Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.mft
File: 73imvMheyK3m7M6IDuBz1jdweWU.mft (raw, json)
Hash identifier: 68FdjgKoJHZkvFzwr1ANvJpB0onI9S3wOAexnPQrTmA=
Subject key identifier: 55:1B:33:28:AF:5B:73:3C:06:F8:56:33:DB:10:65:32:30:FF:B8:36
Authority key identifier: EF:78:A6:BC:C8:5E:C8:AD:E6:EC:CE:88:0E:E0:73:D6:37:70:79:65
Certificate issuer: /CN=ef78a6bcc85ec8ade6ecce880ee073d637707965
Certificate serial: 0196556E823905EDA492B2174C8113EF0095
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/73imvMheyK3m7M6IDuBz1jdweWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.mft
Manifest number: 14FF
Signing time: Sun 20 Apr 2025 23:00:27 +0000
Manifest this update: Sun 20 Apr 2025 23:00:27 +0000
Manifest next update: Mon 21 Apr 2025 23:00:27 +0000
Files and hashes: 1: 73imvMheyK3m7M6IDuBz1jdweWU.crl (hash: te591Y1yY63iPd8eIvg36/AAmDPk0WRyF4wBJyeKROg=)
2: 8ofg2JoTyb5e1GIiVqV2PdSesOU.roa (hash: z/SuBS1vMLBWp74A2t3I4/K0L71UAtSRqfDU9yXXBww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/73imvMheyK3m7M6IDuBz1jdweWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 23:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:6e:82:39:05:ed:a4:92:b2:17:4c:81:13:ef:00:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef78a6bcc85ec8ade6ecce880ee073d637707965
Validity
Not Before: Apr 20 23:00:27 2025 GMT
Not After : Apr 21 23:00:27 2025 GMT
Subject: CN=551b3328af5b733c06f85633db10653230ffb836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7e:32:02:8f:0a:62:6a:c0:4c:05:de:ee:9b:
d6:44:1f:60:b4:e8:c6:bf:8c:85:7c:74:96:bf:91:
51:da:b6:0a:7a:cd:02:6b:58:1d:92:be:4c:4a:5b:
b3:36:bd:c3:61:65:6c:c5:b2:3a:57:7c:da:87:b8:
0f:3f:66:3f:07:3e:29:ff:7e:15:c3:21:66:ea:00:
20:dc:f8:93:53:49:52:33:70:75:a5:71:0c:e9:f8:
c5:29:94:73:7a:eb:30:2b:f8:8e:4e:42:6c:31:a0:
af:39:be:35:6b:5b:4d:b2:a9:61:20:0a:26:6f:26:
41:02:80:3b:13:e8:c1:09:cd:08:0d:71:9e:40:dc:
47:05:2a:a5:ea:fe:1b:e7:79:de:08:a3:4c:31:94:
9e:aa:9b:a7:a1:e3:6d:38:47:92:d2:dc:d1:d4:05:
c1:03:32:44:16:24:00:49:4f:1d:31:eb:b9:7d:02:
16:82:9d:d3:aa:2c:c7:30:79:17:ba:43:b4:06:70:
ad:ce:93:d4:83:cf:26:61:32:f5:73:71:e1:0f:c0:
8f:c7:cc:cf:67:59:a9:7d:ed:4f:66:8a:24:43:a8:
31:b2:1e:d1:27:25:e4:9f:54:eb:c9:27:9c:a9:0d:
bb:17:4c:89:23:87:6a:f6:c0:b4:3f:07:f7:5d:c4:
ba:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:1B:33:28:AF:5B:73:3C:06:F8:56:33:DB:10:65:32:30:FF:B8:36
X509v3 Authority Key Identifier:
keyid:EF:78:A6:BC:C8:5E:C8:AD:E6:EC:CE:88:0E:E0:73:D6:37:70:79:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/73imvMheyK3m7M6IDuBz1jdweWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/49aba4-e63d-4e06-8a12-96f216893dec/1/73imvMheyK3m7M6IDuBz1jdweWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:9b:f4:eb:ed:c1:50:4a:37:f8:c6:7b:cf:46:28:5a:1d:b7:
f7:3d:f9:9d:e1:79:47:47:9d:d3:31:46:5d:8b:73:49:94:6e:
52:49:89:97:0b:de:da:cd:f3:85:a5:7e:9b:67:4d:0a:b3:c2:
83:d4:b3:34:be:e1:af:ab:5c:83:eb:27:52:bf:71:c9:ee:c4:
24:dd:af:29:7a:d7:25:65:61:0e:a0:4b:4f:e3:78:88:95:89:
04:d1:0e:6f:90:d8:30:78:1b:9f:d3:36:4c:fe:61:b0:f7:07:
b3:77:1b:01:70:af:25:9d:4e:21:39:e9:71:49:56:ff:90:2f:
a2:b5:6f:97:b8:59:48:b9:77:10:49:58:54:bd:ce:50:33:23:
f2:6d:30:5e:86:75:a7:00:a3:6f:2a:d9:e0:0b:7e:3a:3e:81:
07:e9:d3:84:46:b1:5f:d6:f5:18:1c:20:83:3a:01:7d:2e:0c:
1d:eb:ad:06:00:a8:6e:fb:f1:16:03:17:84:d9:68:b6:e0:01:
9c:b8:6e:4b:86:f2:ef:b3:a6:d5:c9:0a:db:de:21:52:50:da:
a1:9a:80:5c:e6:cb:2b:b7:6c:0a:81:dc:c8:89:27:70:58:1c:
5a:3a:c6:15:9d:fa:93:81:cc:c7:16:09:77:5d:2a:22:7b:ca:
69:63:bb:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:11:13 2025 by rpki-client