Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/344b60-889d-41f2-b9f2-be15df99b11d/1/J0zEEJs00UTL604gpr08B1kYIbU.mft
File: J0zEEJs00UTL604gpr08B1kYIbU.mft (raw, json)
Hash identifier: IQ92A7tXIHQEAHF35t8HRamrNJQqLVh8+I3gS27TAPc=
Subject key identifier: 7D:23:F2:27:E5:8D:88:61:E3:93:A8:96:3A:F0:08:B5:85:DF:51:10
Authority key identifier: 27:4C:C4:10:9B:34:D1:44:CB:EB:4E:20:A6:BD:3C:07:59:18:21:B5
Certificate issuer: /CN=274cc4109b34d144cbeb4e20a6bd3c07591821b5
Certificate serial: 01965802011065E3A8997AA80B92EEB25F22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J0zEEJs00UTL604gpr08B1kYIbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/344b60-889d-41f2-b9f2-be15df99b11d/1/J0zEEJs00UTL604gpr08B1kYIbU.mft
Manifest number: 14FE
Signing time: Mon 21 Apr 2025 11:00:48 +0000
Manifest this update: Mon 21 Apr 2025 11:00:48 +0000
Manifest next update: Tue 22 Apr 2025 11:00:48 +0000
Files and hashes: 1: J0zEEJs00UTL604gpr08B1kYIbU.crl (hash: Ulg/+5ifd4pz68PvyDtu2Jz6OXgDuxuW5SkC9j3DK98=)
2: W2Bt5n75RL1yPisK5n22fF2D8bI.roa (hash: paOvg+wgSlBKgewYZP5vibp/Ng8VGrHC/AvIdfss8fE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/344b60-889d-41f2-b9f2-be15df99b11d/1/J0zEEJs00UTL604gpr08B1kYIbU.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/344b60-889d-41f2-b9f2-be15df99b11d/1/J0zEEJs00UTL604gpr08B1kYIbU.mft
rsync://rpki.ripe.net/repository/DEFAULT/J0zEEJs00UTL604gpr08B1kYIbU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:02:01:10:65:e3:a8:99:7a:a8:0b:92:ee:b2:5f:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=274cc4109b34d144cbeb4e20a6bd3c07591821b5
Validity
Not Before: Apr 21 11:00:48 2025 GMT
Not After : Apr 22 11:00:48 2025 GMT
Subject: CN=7d23f227e58d8861e393a8963af008b585df5110
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:71:a5:35:d5:6f:ae:29:3c:a0:f1:00:28:4f:
74:2e:f1:0d:ab:b6:85:ed:09:c2:08:96:3a:78:9f:
9c:c2:69:5f:98:28:be:1d:a3:2c:a8:e7:89:48:11:
58:7d:4e:76:7c:cd:0d:d6:2e:d0:ab:c3:cc:0e:54:
2f:5c:f9:90:45:22:b5:7f:ac:46:73:73:7c:48:28:
e3:25:df:a7:f3:91:d6:ce:dd:7b:92:f9:fc:96:44:
68:8d:e2:93:92:50:49:a9:ce:d5:5e:19:01:ad:8f:
80:97:e0:8f:f7:b3:94:fb:4d:0f:6f:8b:20:dc:d9:
64:0d:08:7c:c9:e1:84:19:61:fe:b4:5e:1a:38:43:
ed:b2:da:96:58:7e:65:f8:56:3e:de:65:e0:09:00:
95:ef:26:7e:3d:08:70:97:61:58:47:f6:50:05:44:
dd:2e:cb:93:3a:7d:37:20:e1:97:29:a9:3f:e1:0c:
55:46:0b:d3:ae:0b:b1:58:a7:a4:4a:87:40:12:94:
c2:b0:4f:26:6a:8a:7c:4c:1a:cf:86:de:08:14:5e:
ef:dd:e3:d1:10:dc:15:de:12:7a:91:46:44:ce:e4:
ff:c5:5b:07:d5:ee:f4:45:2d:29:44:ce:f9:99:3a:
99:57:2d:33:4b:92:01:9b:b1:77:b7:1e:32:d4:4c:
85:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:23:F2:27:E5:8D:88:61:E3:93:A8:96:3A:F0:08:B5:85:DF:51:10
X509v3 Authority Key Identifier:
keyid:27:4C:C4:10:9B:34:D1:44:CB:EB:4E:20:A6:BD:3C:07:59:18:21:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J0zEEJs00UTL604gpr08B1kYIbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/344b60-889d-41f2-b9f2-be15df99b11d/1/J0zEEJs00UTL604gpr08B1kYIbU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/344b60-889d-41f2-b9f2-be15df99b11d/1/J0zEEJs00UTL604gpr08B1kYIbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:e0:7f:cf:eb:76:12:c3:4d:f5:ea:3d:47:89:c6:fb:24:1f:
a8:f0:8d:df:89:82:13:2b:15:bf:41:6f:b1:1d:69:f0:d7:cf:
d5:3e:ca:69:b6:a3:d5:9c:4b:64:e1:28:fc:ab:20:aa:a0:ec:
66:e6:0c:b7:cb:15:f7:8c:2d:69:cf:a7:c9:ef:46:93:f2:41:
44:22:97:28:31:a5:8b:b8:62:cb:41:e7:1a:24:7c:0a:7f:c9:
a1:96:ba:7f:7a:c1:52:f7:a3:1b:b4:29:d4:b9:2e:71:fa:40:
87:0b:af:2e:a6:cf:a1:b3:70:3c:e3:b0:7d:14:2a:c9:2a:b7:
20:fb:85:1b:aa:4a:1b:7e:f0:0a:59:f1:9a:97:5f:c4:9c:8e:
ba:b3:49:bd:86:1c:93:4b:04:1c:74:ae:d3:6c:d4:ec:18:60:
d7:ef:6f:16:8f:13:ce:b4:9e:a3:22:af:46:28:ed:0a:45:a7:
38:8e:13:07:bd:8e:d4:d1:95:0a:66:27:a5:2a:1c:98:44:77:
69:22:1b:d5:77:4d:63:c0:d2:ac:ff:e6:26:e1:4b:d5:15:f8:
3e:2e:e1:ed:16:fe:83:70:0a:52:47:81:87:b6:7f:9b:ac:c0:
5b:ac:eb:42:f8:b4:e7:ce:d2:a6:31:90:d2:71:f4:2e:28:0e:
5b:79:73:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:00:08 2025 by rpki-client