Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
File: s7b1TqmxWovU8zglOGyyd7A0Od0.mft (raw, json)
Hash identifier: P9kGXhEMMk5ojFUAEfgWl+vAcKg0bDe4jDXqldaS3cs=
Subject key identifier: 59:C5:EB:07:94:B2:0A:C9:AF:B4:4D:38:83:C3:C2:02:B2:07:A5:12
Authority key identifier: B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
Certificate issuer: /CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Certificate serial: 01963BAE7BFABC3DEE2928B6DF9FC6A104EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
Manifest number: 14F6
Signing time: Tue 15 Apr 2025 23:00:12 +0000
Manifest this update: Tue 15 Apr 2025 23:00:12 +0000
Manifest next update: Wed 16 Apr 2025 23:00:12 +0000
Files and hashes: 1: SpsqNCwISL1D7YWDs8MOUK4XUcQ.roa (hash: VKTdP32emCO1Alc2phplZ6z5V0MT3UL3VXfP0BBA76I=)
2: s7b1TqmxWovU8zglOGyyd7A0Od0.crl (hash: oThPEyjv6ZxOS6j1cSVFKnLrnuiRopsJJiTeIJqVf0s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 23:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3b:ae:7b:fa:bc:3d:ee:29:28:b6:df:9f:c6:a1:04:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b6f54ea9b15a8bd4f33825386cb277b03439dd
Validity
Not Before: Apr 15 23:00:12 2025 GMT
Not After : Apr 16 23:00:12 2025 GMT
Subject: CN=59c5eb0794b20ac9afb44d3883c3c202b207a512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ee:7b:aa:4d:f4:25:f3:f3:b0:d9:39:0d:73:
cc:10:9c:00:cb:ff:14:38:38:d8:3e:1d:c1:f8:c1:
f3:51:3f:e4:ac:19:09:0f:58:a7:7a:20:e0:35:65:
ca:07:0e:d6:e2:cd:3e:74:20:c8:16:8b:52:2a:9e:
b1:35:a4:e4:9a:1e:2a:44:19:83:80:f2:5f:75:28:
9a:24:ce:78:bc:3e:b9:10:38:41:6d:99:53:bc:ff:
9e:85:e9:80:a3:9d:87:52:2f:d0:03:30:63:8e:9f:
db:c1:23:3b:04:90:59:0c:48:96:ce:3f:0e:0c:aa:
15:69:00:6f:19:27:f7:5f:ce:42:5c:11:b7:e5:b1:
ca:70:c0:bc:6a:c8:5f:6c:35:81:21:d7:b6:e4:31:
9a:1f:3f:43:d2:10:47:34:66:89:94:cc:3f:96:7c:
d9:46:8c:0c:ef:17:02:91:c5:9b:bf:19:5d:d9:c6:
f6:0a:f7:2d:5c:2d:64:fc:0e:f0:40:44:83:4e:b0:
79:02:da:f4:8c:0b:21:14:6d:c5:52:e3:bf:4d:dd:
28:58:ef:7c:2a:9f:fb:71:13:0a:61:a1:e6:81:5d:
61:9c:7c:16:a4:48:5f:ba:44:e4:05:96:3a:cf:94:
88:65:7f:94:4a:de:df:55:06:26:6a:b3:c9:17:c6:
c5:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:C5:EB:07:94:B2:0A:C9:AF:B4:4D:38:83:C3:C2:02:B2:07:A5:12
X509v3 Authority Key Identifier:
keyid:B3:B6:F5:4E:A9:B1:5A:8B:D4:F3:38:25:38:6C:B2:77:B0:34:39:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7b1TqmxWovU8zglOGyyd7A0Od0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8de4a3-8d5a-46b1-a735-2f46e9317cc6/1/s7b1TqmxWovU8zglOGyyd7A0Od0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:b0:08:80:0b:52:89:76:47:09:03:62:e9:34:f5:d6:2a:59:
3e:3d:6f:63:6d:23:fc:57:86:86:d7:1c:cb:b1:b7:6c:d9:08:
82:20:5b:3d:21:a1:7a:69:52:16:6f:63:57:45:5c:81:74:14:
e0:27:f5:56:b5:ff:1f:02:86:a8:06:b2:0a:18:8b:43:06:ab:
92:08:77:81:67:28:7f:78:ea:2f:27:f6:df:83:1b:a3:54:3d:
4f:cb:b4:cc:b3:c5:62:90:80:b1:a5:43:40:61:97:5e:96:a1:
4d:a7:e7:1d:2b:61:b0:76:32:29:66:cb:56:67:8a:1a:62:bd:
16:38:67:98:33:02:7b:b8:23:15:61:07:43:ef:52:87:1d:80:
3f:d2:af:ad:5f:fa:2c:36:6f:df:7d:94:15:99:c8:45:2d:b2:
0f:8b:fa:2f:e5:85:ee:6a:2e:64:e0:a2:0a:3c:34:97:5d:1f:
57:6b:bb:ec:d8:7f:bd:e5:9b:a2:0a:48:a8:51:df:7d:e7:9b:
92:28:d2:a7:84:df:1c:3d:fb:a2:a3:c3:75:ee:ca:01:85:73:
3d:c0:58:76:4c:ca:a9:fd:49:ca:08:a8:e2:c8:3c:5f:a8:9b:
63:b4:41:f4:6b:e7:78:a3:32:f1:20:9c:88:5f:21:ac:79:83:
40:3e:43:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 09:26:25 2025 by rpki-client