Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
File: _2szYaGioA284xkBmCf-u3Fb0EQ.mft (raw, json)
Hash identifier: iQBimPN/vUKWdxpBYVmKCCQ9vD7f+EsUnSxoE5J5BQs=
Subject key identifier: 73:FF:EE:A2:23:86:35:B4:00:EA:2F:A1:62:C3:D9:F8:67:A6:D2:5D
Authority key identifier: FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
Certificate issuer: /CN=ff6b3361a1a2a00dbce319019827febb715bd044
Certificate serial: 01964669F1DC397ADDFD932841C181117B5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
Manifest number: 1459
Signing time: Fri 18 Apr 2025 01:01:10 +0000
Manifest this update: Fri 18 Apr 2025 01:01:10 +0000
Manifest next update: Sat 19 Apr 2025 01:01:10 +0000
Files and hashes: 1: WWNEma98vqvt3aWub4KvZrisRPY.roa (hash: 8ej/FxtmoHvT2+4JYPncO9OF+5JwUWMEm2sRynTw/0U=)
2: _2szYaGioA284xkBmCf-u3Fb0EQ.crl (hash: uBWMRoX3rjxjUv6p4GBx0w6DmJ742EoMRbDRn7wZDZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:46:69:f1:dc:39:7a:dd:fd:93:28:41:c1:81:11:7b:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff6b3361a1a2a00dbce319019827febb715bd044
Validity
Not Before: Apr 18 01:01:10 2025 GMT
Not After : Apr 19 01:01:10 2025 GMT
Subject: CN=73ffeea2238635b400ea2fa162c3d9f867a6d25d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:6b:26:e4:48:36:b9:43:d1:9b:6f:44:ed:a5:
42:75:b0:d9:be:1a:41:30:2e:32:09:62:af:91:8c:
8a:dc:71:19:0d:b5:51:0d:0a:4d:ca:68:38:df:af:
4b:15:d7:f1:7f:29:f1:58:56:c8:c5:2f:97:23:85:
04:82:03:1b:f1:15:4b:d0:5a:22:5c:7e:cd:4f:b9:
18:ea:68:99:2f:7b:4c:69:c2:9c:a1:4f:a0:86:ac:
7d:39:f6:dd:3b:98:b4:44:fa:d7:bc:3a:f8:20:88:
ed:e7:5e:4b:9f:c1:43:d8:19:7c:c4:0a:46:32:b5:
21:db:fe:eb:78:bd:a8:a0:c9:a0:00:43:45:70:bd:
d7:a5:4a:03:03:b0:1e:e1:ef:63:17:c4:1f:f3:f6:
77:c0:ea:51:ff:56:3e:38:eb:e7:27:19:02:ce:8f:
98:d8:60:70:71:8c:ca:2e:3c:ff:08:ae:98:56:65:
36:df:99:51:d8:31:0c:ee:a5:41:49:09:01:3f:81:
6b:63:33:ec:12:65:c1:6f:b4:ec:07:1c:6c:d6:cb:
7d:05:53:82:1b:fd:ca:98:6c:67:8c:10:72:2a:51:
56:f3:0b:a6:d2:36:6f:da:80:50:e0:09:36:03:c5:
08:cd:07:27:76:e0:6b:f7:04:e5:62:6f:4d:dd:10:
ee:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:FF:EE:A2:23:86:35:B4:00:EA:2F:A1:62:C3:D9:F8:67:A6:D2:5D
X509v3 Authority Key Identifier:
keyid:FF:6B:33:61:A1:A2:A0:0D:BC:E3:19:01:98:27:FE:BB:71:5B:D0:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_2szYaGioA284xkBmCf-u3Fb0EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/96f9a0-8746-4b32-83ee-f62320951a36/1/_2szYaGioA284xkBmCf-u3Fb0EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:f1:c8:00:cc:fa:3d:5b:d7:c0:dc:31:ed:d5:14:24:ff:4e:
9e:2a:b3:5d:b1:9c:4c:e9:f0:c1:fc:d7:62:b7:43:68:04:5a:
bf:c4:a6:78:6d:3d:2b:6b:24:15:51:c2:36:c8:3e:a2:b6:51:
03:0d:84:c1:85:c4:4f:91:2c:39:c3:20:bb:23:0b:03:71:f4:
81:3d:c6:68:73:69:fb:b9:1c:72:f6:f9:df:6e:95:30:05:7b:
62:a0:da:85:4f:32:23:d0:78:47:f0:1f:e7:0b:4e:60:26:74:
f5:de:25:aa:1b:5c:d4:df:4f:88:ef:b9:86:5b:7c:3e:1d:ac:
7c:33:3f:6e:4a:65:5a:22:ee:80:dc:da:df:e9:7e:78:c5:33:
a0:36:27:5a:98:4c:f6:ae:72:1f:23:97:66:90:17:01:92:81:
88:cf:03:e5:04:22:52:36:c4:3c:14:3f:f6:b5:d3:71:99:05:
29:dc:0f:06:9f:25:18:e8:38:4c:73:15:17:d8:67:cb:eb:1a:
19:17:ce:b0:4c:31:e3:07:f1:26:22:aa:a2:f4:ca:2b:fc:58:
fc:db:c2:9f:b5:db:69:66:89:6b:fc:aa:ad:e1:96:f7:1e:7e:
10:ea:eb:43:3b:f3:b6:c4:77:4e:0c:c6:32:e3:b1:87:a9:b9:
cd:28:3d:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 05:02:52 2025 by rpki-client