Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/RwXTxqWwUSaCzf3zY7GanFZ_H2w.mft
File: RwXTxqWwUSaCzf3zY7GanFZ_H2w.mft (raw, json)
Hash identifier: KX6fcbSUgHY1Egf2x7f6GBzvDHOPWJEoG3ayakQoNqU=
Subject key identifier: 64:0A:60:E0:4E:89:98:98:BE:98:84:CC:65:C0:61:46:3B:54:54:BD
Authority key identifier: 47:05:D3:C6:A5:B0:51:26:82:CD:FD:F3:63:B1:9A:9C:56:7F:1F:6C
Certificate issuer: /CN=4705d3c6a5b0512682cdfdf363b19a9c567f1f6c
Certificate serial: 0196060B667752EC465B4913270732B862BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RwXTxqWwUSaCzf3zY7GanFZ_H2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/RwXTxqWwUSaCzf3zY7GanFZ_H2w.mft
Manifest number: 14D9
Signing time: Sat 05 Apr 2025 13:02:12 +0000
Manifest this update: Sat 05 Apr 2025 13:02:12 +0000
Manifest next update: Sun 06 Apr 2025 13:02:12 +0000
Files and hashes: 1: I6ww8fe_j9f3G8rmW-wt_mZZY2s.roa (hash: Sd8zlV1mabR3WLhdUp899p9IeCSzwEZhzmqxHzFQi+0=)
2: RwXTxqWwUSaCzf3zY7GanFZ_H2w.crl (hash: KxwlmLsf+nq5tlyviTx/ANIr0Skk3A7TW5wXKE1llpQ=)
3: a4P5Nmq1ldQpFUTXqCcYVJT2FBw.roa (hash: uK/XWq2f7Vj84yIu4J13Mqd4rpKs4ZvyhbUMCrHpfh4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/RwXTxqWwUSaCzf3zY7GanFZ_H2w.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/RwXTxqWwUSaCzf3zY7GanFZ_H2w.mft
rsync://rpki.ripe.net/repository/DEFAULT/RwXTxqWwUSaCzf3zY7GanFZ_H2w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 13:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:06:0b:66:77:52:ec:46:5b:49:13:27:07:32:b8:62:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4705d3c6a5b0512682cdfdf363b19a9c567f1f6c
Validity
Not Before: Apr 5 13:02:12 2025 GMT
Not After : Apr 6 13:02:12 2025 GMT
Subject: CN=640a60e04e899898be9884cc65c061463b5454bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:3e:84:6a:6d:f0:37:12:93:ea:50:da:e6:a5:
fe:17:cf:cc:45:79:99:e3:64:22:df:8b:fb:86:34:
c8:dc:af:61:ae:ea:e0:3c:28:8a:d1:4e:9d:7e:b8:
1f:db:01:84:73:0d:09:56:56:42:d6:79:9f:6f:e4:
cd:18:5f:b9:af:ea:c1:d2:d7:15:7d:d3:07:b6:ea:
1f:b9:8b:d5:89:5c:d9:e9:38:2b:e7:97:a7:cd:ad:
b1:24:5a:cb:ed:93:70:17:7a:9a:3f:86:42:a1:92:
e7:e9:46:3f:7e:4b:27:4b:93:14:75:5c:70:89:2f:
53:23:26:81:ab:7b:48:36:a0:d8:cf:29:41:d9:30:
ae:e8:6e:27:19:11:54:ec:39:56:87:72:29:ec:7b:
48:ba:8c:0a:fa:91:d8:d5:98:08:b5:03:36:c8:83:
ec:b3:8e:ab:5d:0a:38:bf:e8:19:18:0d:f5:fc:99:
22:d3:ed:0d:19:50:f0:50:80:a6:31:f7:03:0b:99:
91:12:51:f6:f9:c3:64:e0:20:f9:81:73:48:51:bb:
ce:97:fe:f6:85:1b:bf:b1:a1:63:26:d6:55:38:9d:
03:52:73:41:58:76:86:6d:1a:55:88:11:35:d1:2d:
f0:3f:04:96:29:d7:25:58:9a:ff:3e:ff:62:74:eb:
55:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:0A:60:E0:4E:89:98:98:BE:98:84:CC:65:C0:61:46:3B:54:54:BD
X509v3 Authority Key Identifier:
keyid:47:05:D3:C6:A5:B0:51:26:82:CD:FD:F3:63:B1:9A:9C:56:7F:1F:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RwXTxqWwUSaCzf3zY7GanFZ_H2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/RwXTxqWwUSaCzf3zY7GanFZ_H2w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/RwXTxqWwUSaCzf3zY7GanFZ_H2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:31:80:69:de:e4:2d:f1:c8:9b:57:d1:d3:82:2c:b4:b6:7e:
59:0d:06:21:90:39:c9:ca:42:ed:ce:f7:c7:ad:bc:51:51:cd:
7b:74:ff:56:57:9f:11:5e:e5:b2:71:86:ec:9a:5f:a2:9e:bc:
5a:98:13:1d:92:43:cd:8b:44:c0:d8:53:bd:32:4c:73:f8:02:
6a:0c:fd:3d:a2:b1:39:d6:31:ff:71:c0:9e:f0:a4:c5:3e:c1:
13:d1:c6:a5:d0:16:bf:25:86:06:3e:f8:35:ef:86:86:eb:b0:
bc:05:8a:2a:09:c4:d2:a1:e3:9f:a4:99:f6:88:d1:73:5b:f5:
97:8c:20:e6:07:b6:9a:ee:ed:e8:a0:72:a1:09:b5:af:d8:0a:
06:7b:58:04:7e:55:4a:78:0f:ac:25:98:a0:74:cb:2c:9f:d7:
8d:59:c5:79:ae:31:78:e0:36:41:fd:f2:a1:19:1e:01:25:dc:
be:f3:c4:b9:26:87:89:b7:9b:9b:57:63:4e:da:53:c2:93:a7:
48:0d:04:86:25:7f:da:02:85:22:f6:2f:a6:ac:87:43:a6:9f:
79:44:cb:a5:b7:e1:c2:e7:84:cf:be:aa:8c:56:d3:8c:fb:ed:
cb:79:78:9f:76:e4:8c:9c:9c:29:3a:58:03:c2:54:27:0c:1f:
a3:5e:f5:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:10:50 2025 by rpki-client