Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
File: g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft (raw, json)
Hash identifier: f1em1L1jK9/eiIbbvXycCOMbKjGsbvnUb5g+Xd70Z7Y=
Subject key identifier: AE:AE:73:BB:6F:0B:8D:F8:FE:16:A4:0B:AF:6B:BE:37:60:0F:ED:6D
Authority key identifier: 83:C8:D0:1C:AF:2B:07:51:D0:35:C5:37:56:6F:45:62:79:25:E4:F6
Certificate issuer: /CN=83c8d01caf2b0751d035c537566f45627925e4f6
Certificate serial: 019656EEE6B2E63BB954FE09A07E9544C1A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
Manifest number: 1044
Signing time: Mon 21 Apr 2025 06:00:19 +0000
Manifest this update: Mon 21 Apr 2025 06:00:19 +0000
Manifest next update: Tue 22 Apr 2025 06:00:19 +0000
Files and hashes: 1: J4HW2mYS6aU6LfQRgOlYRDbLp5k.roa (hash: Bt4aDKGWyvEeRSoxrjAjHWSOknnKJY9L9kMvMSuInRo=)
2: g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl (hash: DRwNixIQifVVe000dZ+FCoQrfsW/n5g+psxA+xArDZI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:ee:e6:b2:e6:3b:b9:54:fe:09:a0:7e:95:44:c1:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83c8d01caf2b0751d035c537566f45627925e4f6
Validity
Not Before: Apr 21 06:00:19 2025 GMT
Not After : Apr 22 06:00:19 2025 GMT
Subject: CN=aeae73bb6f0b8df8fe16a40baf6bbe37600fed6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:97:c3:2d:8b:be:fa:47:5f:70:2e:7c:69:6c:
29:34:96:ec:19:ba:8f:1f:3a:2e:ad:2c:87:9c:63:
e5:0f:98:fa:80:4a:8f:10:87:e5:4a:fd:82:ae:fd:
fe:8d:8a:cf:29:fb:7e:fb:7c:da:29:61:b9:c5:51:
5c:4f:a4:e7:6a:99:d2:49:41:9f:3f:ac:e4:5e:c0:
96:32:2d:60:c9:f8:37:3d:92:2a:19:15:0d:91:e9:
92:7f:dc:96:01:f0:38:c9:64:84:d2:48:8d:69:ea:
87:86:6f:af:ab:35:5a:95:da:81:bf:0b:21:2c:75:
2b:3f:dd:29:ab:d0:af:a4:a9:cf:16:de:e7:30:9d:
5a:af:a0:35:66:89:9a:e8:51:ed:b7:f0:0e:1a:19:
bc:d8:1b:f8:c4:ea:a8:19:84:f0:70:e1:57:14:31:
55:6a:55:0d:fc:e7:3a:fe:0a:09:5a:42:2d:ad:48:
9c:df:32:09:6d:9d:45:74:41:57:4d:95:42:02:cd:
1b:e5:5d:dd:bd:71:de:b8:b1:a4:a2:b0:f1:43:f1:
23:f3:30:82:1e:7e:25:99:3e:a4:40:a7:15:27:a6:
32:9d:3f:86:4b:53:85:17:fb:66:dd:a0:5b:0a:92:
74:bb:3c:17:f8:0e:32:5f:47:50:cf:74:fa:81:73:
d6:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:AE:73:BB:6F:0B:8D:F8:FE:16:A4:0B:AF:6B:BE:37:60:0F:ED:6D
X509v3 Authority Key Identifier:
keyid:83:C8:D0:1C:AF:2B:07:51:D0:35:C5:37:56:6F:45:62:79:25:E4:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfa7c3-f0c8-4622-8a47-9ab26b266aa7/1/g8jQHK8rB1HQNcU3Vm9FYnkl5PY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:f7:b3:f4:27:e1:94:0e:64:83:df:e7:c3:ea:7d:9e:ad:fa:
de:f0:47:d4:7d:bd:8f:ca:dd:98:e8:4d:1d:30:fc:17:b8:33:
d8:f8:a2:1b:02:d3:ca:06:d4:da:4c:b9:e0:b3:00:ff:dd:0c:
48:67:b7:b7:22:b9:a6:f6:c9:59:24:7d:02:a1:58:02:30:42:
cf:70:c9:8c:9a:cf:6b:56:eb:b4:cc:5b:ed:dd:65:17:73:b9:
3b:6d:52:99:a7:19:45:ea:8d:5e:40:0a:c4:5b:83:e5:6c:3d:
3d:24:52:00:3f:5a:59:f6:e6:f8:8d:cb:b0:c3:46:39:7f:90:
c0:67:57:1c:d3:52:3d:c7:f1:9d:43:1f:bf:31:72:13:c5:84:
32:79:12:88:cc:22:75:b8:a9:dc:84:4b:87:8c:a4:1d:8f:9a:
f6:87:0e:b0:c1:f1:22:e3:f1:14:60:f7:24:dd:e3:f3:c0:5e:
c8:57:1a:68:7b:d5:6f:a3:2b:9f:5e:96:51:f2:f7:e9:f4:eb:
05:61:ef:6a:f3:a4:b4:fe:6b:16:03:d7:aa:aa:58:fe:61:2f:
cd:12:7c:0c:d4:6b:a4:32:26:76:ab:2e:c8:c4:44:80:94:3a:
68:9d:de:95:e3:0b:89:37:a8:cd:63:c0:50:8f:c1:bb:73:82:
46:55:c4:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 11:32:33 2025 by rpki-client