Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
File: r3gchFM5kA9-ayAz5jiItTrleHU.mft (raw, json)
Hash identifier: U8pXSmyzNHiw7UhhZCp1arpbcEvtDLO2IOQNBLig2iA=
Subject key identifier: 1F:A3:C2:B2:9A:EB:F0:8F:E2:F7:1E:E4:FC:14:87:84:04:96:F4:42
Authority key identifier: AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
Certificate issuer: /CN=af781c845339900f7e6b2033e63888b53ae57875
Certificate serial: 01959073A7FE8FBA6942B753C8A08AB1A386
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
Manifest number: 1499
Signing time: Thu 13 Mar 2025 17:00:53 +0000
Manifest this update: Thu 13 Mar 2025 17:00:53 +0000
Manifest next update: Fri 14 Mar 2025 17:00:53 +0000
Files and hashes: 1: qZsU012FOT7iNKmn0Q6fmLHg-jY.roa (hash: t+/X1ob1d2V1rnzYvMBrQBRc/+JtrsZ+AHNltw325kg=)
2: r3gchFM5kA9-ayAz5jiItTrleHU.crl (hash: vjjcrp/s7aXe+QlAPxcR2yI4KjgbWLnR3ZtyVdzv6Lg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 15:28:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:73:a7:fe:8f:ba:69:42:b7:53:c8:a0:8a:b1:a3:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af781c845339900f7e6b2033e63888b53ae57875
Validity
Not Before: Mar 13 17:00:53 2025 GMT
Not After : Mar 14 17:00:53 2025 GMT
Subject: CN=1fa3c2b29aebf08fe2f71ee4fc1487840496f442
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:5e:a4:1f:21:a6:0c:1f:30:f5:86:42:5f:8d:
d3:fc:93:5a:9f:12:bc:0d:04:00:54:98:d9:d9:00:
62:b7:26:24:22:da:72:02:57:d2:b3:44:b0:70:83:
6b:f2:51:a2:f0:eb:02:91:4c:69:cc:06:2c:8b:5d:
37:69:af:60:1b:f4:3b:92:68:06:5c:3b:cc:b8:c5:
66:da:bf:c4:23:14:50:ef:d9:ff:70:cd:ff:b2:57:
06:26:bc:ca:c8:04:94:97:8e:18:ea:4b:53:a5:a9:
a3:96:34:82:81:f3:f3:7a:52:8e:e8:09:68:71:22:
4a:1f:13:ec:20:44:f9:cf:14:7e:01:c3:f9:53:3a:
d1:3f:cc:c0:0c:84:c6:2e:0d:16:d1:24:90:f1:a8:
1a:bd:c7:5b:0f:b9:92:e9:ed:af:2c:8c:03:dc:37:
54:6d:83:f2:6c:83:0e:73:04:0e:81:03:4e:d0:da:
86:62:4c:1a:61:f5:e9:37:34:03:c5:97:16:3f:72:
df:7a:27:10:e3:e0:39:0c:e5:25:f4:76:d8:3d:5d:
bf:99:7a:a3:91:87:f2:32:11:4b:c3:54:fd:d5:09:
89:f7:8e:00:3a:2a:40:59:cf:69:e9:f6:3f:b6:c4:
f6:75:75:cb:05:cd:96:ab:bb:a9:f2:40:c5:b5:46:
25:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:A3:C2:B2:9A:EB:F0:8F:E2:F7:1E:E4:FC:14:87:84:04:96:F4:42
X509v3 Authority Key Identifier:
keyid:AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:47:2b:fe:27:1c:64:e5:18:2f:17:18:b7:10:62:42:54:5e:
06:72:a4:f7:30:d8:fd:16:80:f8:67:43:71:d6:c4:a5:b6:ed:
3a:2f:50:b8:d0:d0:b1:8f:f7:f6:ff:1e:9e:d5:6c:87:49:07:
73:30:a2:45:10:75:05:f9:c1:3d:75:c0:dc:36:2a:51:d5:c1:
b4:67:5e:d8:6d:62:53:3a:d0:86:b9:fa:b8:dd:e0:a4:2c:a6:
7f:e5:a5:13:83:7f:85:d5:2b:3d:4f:18:2d:88:3f:22:d2:9d:
15:62:be:61:44:04:22:e7:d2:5c:b6:24:b5:d9:dc:7b:a0:8b:
42:fd:b1:2d:de:87:27:24:6b:fd:b3:e2:1c:c9:59:99:59:46:
96:b4:76:d1:2e:ec:b1:02:e7:de:0a:5c:ab:2e:dc:c6:a9:87:
01:24:d5:06:75:ea:c8:43:45:cb:ee:15:23:ee:0c:e2:27:ed:
4e:37:56:0d:ca:ee:c7:50:b1:6a:cc:84:40:6d:e3:9a:62:33:
a6:94:7a:39:12:f0:c9:f4:07:d2:01:89:2f:b3:29:ec:49:39:
09:0b:03:cf:39:ef:30:20:fb:3d:b9:4c:5f:7d:78:0a:6b:cf:
51:33:dd:14:27:de:c0:73:5e:41:2a:99:29:f1:53:d4:45:19:
f6:97:7e:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:23:48 2025 by rpki-client