Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
File: 8zk0PMbVHduONjgpmhu0lfRYCSE.mft (raw, json)
Hash identifier: SIFoulDluoqdSdOCUXhcQ/UKiX1ToTirXC22W3dJFlY=
Subject key identifier: 5B:54:BC:DA:D7:F9:02:C4:C8:DB:CE:29:A0:82:CE:A6:6E:E1:71:18
Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Certificate serial: 019647E9F0A5BDB3E708F531C2A1BCE73AB0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
Manifest number: 14F6
Signing time: Fri 18 Apr 2025 08:00:35 +0000
Manifest this update: Fri 18 Apr 2025 08:00:35 +0000
Manifest next update: Sat 19 Apr 2025 08:00:35 +0000
Files and hashes: 1: 8zk0PMbVHduONjgpmhu0lfRYCSE.crl (hash: bqL2lEdxGswHdO/PV11QGFBv2qka6yLZS8eZsC+83tU=)
2: foJ4QycSZoLeX5HBGEgGb3_VDbc.roa (hash: 6GL5/gRhjE26Cz785WY71i1EcVPF5j3FDcpppmWBIT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 08:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:47:e9:f0:a5:bd:b3:e7:08:f5:31:c2:a1:bc:e7:3a:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921
Validity
Not Before: Apr 18 08:00:35 2025 GMT
Not After : Apr 19 08:00:35 2025 GMT
Subject: CN=5b54bcdad7f902c4c8dbce29a082cea66ee17118
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:bb:a2:fa:71:05:bc:f3:45:65:76:aa:3a:81:
6e:d3:a3:14:61:31:44:1e:72:fb:16:4f:17:0d:46:
cc:45:3e:26:b8:78:22:1b:b3:17:99:2b:58:e9:7e:
ae:2b:35:ed:a0:bc:5a:14:b1:95:e0:40:7a:ae:a7:
b1:e0:7c:85:3c:b2:70:61:4c:6c:ed:e3:9c:6e:6e:
6c:ed:a3:88:41:7a:de:98:a0:c5:23:4f:93:7f:9e:
93:25:52:e6:99:be:a1:b9:96:b6:f1:c2:6a:b0:59:
dd:2f:5b:10:17:24:c5:ca:1b:73:3c:d1:99:ce:77:
db:b5:74:45:09:2e:c0:b7:11:65:c1:c5:e2:e4:7d:
47:1f:52:95:63:11:a0:35:a1:65:17:14:dc:b0:1e:
bf:fb:ae:b4:6e:84:bc:17:82:00:50:f9:84:b0:79:
29:c1:6f:a5:7a:1e:25:82:1b:0f:0e:43:fe:68:4c:
ef:b9:0e:be:37:64:d8:2b:3b:d1:73:50:4b:b6:68:
f7:37:65:67:e3:54:b6:fd:51:ce:f2:a6:b9:e8:cf:
b6:e6:eb:be:3d:2b:ca:d1:95:46:34:16:47:d5:40:
43:5b:66:64:db:b4:ed:c0:60:bc:c3:2c:69:e8:16:
a8:38:9c:7b:55:32:ea:49:4a:53:76:0c:bc:3a:be:
f2:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:54:BC:DA:D7:F9:02:C4:C8:DB:CE:29:A0:82:CE:A6:6E:E1:71:18
X509v3 Authority Key Identifier:
keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:e4:59:cd:f3:c5:1d:56:51:55:00:38:13:da:c7:72:28:ea:
53:bd:2a:21:61:58:5e:05:76:6b:30:7c:ce:87:d9:1e:aa:2c:
31:e6:cf:7f:52:4d:10:db:16:2c:9b:8d:d7:e4:87:4f:2b:cb:
e9:9d:89:e3:7a:65:30:96:de:e8:97:53:f1:f4:24:e6:0d:9e:
7a:e6:2b:54:86:79:f8:63:8a:b5:b7:5a:f2:5e:57:d6:e1:03:
94:a8:27:56:20:2b:29:6c:35:63:27:79:00:9b:1d:78:33:20:
b9:c1:e5:1c:fc:af:6e:94:d9:83:9a:87:1d:12:e2:0e:58:cb:
2f:86:8e:e5:af:e0:30:00:18:38:c6:d5:ee:f2:42:d8:e5:38:
84:81:e0:55:54:ff:12:83:98:5f:30:51:f5:3c:28:c8:a4:6f:
9b:3b:bc:59:a0:ee:35:85:d0:3a:6a:e7:b8:cd:80:b9:f5:d0:
44:cd:87:ff:f3:1d:29:4f:1c:d6:16:26:ba:8e:fd:6e:b1:bc:
18:d1:b8:fb:41:3e:f4:96:a1:79:ee:90:f2:18:b8:16:5a:58:
59:fa:d6:b9:28:96:33:b3:2d:67:66:e8:c6:76:40:6c:e8:5a:
cf:66:ed:0c:84:53:06:4f:f4:64:72:90:fa:c1:17:7a:a3:06:
26:f8:fe:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 14:51:14 2025 by rpki-client