Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: vPYE2bh2WAhdP/PNYanwTrM2yWljs2RITMIQtpZZnP4=
Subject key identifier: 8F:BB:F7:8A:3E:99:8B:40:97:5E:74:F4:9C:B6:DF:9E:0E:E6:2A:BB
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019640303949DCBFDAB36842C722E0117BD9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 14F7
Signing time: Wed 16 Apr 2025 20:00:24 +0000
Manifest this update: Wed 16 Apr 2025 20:00:24 +0000
Manifest next update: Thu 17 Apr 2025 20:00:24 +0000
Files and hashes: 1: 0qa8r-MxNMLt6tCXa-K5V6QBkro.roa (hash: oU+YFw1zeHKoa31/el8AmGzlkf3ldrnYHs0Qc542gzw=)
2: 2s9R-8NKLGYziws7CzdBBuI05qY.roa (hash: 8cPZV8bL1izy9SNqvDNd1+gha6xq2vYnb61KexJW8KE=)
3: 8trwTS6zWWIc2CXU2a9uB3EK1CE.roa (hash: cB6Sm/NTvhdg/vAHTGU6288+fVcpUIfblu8fCuXy72c=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: i+F2ssqjnGeJDZXB88PrbpKdA4NgvO3UmH0C5TWK0V8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:40:30:39:49:dc:bf:da:b3:68:42:c7:22:e0:11:7b:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Apr 16 20:00:24 2025 GMT
Not After : Apr 17 20:00:24 2025 GMT
Subject: CN=8fbbf78a3e998b40975e74f49cb6df9e0ee62abb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0c:ab:09:44:73:d6:f8:7d:0a:c2:ed:f2:24:
b4:44:e6:9e:ef:52:fb:3c:9c:3f:2d:3e:e8:20:17:
92:55:42:32:2b:0b:f9:07:55:37:d8:26:42:bc:26:
da:f4:7e:bd:0e:43:f9:b0:db:16:87:50:32:b1:46:
c5:c9:28:44:76:52:fb:57:99:eb:ee:e4:33:fe:77:
a3:71:59:3c:c0:be:d0:ca:75:59:98:b6:92:ce:bd:
71:34:f6:02:0e:11:56:2f:bb:cd:be:de:3f:80:82:
d6:1d:dc:2b:65:43:25:f4:ae:ab:5d:b2:82:43:64:
7e:97:24:57:6b:23:4a:14:98:54:fe:71:6c:0a:a9:
61:e4:2a:4b:30:8a:0f:b6:46:c3:ae:25:c5:f7:df:
be:32:9a:d0:d7:f0:b4:bc:aa:c6:cb:b7:f9:15:c3:
e8:e4:30:33:aa:1d:11:96:48:fb:88:dd:5d:28:c7:
e3:65:b0:12:85:2e:9f:12:cd:97:fe:34:d6:0c:67:
0e:67:10:0d:f9:46:e9:8e:9e:5a:f5:4d:27:fb:a6:
21:c9:0d:91:5b:c0:a5:e0:6d:70:4a:59:6d:92:a3:
cd:89:05:0f:37:5d:26:6a:53:20:90:88:a0:e4:55:
c9:2a:37:93:85:12:e8:3a:78:b2:1a:0b:2b:b4:4d:
ed:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:BB:F7:8A:3E:99:8B:40:97:5E:74:F4:9C:B6:DF:9E:0E:E6:2A:BB
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:2f:d2:7a:09:45:80:bb:70:f5:ec:75:31:7a:10:2c:62:b2:
89:7f:7d:76:f7:c5:5f:68:39:97:80:7a:19:02:af:4b:d7:81:
63:73:31:d1:4b:b1:4a:74:a4:a8:15:db:09:8c:b4:cd:46:2c:
82:ba:9d:3b:90:1e:e0:fe:97:7f:5b:ef:1b:32:c5:ed:bc:60:
f2:da:83:26:1a:e0:43:a8:68:b4:bb:e4:d1:3a:b5:5e:33:29:
37:cb:90:26:18:cc:84:d7:c1:f7:c7:c8:80:c7:d4:6c:f5:0c:
d2:04:7a:68:61:24:bb:21:f5:1b:95:c4:ca:af:c6:a9:c5:d6:
e3:dc:e8:38:72:20:f2:4b:8b:dd:04:6f:f6:b3:b1:50:23:cd:
5d:bd:17:fb:8b:b5:cd:d0:23:28:80:62:b3:51:b7:fd:75:3f:
5c:d2:f1:b9:0d:45:87:72:a6:db:f1:e4:f3:fb:b8:4e:20:ee:
9c:91:9f:bf:76:4e:fb:71:93:9c:af:49:e7:d9:9a:34:24:97:
35:d8:5c:4f:0f:bf:77:15:d4:31:89:5a:ed:57:27:94:cf:fc:
33:dd:4a:0d:b1:e2:dc:22:3b:56:a8:0d:86:1c:8e:c2:a1:a4:
49:ed:c5:ca:be:41:9f:6f:9e:a8:83:a1:40:7d:da:83:4f:b5:
12:65:39:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:21:21 2025 by rpki-client