Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft
File: T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft (raw, json)
Hash identifier: LEonjAm0J3hNAXekbNqKAPaEt9/S+AVD0E6E23zztxE=
Subject key identifier: B5:2F:A6:E3:FC:E9:3F:CE:1D:C2:7C:78:52:40:B7:A2:14:76:50:4C
Authority key identifier: 4F:50:A0:DC:C7:1C:42:92:3E:40:70:11:BD:21:2A:FA:5C:62:E5:9D
Certificate issuer: /CN=4f50a0dcc71c42923e407011bd212afa5c62e59d
Certificate serial: 01964CD9042F682F18B83D52A03DAB9C0B8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T1Cg3MccQpI-QHARvSEq-lxi5Z0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft
Manifest number: 0643
Signing time: Sat 19 Apr 2025 07:00:12 +0000
Manifest this update: Sat 19 Apr 2025 07:00:12 +0000
Manifest next update: Sun 20 Apr 2025 07:00:12 +0000
Files and hashes: 1: O4ZnlVhhx3zd5V2McWkK5lXbTfU.roa (hash: 1/S6pfTZfcr0nY65o+eT5Gg2Gukw2uRx/s1OdeKWKmE=)
2: T1Cg3MccQpI-QHARvSEq-lxi5Z0.crl (hash: X1RqTM0WFGB+7PhVFTHb1RT9Lou9NpEPC8wvbCtyUHo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft
rsync://rpki.ripe.net/repository/DEFAULT/T1Cg3MccQpI-QHARvSEq-lxi5Z0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:d9:04:2f:68:2f:18:b8:3d:52:a0:3d:ab:9c:0b:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f50a0dcc71c42923e407011bd212afa5c62e59d
Validity
Not Before: Apr 19 07:00:12 2025 GMT
Not After : Apr 20 07:00:12 2025 GMT
Subject: CN=b52fa6e3fce93fce1dc27c785240b7a21476504c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7a:68:32:1a:08:cb:b0:8d:e9:f0:f6:54:b3:
23:af:9f:4e:d7:29:c0:97:bb:5d:e7:b4:1e:76:9c:
55:f6:71:a7:52:9c:f1:7a:66:06:7d:ea:e6:48:4a:
fb:78:e8:fc:25:ce:f6:50:71:77:03:c8:74:ae:ef:
32:36:b7:bf:92:8d:95:d4:58:87:dd:35:ea:f6:33:
7c:d6:b6:1f:f1:69:4a:5f:5d:8f:c4:61:7a:08:4f:
a6:56:64:eb:65:23:a5:22:07:4a:39:b7:4b:31:36:
0a:87:48:b9:3e:a6:9d:27:21:49:e9:e5:91:8a:5d:
ec:99:7f:ba:28:c6:e5:2d:8d:2d:3a:af:f4:9c:b3:
98:2b:61:50:65:82:ad:67:ca:7c:ab:8e:96:63:36:
5c:c0:fa:34:90:bd:3b:bc:e5:0c:31:60:cf:d0:9c:
db:58:3a:75:cf:8b:f3:4e:26:9a:09:f5:c9:49:1f:
bf:e6:ba:3f:b4:08:48:32:68:ff:19:67:9a:a3:38:
e6:36:25:b8:44:2f:80:b2:4d:16:84:38:90:56:3c:
27:b9:34:b8:ca:89:43:be:b0:af:ef:70:14:96:7f:
2a:dd:f0:45:50:a5:61:36:89:73:40:dd:64:02:87:
7e:ad:ae:d7:b8:f1:d1:5e:41:49:b7:1b:05:eb:c8:
54:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:2F:A6:E3:FC:E9:3F:CE:1D:C2:7C:78:52:40:B7:A2:14:76:50:4C
X509v3 Authority Key Identifier:
keyid:4F:50:A0:DC:C7:1C:42:92:3E:40:70:11:BD:21:2A:FA:5C:62:E5:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T1Cg3MccQpI-QHARvSEq-lxi5Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/30a2bf-b51e-4d72-b409-ca8b2758be15/1/T1Cg3MccQpI-QHARvSEq-lxi5Z0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d0:0d:b3:4f:f6:2b:6a:51:d3:2c:6d:0b:7b:29:fc:22:fd:17:
f1:f5:70:a3:ee:07:95:d2:df:4d:c2:66:bb:32:1d:a2:60:b0:
ec:cb:34:2e:4c:a6:70:da:c9:e8:32:c0:3e:7e:b9:d3:ee:e0:
27:aa:fe:db:fc:16:2c:f3:02:05:f3:45:f2:72:83:e2:03:68:
83:e8:a7:de:a6:cc:cd:ba:04:ca:c9:3d:26:03:99:45:f1:53:
42:d5:de:b8:69:9f:a8:2a:6d:bf:c8:73:a8:5a:7c:e3:07:87:
2d:60:fa:48:89:f9:16:76:94:f8:ed:4a:c6:a6:ba:81:29:a2:
15:37:2a:10:d7:9c:13:1d:35:55:c2:b8:ad:78:cb:37:9c:9f:
9d:8c:83:f7:5a:ce:65:95:80:82:52:ce:19:75:00:84:c4:28:
4f:f1:32:ca:38:be:d6:04:f8:27:21:28:fb:55:19:b9:dc:d7:
53:61:98:93:8e:4a:94:4f:ff:54:8b:a4:00:3a:f9:82:a1:d4:
50:b8:0c:34:5e:da:15:b3:05:86:18:49:da:68:2c:5a:bd:f4:
40:30:d5:80:18:0e:a0:ad:57:d1:44:54:f1:a3:7b:ff:c8:da:
3f:c5:78:11:c9:85:75:87:26:f0:18:f5:f2:a4:53:01:ed:c8:
06:23:7b:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:57:13 2025 by rpki-client