Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.mft
File: 25ebiYwPWDTLyDimmgXjq-jAKQM.mft (raw, json)
Hash identifier: LJ3tvvw9h0RoSn9c3QpBEKDJ9+MnHCf4E0MXYmWPez0=
Subject key identifier: 2B:85:E3:D0:38:EE:FC:94:5C:81:DB:FA:B5:48:C3:EC:01:69:B8:83
Authority key identifier: DB:97:9B:89:8C:0F:58:34:CB:C8:38:A6:9A:05:E3:AB:E8:C0:29:03
Certificate issuer: /CN=db979b898c0f5834cbc838a69a05e3abe8c02903
Certificate serial: 019652A4D4FD75981E6FEA5C3DCB4852415A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/25ebiYwPWDTLyDimmgXjq-jAKQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.mft
Manifest number: 088F
Signing time: Sun 20 Apr 2025 10:00:56 +0000
Manifest this update: Sun 20 Apr 2025 10:00:56 +0000
Manifest next update: Mon 21 Apr 2025 10:00:56 +0000
Files and hashes: 1: 25ebiYwPWDTLyDimmgXjq-jAKQM.crl (hash: fr1Z/pKY/niKeTvVeYWI0V7pGOnVEuEPDFKsb6eV6ww=)
2: kQI24cv0NZjcs-NoEtkNWQr945M.roa (hash: lv4kdfvUyBf5e1wmjHgM1hbCJlTmhLUys8Yvw75WiAo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.mft
rsync://rpki.ripe.net/repository/DEFAULT/25ebiYwPWDTLyDimmgXjq-jAKQM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:a4:d4:fd:75:98:1e:6f:ea:5c:3d:cb:48:52:41:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db979b898c0f5834cbc838a69a05e3abe8c02903
Validity
Not Before: Apr 20 10:00:56 2025 GMT
Not After : Apr 21 10:00:56 2025 GMT
Subject: CN=2b85e3d038eefc945c81dbfab548c3ec0169b883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:5f:53:57:b3:eb:2a:24:44:67:92:d5:b5:8d:
d8:8d:0b:14:46:55:64:96:86:97:8c:22:d1:26:df:
2d:47:f4:4c:b8:b4:e6:e7:d3:36:ef:d0:03:b0:fb:
37:ad:4e:9b:27:2f:7b:72:af:9c:65:b3:d6:ad:f6:
43:f3:89:ff:c4:8a:41:d8:db:5a:0b:95:94:62:aa:
0a:59:c1:ce:7a:f3:b5:eb:d0:e7:91:96:52:ad:8a:
8d:65:ea:b3:9e:23:52:86:ba:77:b1:38:de:25:1c:
9d:51:6b:04:26:b9:b8:f7:85:b1:42:85:b0:f0:d0:
bf:df:6b:b0:84:2a:17:a9:cc:07:88:84:a2:a0:40:
2f:3d:0e:3e:24:56:92:60:a5:b6:b3:78:80:f4:09:
c3:53:45:11:f5:37:18:f5:26:77:3e:d0:d1:28:ce:
c2:bf:ed:e9:1f:10:8e:ba:fa:66:0d:72:ab:e6:76:
aa:5e:2b:d0:89:b1:98:65:3e:88:92:9c:a3:a8:7b:
1c:1b:ab:cd:ee:e7:65:d4:dc:95:b4:04:d9:68:30:
a1:f2:8d:f2:78:bf:5c:c0:97:ac:0e:43:28:58:eb:
a6:1a:5a:02:c6:d3:d1:af:35:11:ce:3f:80:da:05:
d7:17:43:3b:07:ee:de:25:60:06:1d:64:30:85:e0:
e8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:85:E3:D0:38:EE:FC:94:5C:81:DB:FA:B5:48:C3:EC:01:69:B8:83
X509v3 Authority Key Identifier:
keyid:DB:97:9B:89:8C:0F:58:34:CB:C8:38:A6:9A:05:E3:AB:E8:C0:29:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/25ebiYwPWDTLyDimmgXjq-jAKQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d5fde6-1951-47b8-a325-4cb257ee192c/1/25ebiYwPWDTLyDimmgXjq-jAKQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:04:d1:be:88:8c:9a:ff:86:5a:f7:6e:ba:02:67:46:5a:87:
2e:e7:97:01:17:ce:9c:2a:8d:53:57:24:8e:c8:ed:2f:a9:c5:
ab:33:90:71:c8:64:5a:02:8d:8d:18:87:bf:00:8e:6f:38:f5:
0c:40:fe:e8:c1:ee:b2:9f:b6:97:8d:ca:b4:68:e8:78:c3:d0:
54:1d:58:b0:4e:5b:7e:da:9c:11:7b:26:dd:f6:31:3e:a2:16:
6e:46:97:b7:af:20:29:19:83:6d:c7:23:97:ef:5c:c6:63:ef:
59:81:aa:ff:7e:e6:0f:d4:62:43:54:6e:eb:57:a4:00:99:31:
8b:b8:8c:06:db:c2:e9:92:06:8d:fd:74:cb:2e:f9:c2:68:e6:
80:02:6f:d0:f7:d5:6f:c9:e8:b4:28:81:2a:d6:b7:dc:5f:96:
da:47:ff:bb:69:6d:ac:d3:14:20:80:46:57:40:89:ff:cc:55:
a3:37:d5:42:5e:9e:68:b8:ba:d7:8b:5d:e0:58:d3:9e:1b:11:
55:c2:d9:a2:01:3b:bd:df:92:13:bc:4a:71:f0:b4:c6:f9:ea:
c5:f2:ba:7a:48:b9:26:35:dd:f2:c8:61:3d:5c:d8:c3:5f:59:
c1:f9:0a:5f:3d:cb:74:cd:52:6c:96:29:d8:66:ab:32:07:16:
90:a1:d2:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 15:03:21 2025 by rpki-client