Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
File: RdGncWAlFxEzoyAslGKg6r1mBoI.mft (raw, json)
Hash identifier: d62h72faw/tvVyV6dY/NWkb5H5ul9JQFwM326eAUgKw=
Subject key identifier: 94:89:DF:B9:C0:08:56:0D:AB:6B:99:37:6A:8A:F7:52:A8:74:DE:0F
Authority key identifier: 45:D1:A7:71:60:25:17:11:33:A3:20:2C:94:62:A0:EA:BD:66:06:82
Certificate issuer: /CN=45d1a7716025171133a3202c9462a0eabd660682
Certificate serial: 01965047FE1B0D1BBF8D5AD9BB02453848F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
Manifest number: 0490
Signing time: Sat 19 Apr 2025 23:00:17 +0000
Manifest this update: Sat 19 Apr 2025 23:00:17 +0000
Manifest next update: Sun 20 Apr 2025 23:00:17 +0000
Files and hashes: 1: RdGncWAlFxEzoyAslGKg6r1mBoI.crl (hash: U4Ud6XOSyKzSeSprcWcrbT2e5wIRhUyJn9pMeqa8OTw=)
2: p6pII2yeX9CFzHUBZ-7ECA5XoLc.roa (hash: a0i/QIPJclzVoZAHggGCZw2DH9on4V8xPPUo2d8z17I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:50:47:fe:1b:0d:1b:bf:8d:5a:d9:bb:02:45:38:48:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45d1a7716025171133a3202c9462a0eabd660682
Validity
Not Before: Apr 19 23:00:17 2025 GMT
Not After : Apr 20 23:00:17 2025 GMT
Subject: CN=9489dfb9c008560dab6b99376a8af752a874de0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:c2:74:15:a4:f5:17:8d:43:e6:5c:b4:fe:c6:
10:96:ed:4d:6e:1e:54:7d:c0:7d:f8:20:cc:b7:0c:
d1:81:d7:3f:8b:4c:e6:89:3c:c0:5a:62:39:db:5d:
3a:b1:4d:5d:dd:10:1b:64:6c:ec:8b:02:b3:44:1c:
93:45:0c:05:5a:e6:82:42:8e:b6:58:87:de:af:a2:
9b:27:a4:d4:5a:27:8d:b5:85:07:e0:f1:6f:fa:29:
9f:2f:d6:06:57:6a:b5:00:5a:39:29:cf:d3:6d:cc:
a4:fb:1b:3b:81:4c:e4:e3:93:64:f3:db:17:68:d0:
e6:f6:19:5f:cc:5f:bf:4f:4f:b9:15:1d:03:0f:a8:
94:7a:12:93:9c:f1:39:d2:20:72:30:6f:30:55:c0:
70:19:18:6f:e5:fa:7f:e7:0d:80:58:c9:88:b9:8c:
b0:63:75:d6:b3:b9:24:b4:ed:a7:85:51:44:f3:03:
1b:e5:c2:a5:ba:2c:8d:2a:93:a1:7e:e2:de:a8:59:
ce:96:13:81:2f:a9:36:0d:4b:ac:1c:38:00:8d:ea:
87:68:c7:8d:af:27:d4:a7:4e:0b:b6:b3:c1:96:b7:
c4:aa:8d:a9:8b:4d:b8:5e:c6:dc:fe:a8:33:59:11:
7b:fe:9b:85:ca:29:e0:72:62:34:3f:8d:1a:02:d6:
dc:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:89:DF:B9:C0:08:56:0D:AB:6B:99:37:6A:8A:F7:52:A8:74:DE:0F
X509v3 Authority Key Identifier:
keyid:45:D1:A7:71:60:25:17:11:33:A3:20:2C:94:62:A0:EA:BD:66:06:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:da:7f:88:b4:80:50:21:aa:47:38:fe:50:5f:e2:1b:91:08:
a9:ce:5b:2e:d1:e3:5e:d9:0f:bc:bc:28:d9:34:60:6b:30:71:
14:a2:ea:0d:4d:69:99:92:a1:df:34:6f:4d:7f:7c:72:51:30:
6f:a0:95:3a:f3:cf:5e:19:5b:e4:a6:03:8c:ef:1a:48:01:9d:
c3:06:43:82:45:bd:ab:9c:88:ba:c8:3f:c4:af:0c:c5:df:fa:
55:0c:d2:d6:41:68:06:8f:8f:19:96:ac:5c:98:5d:5c:cb:16:
9c:6c:ed:20:9c:fe:05:ce:d0:ac:95:83:57:ef:50:f5:fc:ed:
85:f7:02:f3:fa:b1:f5:bf:a9:9b:15:16:f2:20:18:65:0b:e3:
ad:6e:90:ef:11:e6:c9:08:80:de:5b:3f:36:58:92:48:03:99:
d4:a5:0b:c3:58:41:e7:53:92:84:c8:96:12:16:23:0f:35:13:
92:10:28:86:9e:9b:9f:44:a0:75:c5:9b:b1:e2:d0:48:2f:d8:
a2:82:2d:7c:8e:f1:e1:10:d2:7d:26:d2:06:90:ff:ba:ea:12:
2a:94:f5:a6:0c:52:96:2f:0d:ca:f2:72:56:95:7a:d8:4a:05:
71:2c:78:2c:1f:49:8f:38:0c:09:fb:09:4c:87:7f:d3:f3:ae:
e0:7b:64:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:03:59 2025 by rpki-client