Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/6a99dc-9555-46cd-ab2d-14655c03c033/1/cCFOfqyx0k4hHi8l_uStdX5sll0.mft
File: cCFOfqyx0k4hHi8l_uStdX5sll0.mft (raw, json)
Hash identifier: eiHkpG9+gOi6Hzhs3K9ZlCbeVN+Fd8dvg7RLjZ+9qqo=
Subject key identifier: 3E:31:E1:4A:A8:A2:C8:C4:3A:8E:C0:DF:12:0F:13:ED:B3:92:AF:31
Authority key identifier: 70:21:4E:7E:AC:B1:D2:4E:21:1E:2F:25:FE:E4:AD:75:7E:6C:96:5D
Certificate issuer: /CN=70214e7eacb1d24e211e2f25fee4ad757e6c965d
Certificate serial: 01965F84B99D3D27CBF41A02AEA67216A1D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cCFOfqyx0k4hHi8l_uStdX5sll0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/6a99dc-9555-46cd-ab2d-14655c03c033/1/cCFOfqyx0k4hHi8l_uStdX5sll0.mft
Manifest number: 04AB
Signing time: Tue 22 Apr 2025 22:00:55 +0000
Manifest this update: Tue 22 Apr 2025 22:00:55 +0000
Manifest next update: Wed 23 Apr 2025 22:00:55 +0000
Files and hashes: 1: Ur1p6KL9NTfFRBrJ7C7-zJCCRXo.roa (hash: lsHocd823a47v2/eGKZz1waiHC7kKATLJJz6RHG9Ic0=)
2: cCFOfqyx0k4hHi8l_uStdX5sll0.crl (hash: U6+u7WQZQHwHkjv2yFBesClebAqbgrimg55vll3on3k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/6a99dc-9555-46cd-ab2d-14655c03c033/1/cCFOfqyx0k4hHi8l_uStdX5sll0.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/6a99dc-9555-46cd-ab2d-14655c03c033/1/cCFOfqyx0k4hHi8l_uStdX5sll0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cCFOfqyx0k4hHi8l_uStdX5sll0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 20:22:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5f:84:b9:9d:3d:27:cb:f4:1a:02:ae:a6:72:16:a1:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70214e7eacb1d24e211e2f25fee4ad757e6c965d
Validity
Not Before: Apr 22 22:00:55 2025 GMT
Not After : Apr 23 22:00:55 2025 GMT
Subject: CN=3e31e14aa8a2c8c43a8ec0df120f13edb392af31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d3:b4:63:67:7f:ce:9d:e2:2c:35:a2:63:0b:
53:ef:31:fb:a7:b4:07:5a:13:fc:1f:b4:f9:09:9a:
7b:93:37:88:a2:19:a8:fe:a6:b7:e0:7f:94:fc:07:
16:38:0a:f1:7c:88:fa:7f:6c:cc:7a:ab:a8:30:c7:
52:83:a9:fe:b7:20:00:e8:2d:d6:8d:1e:34:22:e8:
1d:d8:f4:10:64:e6:f3:d1:39:7a:2d:ba:7b:f5:58:
5c:fb:57:42:30:65:d4:2d:b5:12:8f:05:a9:c4:0e:
ba:dc:08:cc:67:5a:2c:a8:3f:93:6b:d8:0d:93:7c:
72:3a:62:ab:66:e0:b9:25:06:30:d3:a6:77:39:ba:
f2:b1:42:6b:db:18:7a:55:a7:7f:52:70:5f:7a:ce:
d2:f0:57:74:c5:2a:d5:39:d3:78:c3:06:ff:63:fe:
96:0e:15:f7:bb:b0:8c:01:6b:2c:7f:e1:d6:4f:cb:
59:9a:f5:96:d8:8d:be:43:f6:09:e9:a6:e2:2a:97:
9a:86:25:86:f3:34:6f:02:94:12:6a:80:3d:ad:04:
cd:db:3c:04:ca:10:f9:f0:75:71:0d:4a:6c:1e:da:
9b:b2:3c:77:a4:4a:dc:fe:25:9e:96:e2:a7:ba:b6:
39:4d:17:b8:a2:7b:0b:38:ab:cb:e6:1e:3a:25:f2:
7b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:31:E1:4A:A8:A2:C8:C4:3A:8E:C0:DF:12:0F:13:ED:B3:92:AF:31
X509v3 Authority Key Identifier:
keyid:70:21:4E:7E:AC:B1:D2:4E:21:1E:2F:25:FE:E4:AD:75:7E:6C:96:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cCFOfqyx0k4hHi8l_uStdX5sll0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/6a99dc-9555-46cd-ab2d-14655c03c033/1/cCFOfqyx0k4hHi8l_uStdX5sll0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/6a99dc-9555-46cd-ab2d-14655c03c033/1/cCFOfqyx0k4hHi8l_uStdX5sll0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:46:15:6b:b1:3a:5e:2a:f6:b5:12:c6:2a:67:cc:b6:93:a0:
7d:5d:a8:77:a6:b8:34:05:e6:cb:ce:0f:1b:24:9e:3b:db:45:
b9:1b:bf:72:6c:21:b1:19:72:15:c8:b0:6a:25:17:e6:07:a3:
33:a9:fe:2c:29:07:db:16:5d:ae:7f:eb:a8:3b:1a:9b:95:9d:
0e:52:a3:71:fc:9b:a2:08:e2:a5:81:e3:98:4f:f7:fc:74:b2:
66:75:d0:3c:27:99:32:3f:3a:e5:09:da:00:f4:fd:15:3d:0c:
49:9e:80:9d:27:ca:b6:70:0f:2d:f9:40:a1:60:0f:8c:67:c6:
34:bb:e9:96:72:16:17:57:a5:5b:3f:37:68:3a:c6:9b:17:55:
21:ec:df:b6:d9:6a:aa:2c:fb:cf:2f:d6:61:30:31:1f:63:b2:
ec:d5:11:40:80:df:f6:56:bc:90:61:14:66:90:66:a8:7a:9f:
8c:b9:6a:04:f1:5f:a8:4f:62:1c:f6:19:d2:e4:f2:a3:c4:07:
f1:43:74:7f:42:b4:17:de:a7:c4:53:29:fc:a1:6c:9e:a4:4a:
ec:ac:17:80:63:22:d1:18:29:50:c8:b6:3a:20:5a:52:ec:75:
6f:cf:37:66:34:c4:84:e5:32:70:a8:8a:06:bb:62:f4:48:1f:
3d:9d:1f:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 02:15:43 2025 by rpki-client