Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.mft
File: J83PK9CaINK63Tq2yMft-h_Vwsw.mft (raw, json)
Hash identifier: SNZrufGx2u9LP3usyuzt42+SLQebkUpB5lPW/rrtvwM=
Subject key identifier: 09:4C:97:F5:E3:5B:1B:37:25:36:7D:42:AF:B4:25:56:64:B3:3B:37
Authority key identifier: 27:CD:CF:2B:D0:9A:20:D2:BA:DD:3A:B6:C8:C7:ED:FA:1F:D5:C2:CC
Certificate issuer: /CN=27cdcf2bd09a20d2badd3ab6c8c7edfa1fd5c2cc
Certificate serial: 01958FCED3B6C0486218914346E97AEFC7D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J83PK9CaINK63Tq2yMft-h_Vwsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.mft
Manifest number: 01B1
Signing time: Thu 13 Mar 2025 14:00:51 +0000
Manifest this update: Thu 13 Mar 2025 14:00:51 +0000
Manifest next update: Fri 14 Mar 2025 14:00:51 +0000
Files and hashes: 1: J83PK9CaINK63Tq2yMft-h_Vwsw.crl (hash: OVQdhDa+CKpjJVBLZCnpLkTALCFPguccRugtZk1qiS8=)
2: kxpaHhhuxaN-Jg9For9SY2Nccrk.roa (hash: Q31rgNDFAzRPHBiMS/f4s6A4eZqCkoNUT9MdgG2F6C8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.mft
rsync://rpki.ripe.net/repository/DEFAULT/J83PK9CaINK63Tq2yMft-h_Vwsw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8f:ce:d3:b6:c0:48:62:18:91:43:46:e9:7a:ef:c7:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27cdcf2bd09a20d2badd3ab6c8c7edfa1fd5c2cc
Validity
Not Before: Mar 13 14:00:51 2025 GMT
Not After : Mar 14 14:00:51 2025 GMT
Subject: CN=094c97f5e35b1b3725367d42afb4255664b33b37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e1:d5:81:4d:0b:54:49:b0:f2:bf:69:55:97:
b1:c3:e4:3d:0d:68:0f:43:e0:f3:2b:d0:c4:30:a4:
fd:d5:5a:d1:2e:6d:f3:86:d7:d2:14:81:0f:d6:8c:
54:c1:73:f0:8a:88:0f:23:e9:4c:4d:d7:24:58:7e:
7c:12:9f:43:c3:59:7f:cb:2e:22:61:d5:b2:f6:dc:
70:87:41:2b:8a:ff:77:5d:0a:43:1d:3a:9c:1d:01:
52:7e:b7:f6:43:f5:6e:cc:3b:94:98:17:d6:3c:41:
07:a5:4c:5a:5c:7e:f1:f8:08:96:75:68:42:53:e4:
bc:c6:b0:82:35:ae:62:f1:3d:0e:42:e3:5a:35:2e:
69:12:be:5f:6a:a3:1d:1f:6d:09:99:b2:4a:bb:48:
af:e3:94:ee:6b:fb:10:57:08:50:f6:bd:f2:4f:48:
8b:ca:50:bf:37:f7:c8:b5:47:69:b4:54:75:1b:d3:
d1:8e:71:24:17:9e:39:de:39:c9:9e:4a:83:6f:1d:
8b:ac:37:b2:cc:86:aa:dd:6e:8e:69:bb:6a:de:f2:
0b:dd:67:30:d8:b9:a0:89:6d:80:01:ca:63:61:ad:
ac:4b:6b:db:98:84:83:56:95:be:09:e6:b8:47:bf:
66:58:b9:d6:c2:73:4a:9c:a6:a1:18:30:b7:34:ff:
33:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:4C:97:F5:E3:5B:1B:37:25:36:7D:42:AF:B4:25:56:64:B3:3B:37
X509v3 Authority Key Identifier:
keyid:27:CD:CF:2B:D0:9A:20:D2:BA:DD:3A:B6:C8:C7:ED:FA:1F:D5:C2:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J83PK9CaINK63Tq2yMft-h_Vwsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/d2bc90-2950-4322-a92e-c63fcd03a89b/1/J83PK9CaINK63Tq2yMft-h_Vwsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:b5:67:56:2b:97:f1:96:97:4f:21:97:20:a3:9c:a6:6f:fe:
33:0f:6a:61:8d:f7:81:c7:fd:d3:a2:84:05:ec:3b:45:92:2e:
9d:74:4f:19:a2:4e:39:99:89:3e:aa:e0:9a:73:ca:0c:31:9b:
94:35:08:b1:00:be:55:91:da:bb:64:f6:41:aa:7a:3e:ba:e2:
84:dc:97:f4:bb:5c:17:1d:12:b2:41:7c:ca:3c:d9:e3:9d:b8:
f2:b4:86:98:ee:5c:b7:a1:76:34:0b:5e:96:ac:e0:c6:af:91:
a7:b0:bd:11:8e:43:d4:74:e6:a4:d3:37:9c:62:03:92:75:93:
8a:27:54:1e:4b:50:ab:fa:c5:57:32:77:cb:74:f3:d5:1a:8c:
61:f7:63:12:38:ae:08:2c:77:8f:4f:d2:fe:4c:12:89:33:d3:
f4:a6:f3:8d:c5:b0:95:42:f1:55:70:51:87:29:de:7f:ae:d1:
8a:af:94:fe:97:52:7b:f6:ce:92:b5:0f:f9:13:bc:0c:e9:7c:
77:47:3d:9c:e9:38:86:c6:e1:29:0a:3e:70:c6:ff:85:4a:33:
23:1c:1a:1a:2d:85:e9:93:31:af:4c:47:91:94:19:f6:3d:ba:
95:5b:67:05:90:b8:73:d4:a7:6d:4e:3a:5c:2a:27:59:c6:09:
6c:ff:14:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:37:30 2025 by rpki-client