Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
File: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft (raw, json)
Hash identifier: Knc6VZ2CwlaG6Xm1Vx0FNxlTUUlM7YkO6wCKPWYEIKU=
Subject key identifier: 74:AB:92:FC:1C:87:A9:95:61:B8:1E:42:B6:8A:D8:A5:46:0F:F8:9F
Authority key identifier: 08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
Certificate issuer: /CN=0842759a04fcfd9dd386486f04820e4a060397f2
Certificate serial: 019652A4F82673D81D354C64F9A38ADA4F81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
Manifest number: 016D
Signing time: Sun 20 Apr 2025 10:01:05 +0000
Manifest this update: Sun 20 Apr 2025 10:01:05 +0000
Manifest next update: Mon 21 Apr 2025 10:01:05 +0000
Files and hashes: 1: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl (hash: /Og8IMLV1dymbyk4XWFRPZFbuzzclMltFAe7G6x1IJk=)
2: bQzf2uMGkgXH3X2QS8uIrSp74eU.roa (hash: YLxBLk8jjfgkyujII1/AehF/PxCPTNN02Psu8lVMfcc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:a4:f8:26:73:d8:1d:35:4c:64:f9:a3:8a:da:4f:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0842759a04fcfd9dd386486f04820e4a060397f2
Validity
Not Before: Apr 20 10:01:05 2025 GMT
Not After : Apr 21 10:01:05 2025 GMT
Subject: CN=74ab92fc1c87a99561b81e42b68ad8a5460ff89f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d9:2a:6c:ee:d7:c4:86:46:f5:61:da:f3:1b:
30:75:b2:25:46:f7:40:f8:c3:12:93:09:4e:dd:c1:
34:00:01:df:16:aa:e5:3e:dc:63:27:32:f5:90:cb:
14:ad:7d:99:ba:2e:e6:13:d9:49:c4:a8:c1:a7:64:
55:32:2a:a8:93:62:53:40:81:fb:63:41:60:aa:00:
04:79:f9:57:73:3d:f7:6e:fe:30:64:1d:5e:45:63:
ce:e0:2c:f2:5d:97:6d:2c:a7:ea:e4:9c:46:d6:3d:
73:40:73:cb:c3:59:78:12:e7:2e:a2:50:6a:63:13:
23:5b:a8:f3:60:f8:49:f9:94:f9:ee:cb:e8:8f:50:
5b:ee:05:9b:5d:42:4c:0f:f9:da:67:ab:46:2f:5c:
8d:fd:57:9b:7c:c7:65:ad:e0:ca:a4:c9:8f:51:1c:
bf:f8:2e:bb:25:30:c6:8e:51:5a:b0:bd:c8:27:cb:
b2:aa:73:8f:f4:a9:66:09:bf:2d:09:ff:bf:b2:01:
b2:19:d4:88:7e:a4:56:24:ba:c7:50:ad:61:ee:a7:
b1:a8:0f:11:4d:55:e9:81:6c:16:50:90:52:a5:77:
08:17:49:53:f4:66:43:6e:32:50:a7:49:58:e8:e8:
a0:44:a3:c5:03:0d:a1:08:d7:dc:e0:63:ea:ec:ec:
2c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:AB:92:FC:1C:87:A9:95:61:B8:1E:42:B6:8A:D8:A5:46:0F:F8:9F
X509v3 Authority Key Identifier:
keyid:08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:e6:e4:d7:44:20:d5:53:38:18:af:0b:4c:f3:6c:f7:54:48:
68:09:c0:95:14:ee:ae:68:8b:13:55:fc:60:90:01:6f:fc:a4:
fa:81:93:8f:97:0c:2e:18:b8:91:38:1e:26:b6:b9:7d:eb:3e:
e5:f5:2e:cc:e4:a1:fa:76:a6:61:fc:5b:f9:14:66:04:9b:8f:
cb:ce:8b:77:b2:ab:4f:a2:ef:c6:98:50:b8:86:f6:75:1d:9b:
ff:71:03:84:46:c4:b6:3d:4b:25:60:58:56:4e:ba:34:df:1c:
66:88:47:6e:33:b5:5f:60:a6:0c:bc:4a:c4:03:b3:28:6d:61:
61:9a:18:7c:cb:58:99:d4:d0:13:8b:6a:5d:59:ec:74:7b:c5:
5c:45:39:78:3f:9b:52:5e:ca:ab:69:3a:18:14:61:1c:7b:4f:
f7:2f:b1:59:6a:81:46:95:d8:bd:39:b4:29:06:0c:fc:f8:b9:
67:81:bd:ef:81:21:da:be:67:d3:69:31:cd:33:23:7d:61:cb:
e6:16:68:5c:a7:d9:43:04:09:5a:68:ce:b9:89:5c:3e:a0:1b:
7a:f9:f5:33:ba:0f:2f:f9:4a:f8:27:1d:4d:70:07:13:e9:10:
bf:93:7b:a5:e6:41:b1:e2:57:99:7f:77:16:be:a6:52:11:02:
ca:50:c4:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:13:14 2025 by rpki-client