Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.mft
File: sPiohfd3bSq5m7TyDoTTBuA5SqM.mft (raw, json)
Hash identifier: zlW/HkmqfZDKD0O7G8fibpfU3g8d+/8VWXFTPpfkDzQ=
Subject key identifier: 05:67:3C:62:99:5F:FE:6E:D3:64:06:03:1E:50:B5:78:8B:71:3F:85
Authority key identifier: B0:F8:A8:85:F7:77:6D:2A:B9:9B:B4:F2:0E:84:D3:06:E0:39:4A:A3
Certificate issuer: /CN=b0f8a885f7776d2ab99bb4f20e84d306e0394aa3
Certificate serial: 019652DB7C519590234BAFC97F38F0551CC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPiohfd3bSq5m7TyDoTTBuA5SqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.mft
Manifest number: 1290
Signing time: Sun 20 Apr 2025 11:00:37 +0000
Manifest this update: Sun 20 Apr 2025 11:00:37 +0000
Manifest next update: Mon 21 Apr 2025 11:00:37 +0000
Files and hashes: 1: SvV3htVhXEPI7wFXdPP_R5R2jOo.roa (hash: ADbpdowWW8HzIQ0XmIe2lqnPixhQxjU2ME36RexdQ8I=)
2: sPiohfd3bSq5m7TyDoTTBuA5SqM.crl (hash: TvXNkfrZvvGMXJQ3gB355xtYZaD8jdJTEtHIpH+fKUk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.mft
rsync://rpki.ripe.net/repository/DEFAULT/sPiohfd3bSq5m7TyDoTTBuA5SqM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:db:7c:51:95:90:23:4b:af:c9:7f:38:f0:55:1c:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f8a885f7776d2ab99bb4f20e84d306e0394aa3
Validity
Not Before: Apr 20 11:00:37 2025 GMT
Not After : Apr 21 11:00:37 2025 GMT
Subject: CN=05673c62995ffe6ed36406031e50b5788b713f85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:bc:d3:e4:72:ea:96:e9:0a:b3:07:60:01:81:
f6:c4:3b:04:e5:d9:f5:de:0c:54:a8:5b:4c:68:36:
11:80:ca:f6:1a:4e:e4:3a:c8:40:04:ac:51:28:68:
4c:f9:73:a1:59:d9:c7:9e:19:5f:6b:0b:1c:77:97:
10:88:06:0f:cd:00:7b:5d:e3:bb:b7:85:86:4f:24:
3d:14:e5:2a:9d:4e:93:32:16:41:3a:e7:9c:4f:95:
56:82:71:e3:95:b3:f1:37:87:1e:02:68:e0:9a:d2:
ea:78:66:cd:7c:b1:36:73:cb:9f:22:f5:d4:af:37:
2e:81:87:cf:5b:62:3c:fc:4c:55:36:57:45:c8:6f:
d8:9f:18:63:ba:74:e5:65:26:50:1b:3f:c2:f6:51:
9b:e4:aa:63:40:ff:a6:22:e6:aa:7e:2c:ea:0c:83:
5e:50:11:f0:3f:1f:fb:d6:c1:78:49:7b:bc:0b:bd:
1a:f0:8f:9f:b1:53:56:3e:f4:58:fe:c8:f2:2f:0f:
f3:60:f1:26:cb:76:2f:ec:f1:0e:a6:59:81:e0:80:
07:8a:2f:aa:95:ea:34:11:af:34:a5:da:60:b3:d8:
2e:37:39:28:6c:5d:5e:1c:2d:6c:40:c6:bd:78:70:
22:51:69:a5:14:8e:31:55:ae:8c:f7:22:be:59:c7:
0b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:67:3C:62:99:5F:FE:6E:D3:64:06:03:1E:50:B5:78:8B:71:3F:85
X509v3 Authority Key Identifier:
keyid:B0:F8:A8:85:F7:77:6D:2A:B9:9B:B4:F2:0E:84:D3:06:E0:39:4A:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPiohfd3bSq5m7TyDoTTBuA5SqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:a5:d5:df:26:1f:4e:f2:cd:98:c7:df:f3:1c:01:36:87:b0:
8d:c3:a2:c6:98:3d:34:63:30:45:a2:ee:8d:7f:38:8c:d0:c4:
df:66:a4:96:4f:7b:8b:22:96:25:25:d2:0a:45:c1:4b:07:19:
40:a0:91:dd:e1:e9:ee:75:84:ef:4a:bf:e2:d9:7a:a2:2e:9a:
40:f8:86:56:a7:dc:cc:12:6d:30:2e:2a:41:10:d6:65:42:62:
97:dd:73:80:bd:22:f1:d6:31:d6:d4:fa:15:ab:73:d5:17:32:
d1:27:6b:3a:76:a5:28:33:8a:eb:3f:e6:a7:40:42:ff:94:96:
19:85:d3:f7:4b:9d:32:26:6c:55:92:8e:4b:00:7e:b1:cd:73:
51:f4:a6:b0:15:78:28:76:89:9b:ba:ac:05:d0:f1:e9:aa:73:
fe:15:1f:48:7a:99:78:ee:97:15:3d:de:66:12:c5:f1:b0:71:
64:29:10:5c:4f:05:a9:44:20:b5:ae:3b:c7:a0:d4:e2:a7:9f:
8d:10:69:5a:1f:3e:b8:d9:31:73:ab:96:85:a3:14:85:3c:60:
b9:86:47:a4:ad:0d:bf:db:2c:c2:49:c7:4d:d2:e6:7e:2b:d3:
16:6b:18:f8:48:63:55:3d:f8:01:0f:e9:69:d1:27:3d:6f:9a:
93:db:bf:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:07:03 2025 by rpki-client