtGoI0ecPy92Hetk5oBMuEmk.mft (raw, json)
Hash identifier: +BL0Maj5kiCrcKNs9f7xIS3h3F9hfGfE7X7RXv52xNM=
Subject key identifier: 4E:46:61:82:DC:DF:F9:57:0A:E6:87:FE:04:66:21:C3:93:7F:2F:23
Authority key identifier: 8C:F0:B0:B4:6A:08:D1:E7:0F:CB:DD:87:7A:D9:39:A0:13:2E:12:69
Certificate issuer: /CN=8cf0b0b46a08d1e70fcbdd877ad939a0132e1269
Certificate serial: 01958B166DD7CDD8343ABD09C2E373E3CDF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jPCwtGoI0ecPy92Hetk5oBMuEmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/488f90-224e-4634-967f-8f181d3a3e8f/1/jPCwtGoI0ecPy92Hetk5oBMuEmk.mft
Manifest number: 1038
Signing time: Wed 12 Mar 2025 16:00:57 +0000
Manifest this update: Wed 12 Mar 2025 16:00:57 +0000
Manifest next update: Thu 13 Mar 2025 16:00:57 +0000
Files and hashes: 1: Gh9PpfuY5LxhoKf93mfL5cK3chM.roa (hash: h2BIVV97ReDZkfRDJTGtHCoQkarTn+cxIbkViPsb5Nw=)
2: jPCwtGoI0ecPy92Hetk5oBMuEmk.crl (hash: E6qyteMCF6uScxHmyQ2G2LCYD2W2BG7DvElcN73RQ9k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/488f90-224e-4634-967f-8f181d3a3e8f/1/jPCwtGoI0ecPy92Hetk5oBMuEmk.crl
rsync://rpki.ripe.net/repository/DEFAULT/27/488f90-224e-4634-967f-8f181d3a3e8f/1/jPCwtGoI0ecPy92Hetk5oBMuEmk.mft
rsync://rpki.ripe.net/repository/DEFAULT/jPCwtGoI0ecPy92Hetk5oBMuEmk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 16:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:16:6d:d7:cd:d8:34:3a:bd:09:c2:e3:73:e3:cd:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8cf0b0b46a08d1e70fcbdd877ad939a0132e1269
Validity
Not Before: Mar 12 16:00:57 2025 GMT
Not After : Mar 13 16:00:57 2025 GMT
Subject: CN=4e466182dcdff9570ae687fe046621c3937f2f23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d2:e6:d0:9b:1b:b9:2c:b3:8c:b0:dd:b2:58:
37:17:7d:1f:26:f8:20:f0:cd:5c:47:a0:32:e0:44:
d7:ee:2d:a1:65:fb:25:2e:93:4c:b7:68:48:f9:ce:
c3:2c:4f:7d:a6:9c:51:21:14:4e:15:76:7c:22:82:
a0:31:2e:ec:7b:fd:1b:18:46:70:22:75:ed:78:78:
0b:36:2b:6d:2f:88:6f:ce:ea:2d:b9:33:d0:f7:d5:
22:62:7b:b0:b5:cb:69:02:35:a0:da:9a:b6:09:11:
7c:7d:6f:17:ab:e6:5a:0b:d9:c8:c0:1f:aa:2f:40:
8d:bc:66:de:bf:ef:fe:da:9e:34:19:c7:ce:66:29:
04:0b:25:df:35:9d:93:bd:78:84:a1:d9:dd:89:f7:
00:e5:5f:45:1d:ae:f2:a9:cc:d8:c8:d5:9c:97:e1:
fe:cf:70:c4:9c:e6:27:2b:8d:e5:c7:42:60:c5:a5:
d5:c6:3e:66:96:e4:94:ea:10:8d:ff:f5:ea:2b:8c:
08:f9:e3:29:ed:bf:be:93:42:9f:45:ff:d2:23:24:
0a:41:bb:75:f5:80:4f:b2:e3:b7:6f:f5:0b:f9:ca:
56:8a:43:50:8d:8b:71:75:53:a6:8b:23:86:85:48:
98:e9:a1:f2:92:f3:1e:c3:10:c6:c5:2d:b7:6f:cf:
71:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:46:61:82:DC:DF:F9:57:0A:E6:87:FE:04:66:21:C3:93:7F:2F:23
X509v3 Authority Key Identifier:
keyid:8C:F0:B0:B4:6A:08:D1:E7:0F:CB:DD:87:7A:D9:39:A0:13:2E:12:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jPCwtGoI0ecPy92Hetk5oBMuEmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/488f90-224e-4634-967f-8f181d3a3e8f/1/jPCwtGoI0ecPy92Hetk5oBMuEmk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/488f90-224e-4634-967f-8f181d3a3e8f/1/jPCwtGoI0ecPy92Hetk5oBMuEmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:90:33:a8:dc:4b:13:0d:8f:5b:fe:d2:83:c9:6c:61:75:66:
22:64:4b:a9:81:08:af:e9:52:c7:df:a2:d3:9b:ed:a3:7b:35:
0e:b7:ea:c3:b0:e7:58:a9:be:de:ed:28:78:5a:7e:d1:d9:ec:
1f:96:bb:97:29:1a:6c:92:80:3a:4e:9c:5f:c2:0d:2d:6d:79:
6a:99:cc:37:c2:5a:af:58:8a:90:6b:55:32:b0:12:f8:17:cd:
4e:7b:a9:af:3c:3b:5c:5b:bf:10:d4:75:a1:a2:b2:57:a1:bf:
a8:47:b1:e2:04:68:8c:17:d6:e8:db:5b:79:d0:61:11:85:68:
63:1b:43:a8:1e:92:d4:da:fe:fb:46:61:29:29:4f:cf:32:e3:
2a:7d:92:7a:42:8c:37:4c:18:6d:9b:44:05:26:c6:fa:e9:9f:
57:f6:ac:40:ee:39:b7:17:30:35:27:27:d5:73:b4:58:ec:23:
8b:62:7f:a1:92:23:c8:c2:12:ce:1a:75:90:e7:4c:81:bc:c4:
04:81:35:d2:bd:bc:ed:b6:d3:dd:8a:4f:9b:f1:ff:3f:52:df:
56:05:25:f3:52:1f:2b:28:fb:26:7d:83:e9:dd:f5:19:53:b3:
0a:b4:40:07:1c:1c:7e:e3:b6:26:50:ef:2a:16:e1:08:c0:cd:
bf:e0:0e:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:31:01 2025 by rpki-client