Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
File: cNvqB1PfCD5XgrufOAtdeZy3igY.mft (raw, json)
Hash identifier: GSrptYH2Jgl44gZU4xqGycaI9tGp4TAt1Pnimejx2FQ=
Subject key identifier: 5F:1B:DC:31:74:48:9D:C6:DE:91:06:72:07:71:D9:C2:1C:3B:F7:7F
Authority key identifier: 70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
Certificate issuer: /CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Certificate serial: 01964A0F0A529381E4C0299EDE592274E6EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
Manifest number: 148B
Signing time: Fri 18 Apr 2025 18:00:21 +0000
Manifest this update: Fri 18 Apr 2025 18:00:21 +0000
Manifest next update: Sat 19 Apr 2025 18:00:21 +0000
Files and hashes: 1: 7wYbQJjmUZJ3jrCYQep7ej1ycX8.roa (hash: gX6AQ4uDUscH9HZMwyFhtSxb+YXiJVmytGAK7BhRx4Q=)
2: cNvqB1PfCD5XgrufOAtdeZy3igY.crl (hash: myuL9azX9I2KHgzyiyJQOjfoWJtByDn5gXzzR+C9ZXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 14:20:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:0f:0a:52:93:81:e4:c0:29:9e:de:59:22:74:e6:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70dbea0753df083e5782bb9f380b5d799cb78a06
Validity
Not Before: Apr 18 18:00:21 2025 GMT
Not After : Apr 19 18:00:21 2025 GMT
Subject: CN=5f1bdc3174489dc6de9106720771d9c21c3bf77f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ed:c4:58:00:9a:6a:1b:9b:f6:02:cc:fb:b4:
63:a7:c6:a1:c1:ce:49:a9:2f:0f:d2:24:9c:59:1a:
31:61:53:d0:4c:bf:e5:11:b6:bc:67:72:35:2f:36:
da:d8:bb:d1:cc:a6:f2:8f:18:1a:43:96:a5:cf:8e:
46:5e:77:a6:17:ea:fb:bb:ee:7f:09:4a:e8:bc:f9:
6a:8f:6d:66:8c:d9:0b:fb:cb:5c:50:b4:fb:54:07:
dd:33:88:ec:4f:14:5f:11:05:ae:80:53:74:f8:98:
a1:70:d5:90:cf:bf:de:25:ba:5a:b4:b7:ce:2e:b1:
6d:03:d4:62:0c:76:24:2c:27:5f:f8:29:62:e9:6d:
70:4c:0e:b0:f4:49:a7:c5:63:56:54:f7:bc:92:dd:
75:53:ea:1d:63:1b:63:f2:2a:8e:29:12:7d:b5:54:
94:4e:3e:ed:8a:6d:c2:26:47:4f:70:76:04:91:a2:
ca:86:ce:75:c4:6d:1c:83:1d:ef:8b:4c:89:32:da:
78:10:65:fe:0a:84:ca:c1:03:e2:bf:a2:a4:b5:f6:
69:6c:a7:44:26:61:03:f4:03:5b:17:c9:39:87:c5:
84:4d:e8:93:4b:91:ef:de:e4:a6:3b:da:56:34:9d:
9a:18:78:8e:c3:4c:5b:27:88:3c:14:b1:2f:c9:47:
be:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:1B:DC:31:74:48:9D:C6:DE:91:06:72:07:71:D9:C2:1C:3B:F7:7F
X509v3 Authority Key Identifier:
keyid:70:DB:EA:07:53:DF:08:3E:57:82:BB:9F:38:0B:5D:79:9C:B7:8A:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cNvqB1PfCD5XgrufOAtdeZy3igY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/deec2e-0cd6-4113-b2b9-2a0cf13173d8/1/cNvqB1PfCD5XgrufOAtdeZy3igY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:19:c6:bb:e3:9a:75:ce:03:7b:b2:72:81:df:8b:b6:0b:33:
24:56:ff:f1:1a:f1:eb:75:dc:e2:e8:47:01:0e:42:52:1a:15:
2a:de:39:a8:74:97:ce:a1:87:f6:79:fd:bb:71:f3:1b:b4:f2:
03:5f:bc:8d:71:1e:84:a3:84:35:fb:70:a0:23:9e:82:61:de:
f4:62:7f:7b:ae:a3:b1:11:99:e3:71:59:aa:74:58:ee:ed:5e:
17:5d:65:bd:27:fa:09:0f:20:35:8e:44:8f:91:86:f5:de:40:
59:fc:c4:da:3a:86:57:b8:d6:ae:6e:2a:0a:38:6c:19:ef:7f:
32:5e:e6:1e:97:7c:70:af:ba:64:9b:52:63:2c:ab:b8:e1:57:
9f:ae:9a:a0:c7:05:c8:81:49:c0:c2:f1:26:bf:ac:3d:d4:46:
7b:a0:97:c4:30:9b:07:0e:23:52:99:a8:c9:b6:f7:33:a6:2f:
f7:ec:8e:cf:09:0a:1d:bb:1a:e2:74:0f:c2:76:7e:b2:40:2b:
b4:aa:bc:27:03:88:15:a4:be:74:4c:ad:a7:5e:27:df:b3:cd:
87:2b:7a:ad:1c:90:67:34:67:6d:42:6c:52:72:f6:c2:bd:37:
0a:b2:d7:d6:b7:fc:2b:c2:ae:24:1d:10:1c:02:09:10:6b:c8:
33:15:3e:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:29:23 2025 by rpki-client