Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft
File: ruCNkzby5s0WXrcwKX_m0gyDw5o.mft (raw, json)
Hash identifier: oUyDq6VTf7m19rJfZAWQuN5eTAit55zA8C2AFJ6baRE=
Subject key identifier: 37:D3:D3:C7:42:98:CA:63:8B:CA:E7:6A:BE:3B:2A:E6:D4:84:00:E6
Authority key identifier: AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A
Certificate issuer: /CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a
Certificate serial: 019640D570B8C2F5455277C3CA4A01996700
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft
Manifest number: 123E
Signing time: Wed 16 Apr 2025 23:00:51 +0000
Manifest this update: Wed 16 Apr 2025 23:00:51 +0000
Manifest next update: Thu 17 Apr 2025 23:00:51 +0000
Files and hashes: 1: BS_uFjltIa2QdarHmlrjr-N1lfU.roa (hash: In6YLEFgpwciZfoYuJdlvQqiCYVNTfn1vSODPqF0a14=)
2: KyGy1yiZWdO5Baarc34FhluuX6o.roa (hash: PluDSAEvqHUwzzXaYjhHiEYtCeH5Nq3YEFQLeyKhxg0=)
3: MTuQql9Rh88BHIoSEfi0N5xULhQ.roa (hash: c4KaJbDb+YQM6dcx+R5wyGu53GnRsEWM+y0F8Wui/6Q=)
4: aPIQbORfDqMdRus3FUsayPmmxSc.roa (hash: Bjwo2XfxvG4dmeK0piMxmJc9w9b8pe3Sc6uuX95IjTw=)
5: aTlzb3K-mNhSWkbEKv29Xc3ITT0.roa (hash: Y8Xw4D+ihA3z60B6zW48nfEFoOcri17+Bm+/jPd3INc=)
6: kL_2gvtUAFUX3-zbMD5AfdbkkFc.roa (hash: i5sBmgPlAzgh1HcdG7lTgrd/mdbOcJciFVKfQ5U2fAw=)
7: ruCNkzby5s0WXrcwKX_m0gyDw5o.crl (hash: xjWTHeNLy9V7xd3OGa7YI1F1Z0VZKxFlV4aoEO96ZqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 21:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:40:d5:70:b8:c2:f5:45:52:77:c3:ca:4a:01:99:67:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a
Validity
Not Before: Apr 16 23:00:51 2025 GMT
Not After : Apr 17 23:00:51 2025 GMT
Subject: CN=37d3d3c74298ca638bcae76abe3b2ae6d48400e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3d:87:03:cf:8a:c3:05:4f:57:9c:58:e1:1c:
5d:52:5f:8b:4e:90:09:f6:c7:b5:3f:cc:e5:33:81:
62:10:94:e2:7d:2d:ce:f6:c0:e1:a5:8c:05:2f:1b:
e2:b2:35:7f:1e:de:ad:88:07:7c:ac:97:3f:cd:46:
91:b6:d8:91:8c:0e:54:9b:97:1e:1d:ec:d8:44:8c:
db:dd:52:05:27:87:e0:3f:71:a9:23:d1:7f:e1:d6:
8d:92:13:11:d3:02:d4:94:9d:88:d8:13:b9:19:15:
4d:fc:4b:d7:88:b0:7e:38:2d:0f:ec:e5:67:76:91:
98:f0:2b:1c:c9:df:a0:9c:2d:af:10:7f:1f:05:8d:
c4:35:49:1f:49:b8:84:68:c5:b6:5e:09:b6:4d:1c:
17:f2:64:32:11:1b:e0:1a:d4:fd:c1:64:23:79:89:
f5:b2:50:39:4c:4c:79:92:60:46:dd:5d:e4:d3:29:
da:79:2b:f7:61:a3:c0:bc:29:7c:75:65:0c:c0:df:
33:dc:a1:6b:b1:64:6b:84:fa:df:22:c3:22:20:cb:
c7:e2:b7:b6:a8:01:e0:c6:ee:e5:27:1c:ed:37:ed:
53:2f:88:e9:93:7d:01:ac:f0:98:af:0e:5d:51:0e:
ac:aa:3e:bb:37:be:4e:b4:76:38:63:a7:7e:9f:bc:
c2:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:D3:D3:C7:42:98:CA:63:8B:CA:E7:6A:BE:3B:2A:E6:D4:84:00:E6
X509v3 Authority Key Identifier:
keyid:AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:b6:f4:2d:a2:28:ca:5c:c5:f8:de:00:7f:d0:60:de:b6:4c:
a5:94:e0:b4:fe:11:e8:6e:f7:7e:81:2c:d4:f3:02:ae:f4:63:
1e:7d:18:2a:e6:63:15:7b:3b:d9:4d:f8:87:0f:db:e3:4d:74:
42:e6:5e:1a:d2:c5:b0:da:a8:50:22:82:5b:db:30:6e:e2:95:
54:ae:87:f7:ae:40:b0:58:39:46:30:41:5d:e8:21:0b:da:71:
75:22:a7:61:f5:af:3f:70:4d:31:17:3f:df:2e:c6:c4:4b:10:
20:d0:01:7e:11:e2:5a:a4:58:a9:ce:0e:cd:d8:46:25:e0:e2:
b9:1f:7f:9a:d5:9c:01:47:d6:1f:a4:c4:82:bd:b6:16:a1:f9:
a6:fe:51:42:ec:f3:b2:6b:0a:0c:91:82:bc:26:eb:f5:b4:bb:
84:85:8e:d8:53:f6:6b:2a:99:6d:b4:c6:ad:58:08:20:ac:4b:
eb:50:19:36:21:39:5e:ed:f2:2e:36:68:c6:f9:c1:c9:be:fb:
49:dd:43:af:3c:0d:74:30:a9:5c:8b:58:78:e5:32:ad:e1:17:
f5:39:67:3a:49:df:87:58:c0:84:72:ec:b6:3d:21:15:c1:5e:
da:73:0a:41:d1:91:da:4b:60:52:f7:e0:91:a0:c1:b8:d9:1a:
dc:82:a0:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:44:33 2025 by rpki-client