Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft
File: _XTetBhEJvpiIlthIMNnBvc3uOI.mft (raw, json)
Hash identifier: mqUP5tR4kDa89TEVJCmIoD03FWFb76JGTCvIiNu8Aao=
Subject key identifier: FA:37:34:D5:03:C0:71:1B:7A:75:00:5B:C8:37:16:6F:52:5B:C9:E8
Authority key identifier: FD:74:DE:B4:18:44:26:FA:62:22:5B:61:20:C3:67:06:F7:37:B8:E2
Certificate issuer: /CN=fd74deb4184426fa62225b6120c36706f737b8e2
Certificate serial: 019652DBA2672224430EDC4399A97CEC1861
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_XTetBhEJvpiIlthIMNnBvc3uOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft
Manifest number: 14FD
Signing time: Sun 20 Apr 2025 11:00:47 +0000
Manifest this update: Sun 20 Apr 2025 11:00:47 +0000
Manifest next update: Mon 21 Apr 2025 11:00:47 +0000
Files and hashes: 1: K3K73SOKoUl1BbH2-VG761We22I.roa (hash: JYStvIUn6egbkb0Wps8aA9dlj6GWDzxPYmBqdWiziOs=)
2: _XTetBhEJvpiIlthIMNnBvc3uOI.crl (hash: s+33897Xb4vf07Uvsc9aRo5ttzvAVtJiRHk9imVAXfk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft
rsync://rpki.ripe.net/repository/DEFAULT/_XTetBhEJvpiIlthIMNnBvc3uOI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:db:a2:67:22:24:43:0e:dc:43:99:a9:7c:ec:18:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd74deb4184426fa62225b6120c36706f737b8e2
Validity
Not Before: Apr 20 11:00:47 2025 GMT
Not After : Apr 21 11:00:47 2025 GMT
Subject: CN=fa3734d503c0711b7a75005bc837166f525bc9e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:0e:0a:72:38:a1:95:cd:8c:c6:1f:f5:56:e8:
2f:18:96:d6:58:93:60:85:f2:fc:21:59:9a:de:79:
e6:99:8c:e2:e9:52:5a:e8:32:c7:3a:97:6f:59:75:
96:dc:26:26:bb:03:98:47:5b:9a:66:b0:e7:d1:9a:
0b:51:ad:ce:db:2a:d7:4f:d1:21:66:3b:6f:23:df:
3d:7d:c3:74:6e:3a:19:88:9b:88:df:eb:ed:6c:6c:
54:5a:28:e8:2b:45:55:db:da:39:86:28:f9:28:e2:
3d:9b:16:5f:80:6f:c6:ef:89:fd:37:64:17:e0:b5:
3b:0e:4a:d2:da:30:e7:85:97:d8:a9:b4:5b:ca:1b:
27:b6:30:fc:94:56:b1:a9:5c:cf:75:0c:86:f1:26:
48:6e:ea:ae:8f:f4:f5:38:61:ec:3e:2f:c3:28:97:
5a:5a:e5:86:da:7b:36:6d:3b:c4:3f:1a:6e:ca:06:
d2:90:11:ca:0c:4c:4b:32:04:e3:68:4a:f5:dd:5e:
d1:fc:92:81:50:f4:31:d9:9b:90:ef:75:04:d2:c2:
a1:34:53:26:f0:51:4b:ef:6f:26:37:6c:27:cb:db:
e4:2c:f9:be:83:a4:70:14:e4:1d:05:ee:23:8b:6f:
ec:f1:07:c9:ac:ac:ec:81:6e:0d:49:fa:a1:a3:13:
f7:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:37:34:D5:03:C0:71:1B:7A:75:00:5B:C8:37:16:6F:52:5B:C9:E8
X509v3 Authority Key Identifier:
keyid:FD:74:DE:B4:18:44:26:FA:62:22:5B:61:20:C3:67:06:F7:37:B8:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_XTetBhEJvpiIlthIMNnBvc3uOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/18491f-b04d-4b0d-907b-d5705ae37014/1/_XTetBhEJvpiIlthIMNnBvc3uOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:6f:ed:8b:c3:95:3a:c9:41:df:bf:1d:28:79:f1:f9:35:e9:
26:91:03:97:88:5f:8b:10:cf:93:8b:68:2e:2f:14:85:a6:61:
dc:c7:d1:7b:32:85:1d:d8:74:0b:30:36:d3:c9:28:0c:a9:94:
67:35:9a:cb:61:da:5d:df:d4:a7:b9:e1:15:4d:b6:58:ed:7d:
a9:b7:0d:4d:56:90:c3:b0:30:b9:c4:ff:71:76:af:fb:9e:96:
cb:34:f6:15:b2:0c:99:8d:d7:61:5e:6f:d0:c9:70:d6:d2:99:
7e:ac:4c:d3:cd:d9:6b:a1:e3:d2:c1:a0:27:2a:04:23:e0:3e:
0d:4d:06:48:e1:bf:c5:2c:b3:fb:56:e8:a0:f8:06:0d:97:5f:
de:da:dd:9d:37:05:50:c1:f6:3c:ea:0f:1d:a8:e0:2d:fd:02:
37:e3:c3:8c:37:cf:1d:1a:9c:96:8b:7a:44:0c:30:f3:72:8c:
e9:f0:fe:14:c8:6f:80:46:92:d9:67:21:d4:35:03:f4:57:6a:
a1:ba:98:a6:8f:d8:2d:ad:b0:38:c8:d2:40:35:1a:ad:cd:43:
65:13:8a:f7:26:c1:f0:76:44:40:50:08:72:7a:1e:58:39:59:
60:51:be:27:cb:e3:0b:99:9c:3c:6c:cd:1a:ba:67:1d:46:65:
b8:c7:2f:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:13:03 2025 by rpki-client