Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
File: d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft (raw, json)
Hash identifier: 8ZzM7yE/c38kuC/W4TINfK5cUxIrWtGe4YEcja+XpTk=
Subject key identifier: 2B:C6:04:8A:86:89:73:C9:1E:49:4F:9E:C6:A8:E0:23:4E:2B:D4:B9
Authority key identifier: 77:9F:BA:AA:C6:54:1A:B3:18:52:9E:B0:25:61:3C:65:20:E4:76:46
Certificate issuer: /CN=779fbaaac6541ab318529eb025613c6520e47646
Certificate serial: 0196534969A97B28744BDFC71171678F6927
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
Manifest number: 03AF
Signing time: Sun 20 Apr 2025 13:00:42 +0000
Manifest this update: Sun 20 Apr 2025 13:00:42 +0000
Manifest next update: Mon 21 Apr 2025 13:00:42 +0000
Files and hashes: 1: bKhEoTi8VyX_Q5KODWRSQwgQwKY.roa (hash: xvVp0HHxMjOmKvNmsan4is7a0Z8jz8EK1PXrOk2MzSo=)
2: d5-6qsZUGrMYUp6wJWE8ZSDkdkY.crl (hash: iuQv+g6ztZgEv4jpxVl30XhZhvWXY0XvNbm4EtAHe6E=)
3: k3MkBKIkrmXV8hBuw2gGPp_sASw.roa (hash: kkGwe02sJUGG5OVjC1fC3C/lnFwMVxsODhInEGGgNMw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
rsync://rpki.ripe.net/repository/DEFAULT/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:49:69:a9:7b:28:74:4b:df:c7:11:71:67:8f:69:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779fbaaac6541ab318529eb025613c6520e47646
Validity
Not Before: Apr 20 13:00:42 2025 GMT
Not After : Apr 21 13:00:42 2025 GMT
Subject: CN=2bc6048a868973c91e494f9ec6a8e0234e2bd4b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:d5:4a:70:5b:5d:fd:55:00:48:30:d6:2a:0d:
f2:f2:f6:2a:44:7a:a3:8b:9f:f3:51:fa:45:e4:da:
14:ea:63:2f:80:c5:fc:d8:02:53:d0:1e:c1:8a:f5:
f1:e3:ce:b8:ae:23:1b:b4:42:cd:c5:9f:31:6e:a3:
9f:cc:f6:46:fb:f2:27:bd:8c:de:f9:ed:01:d6:4d:
b3:c3:ff:4d:e2:de:a7:ae:77:19:dc:41:a6:98:38:
df:2b:37:ad:29:b0:b1:12:3d:5a:6b:b1:c1:ec:e3:
d5:d6:8e:d0:84:f3:d1:c4:a3:b0:03:2e:23:7f:2f:
80:85:03:69:34:1c:17:4b:50:bf:69:31:0e:00:15:
4c:c5:cc:3a:d9:13:2d:41:c9:d2:81:52:18:95:46:
68:e1:ff:17:97:84:65:7c:68:03:f4:85:17:ce:6a:
4a:d4:78:19:77:8d:89:cf:5a:c7:b6:be:56:0f:8a:
56:6b:0c:fd:df:ab:f4:74:51:15:33:e9:47:ca:a0:
33:be:50:b7:a3:ab:58:07:53:5f:99:59:55:c6:f3:
f9:ab:2b:7d:93:25:1c:d1:43:73:ff:db:a9:ca:cd:
4a:f0:71:a6:21:17:7f:30:68:d5:f7:63:8d:8a:f7:
5f:cd:7d:12:6a:d4:49:0d:be:f9:f0:43:21:2f:db:
1f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:C6:04:8A:86:89:73:C9:1E:49:4F:9E:C6:A8:E0:23:4E:2B:D4:B9
X509v3 Authority Key Identifier:
keyid:77:9F:BA:AA:C6:54:1A:B3:18:52:9E:B0:25:61:3C:65:20:E4:76:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:ec:fd:a1:fe:c2:c3:00:d1:a3:af:86:79:9b:bf:0c:39:fd:
0c:d1:82:da:66:51:e2:fc:14:86:50:50:b7:eb:37:46:2b:e6:
84:7b:67:f1:83:9c:dc:9b:e4:69:d2:7d:4a:32:e6:c8:7c:9a:
4e:20:cf:73:29:4e:fe:21:5a:2c:8e:9b:23:d5:3e:0d:e5:e2:
2d:12:f3:b2:cf:a7:98:04:47:25:69:a2:88:f2:9a:72:28:a1:
ba:b2:c5:7b:ca:f7:2f:df:c9:a6:50:07:c9:1a:81:e0:39:49:
ce:09:d3:54:7c:8e:86:f0:84:7e:cf:76:57:e8:c2:bc:94:09:
51:aa:3c:a6:fa:1f:a6:3b:e4:51:a7:b4:6f:47:64:ed:4b:0a:
c8:d2:17:e6:5f:68:2a:fe:23:4a:e4:41:2a:6b:fb:f5:bc:e6:
78:ec:e4:dd:1f:61:ce:64:39:1c:50:32:7c:82:26:6e:db:6d:
2b:1c:a8:c6:61:4c:06:55:a1:bf:7b:ba:1d:82:0e:1c:6d:e0:
16:69:6b:44:a1:89:74:e1:1a:f6:04:31:56:b2:05:db:e1:74:
3a:5a:30:ee:0d:81:d0:12:45:07:0b:c5:4b:4b:d9:8b:8e:6d:
ed:02:00:30:4d:a2:05:12:f1:8c:c0:d8:89:94:ed:f2:57:ce:
fc:67:9d:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 15:37:33 2025 by rpki-client