Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.mft
File: 8gI-dqaOpsn3DT6nLfhOU9whck8.mft (raw, json)
Hash identifier: MPrIQbukVnQHCiaS/OQZaiyG7IXxju6ZaeqdgSMXZrM=
Subject key identifier: 31:1C:42:27:0C:3D:0D:3E:74:43:A0:0F:7F:23:35:25:73:03:46:4D
Authority key identifier: F2:02:3E:76:A6:8E:A6:C9:F7:0D:3E:A7:2D:F8:4E:53:DC:21:72:4F
Certificate issuer: /CN=f2023e76a68ea6c9f70d3ea72df84e53dc21724f
Certificate serial: 019643D6F46843CA3E0990F2F8CCCEE1E070
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8gI-dqaOpsn3DT6nLfhOU9whck8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.mft
Manifest number: 0D49
Signing time: Thu 17 Apr 2025 13:01:22 +0000
Manifest this update: Thu 17 Apr 2025 13:01:22 +0000
Manifest next update: Fri 18 Apr 2025 13:01:22 +0000
Files and hashes: 1: 8gI-dqaOpsn3DT6nLfhOU9whck8.crl (hash: T/5DQOc/n+1GmAu0gKOlLEmA9B6kYQICfyAAWK6EFPQ=)
2: xmm2JL7TcI6ebRwScNNxmj8JWuo.roa (hash: fkFUQl1m0mbIlDS4H4YUitr8IcfvKPdCtORJm2ZIyMA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8gI-dqaOpsn3DT6nLfhOU9whck8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 13:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:43:d6:f4:68:43:ca:3e:09:90:f2:f8:cc:ce:e1:e0:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2023e76a68ea6c9f70d3ea72df84e53dc21724f
Validity
Not Before: Apr 17 13:01:22 2025 GMT
Not After : Apr 18 13:01:22 2025 GMT
Subject: CN=311c42270c3d0d3e7443a00f7f2335257303464d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:65:0f:15:57:c9:00:d3:a1:34:30:f0:c2:81:
94:ac:6a:2e:b3:e5:c6:b2:b3:42:c2:9f:b2:c4:0f:
6b:c8:05:a4:7c:23:5c:74:37:47:7f:c3:c5:34:c8:
c8:05:a4:b8:96:93:1b:88:8a:9b:21:f5:c5:90:f4:
ba:cc:dc:6e:5d:06:eb:da:6e:52:19:03:19:a2:b1:
3c:93:d5:a5:18:26:f7:81:6b:55:1f:5e:c0:5e:9c:
ee:32:2e:bb:0d:db:02:49:cc:2a:be:88:23:8a:38:
3e:67:f1:35:17:60:ca:79:00:a5:a1:e7:e1:c3:28:
32:88:5c:a4:38:2c:59:a6:36:ae:84:13:31:ff:f2:
71:f5:9f:c1:bc:bd:41:8b:36:49:ca:65:84:6a:05:
c1:a5:54:36:08:25:d2:5a:43:11:42:64:82:f4:cc:
bc:85:62:7d:21:16:f4:b3:98:4d:76:1d:27:ec:2d:
eb:bb:c6:04:61:0c:e6:3e:9a:56:61:fb:59:d1:5e:
dc:09:3e:8d:d6:1a:d5:cb:8c:c8:13:24:89:f4:b3:
a8:51:8b:ff:0e:8e:0c:bb:08:36:0e:72:60:61:21:
2e:d1:2e:f8:50:a1:7c:81:a3:d4:dd:c9:14:76:42:
d0:60:ec:18:8d:75:69:24:c9:c9:18:09:ad:3c:b5:
c8:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:1C:42:27:0C:3D:0D:3E:74:43:A0:0F:7F:23:35:25:73:03:46:4D
X509v3 Authority Key Identifier:
keyid:F2:02:3E:76:A6:8E:A6:C9:F7:0D:3E:A7:2D:F8:4E:53:DC:21:72:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8gI-dqaOpsn3DT6nLfhOU9whck8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7e8ed6-ae72-4d3f-999d-67c3affbd1aa/1/8gI-dqaOpsn3DT6nLfhOU9whck8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:3e:87:8e:5b:88:67:fa:06:40:e3:c8:93:3b:62:47:45:5f:
63:74:0e:66:e2:ea:b8:1a:53:8a:3a:ed:db:12:bd:dc:bd:bd:
9a:98:ba:f0:87:7d:0d:35:8d:5e:f2:77:43:c6:82:fa:db:07:
74:00:bb:97:57:f9:5e:ac:ba:b8:5d:31:e1:54:d9:1f:81:62:
4b:6e:ad:6c:4e:d1:10:4a:5d:77:5a:f1:2f:31:aa:6e:d9:ad:
96:01:1e:3e:1d:7b:c1:d5:aa:40:d3:60:25:53:c4:11:8d:30:
51:e7:84:f5:9f:a2:6b:32:bc:49:92:d6:2a:5e:24:0c:4e:f2:
96:00:f2:b0:08:ac:23:c7:f2:c5:a1:d2:ba:0d:95:25:31:fe:
9b:3d:58:9f:62:17:a8:5a:a6:24:11:6a:c3:69:3b:9d:61:41:
6e:c5:25:7e:84:c3:14:e7:16:22:7e:65:06:f0:1f:a0:65:d5:
2a:4f:20:1b:a0:03:b8:70:5c:a8:23:7e:26:07:a5:cf:74:ac:
1b:61:91:73:8a:14:16:cc:77:96:1c:28:6a:07:f5:e0:39:33:
53:ac:01:64:65:ab:ac:94:7f:63:b3:3f:84:c6:2f:0f:5b:95:
0a:5c:f3:f4:51:4e:7a:03:a0:ee:1d:13:64:58:03:8a:87:be:
98:d5:86:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 20:07:53 2025 by rpki-client