Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
File: A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft (raw, json)
Hash identifier: z+b5L15L5DXNXwst0A84kgWl3ewJ4H6Fs249r7Vrzh0=
Subject key identifier: 6E:23:1F:51:B2:EE:C9:10:A9:B0:3B:9E:CA:C2:EF:92:FC:44:D5:1A
Authority key identifier: 03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E
Certificate issuer: /CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e
Certificate serial: 0196507F52A46D46555B47768BAE1932F080
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
Manifest number: 048C
Signing time: Sun 20 Apr 2025 00:00:43 +0000
Manifest this update: Sun 20 Apr 2025 00:00:43 +0000
Manifest next update: Mon 21 Apr 2025 00:00:43 +0000
Files and hashes: 1: 1ofY17NAwbyhAHFj_yBzaevRgc4.roa (hash: FPWNmGXZmy3JcSLxjIHQ6BJRP2baM9xmkXSCswGMYik=)
2: A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl (hash: 1Lg2bDPOV2TY6C+YfQAtAY2Pe9LbrIIf/LoE31rzREc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:7f:52:a4:6d:46:55:5b:47:76:8b:ae:19:32:f0:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e
Validity
Not Before: Apr 20 00:00:43 2025 GMT
Not After : Apr 21 00:00:43 2025 GMT
Subject: CN=6e231f51b2eec910a9b03b9ecac2ef92fc44d51a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:2d:1a:8e:e0:0e:a4:cf:43:e3:39:55:4c:ac:
fc:05:bc:6b:94:4f:9b:f0:0a:cf:94:43:8b:81:2a:
82:05:e4:6d:20:ed:d7:6b:ed:40:0b:04:1e:2b:95:
6d:52:c2:30:a0:96:3f:97:69:f1:3e:82:3f:20:19:
11:f8:4c:4b:48:cd:f3:c4:4c:9d:bf:0f:a3:7a:40:
68:0b:78:cc:0a:d4:e3:19:f3:1b:30:cb:e8:c9:e6:
3a:44:3b:7f:a0:e1:bf:51:af:20:e2:eb:f5:38:41:
b9:67:96:28:88:a2:01:c0:52:bf:84:af:f9:0a:60:
c4:f1:a8:7b:c8:5c:82:1c:09:79:18:6e:81:db:b2:
d5:90:63:31:89:03:a5:69:73:6f:80:91:94:99:0d:
38:18:72:6a:5f:be:a3:5d:ec:10:db:28:b4:d4:8f:
f0:bc:64:5e:7a:7d:6f:bb:ce:be:77:4e:e4:90:47:
2f:77:fd:c5:07:b0:c4:68:77:6f:dc:45:50:c4:1e:
59:d6:3b:ba:4a:a7:ad:fb:6a:b2:b1:c7:75:25:1b:
ce:58:93:10:e2:08:c3:eb:c4:e6:de:79:fa:75:e8:
f0:36:5f:1c:0a:05:9e:0d:4f:fe:f6:11:12:7b:69:
9e:ea:28:a3:7c:00:6f:f1:f5:9d:be:2a:1a:2e:02:
cf:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:23:1F:51:B2:EE:C9:10:A9:B0:3B:9E:CA:C2:EF:92:FC:44:D5:1A
X509v3 Authority Key Identifier:
keyid:03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:62:9a:62:38:0a:16:2f:3c:90:b3:dd:55:1c:2f:51:c2:22:
94:55:88:cc:62:37:20:21:3f:cb:e5:cb:1b:21:b8:55:c2:55:
cb:1f:8e:a4:87:b2:b0:f6:1e:7f:10:ef:3a:89:e8:82:e0:1e:
34:5f:fa:aa:51:14:27:5d:95:71:6f:28:4f:fb:2c:4d:51:bd:
40:8e:84:b6:dc:b2:68:e6:05:60:48:2a:d8:ed:43:27:cc:d0:
5e:67:ea:41:d3:bb:02:69:5b:b7:d5:d6:6f:49:28:48:4a:18:
92:08:5c:91:21:16:e9:87:02:1e:5d:2c:f5:f7:fb:aa:3a:bb:
0d:ee:84:50:bd:97:d6:dc:30:55:77:2e:26:1a:d8:1e:03:8f:
21:ee:f3:a7:49:d6:ff:b2:fa:27:9b:9a:ac:83:bf:8a:18:e1:
f9:b8:ba:cf:6d:ea:73:31:40:15:bc:df:60:50:f1:2c:fe:bf:
70:77:12:e4:41:95:73:79:6e:99:c1:a4:ac:d8:a5:3c:d1:2d:
5f:88:cf:7d:ae:a9:5d:3b:5b:51:b8:5f:9a:01:24:df:4c:b4:
5b:81:90:ba:58:a6:28:32:e9:9b:24:92:39:38:57:19:98:ef:
d6:22:f1:5c:40:07:b3:c1:e5:8e:1c:71:3c:95:14:0a:e9:50:
17:de:a5:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:16:37 2025 by rpki-client