Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
File: si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft (raw, json)
Hash identifier: h2jzNYIoPq0jmS4ALg/LLqOXKzb1hec+YZI6PgkXNiA=
Subject key identifier: 28:6B:75:50:7D:97:1A:8A:44:BA:AE:C7:1A:3B:44:A3:6D:4F:AC:70
Authority key identifier: B2:2D:D0:65:01:F9:9D:47:02:2D:3A:40:39:EF:CF:43:9D:0B:C7:E6
Certificate issuer: /CN=b22dd06501f99d47022d3a4039efcf439d0bc7e6
Certificate serial: 01965F16A82148275DF416B2660A09D29302
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
Manifest number: 02D3
Signing time: Tue 22 Apr 2025 20:00:42 +0000
Manifest this update: Tue 22 Apr 2025 20:00:42 +0000
Manifest next update: Wed 23 Apr 2025 20:00:42 +0000
Files and hashes: 1: Ol4H0Ofe0seTJhjp23zwbv14mcA.roa (hash: h0M7hTbR8JXwLU22tU4Fw/p8crplmJ6JisUg1rjxv0k=)
2: si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl (hash: NECFKUJgAwU0Tnbtj9e0suDH3RxewiL5Z9EJS/45iqQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5f:16:a8:21:48:27:5d:f4:16:b2:66:0a:09:d2:93:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b22dd06501f99d47022d3a4039efcf439d0bc7e6
Validity
Not Before: Apr 22 20:00:42 2025 GMT
Not After : Apr 23 20:00:42 2025 GMT
Subject: CN=286b75507d971a8a44baaec71a3b44a36d4fac70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:65:15:16:8d:ec:8c:4b:13:20:f4:ae:51:67:
0e:69:c3:d9:e2:66:f4:2c:dc:52:cd:ff:7d:0e:4c:
c7:54:ae:fb:ed:b9:4c:c6:ef:d5:9c:03:03:cb:e1:
56:60:d7:ea:45:c0:e1:c0:40:f6:79:b0:29:90:bf:
55:a1:ae:ea:c9:b1:2f:45:5d:f8:e5:bb:48:58:63:
d1:e6:aa:a1:b3:50:b6:f1:0c:07:54:d8:30:da:24:
23:05:ac:97:e1:ab:64:ba:d1:eb:28:96:22:7e:ec:
60:4a:99:46:b0:0d:c9:53:eb:6b:2f:09:a1:65:fe:
80:50:e3:d4:12:3e:27:66:d4:4f:74:7d:e3:a7:d1:
7d:72:da:2a:a9:25:3b:e7:fc:8a:6d:a9:c4:ce:db:
37:88:28:e7:d6:aa:63:36:49:e3:dc:9d:d8:1b:b2:
f0:a3:65:91:26:58:87:b4:e5:9c:cd:7d:92:04:e8:
75:96:16:d3:4c:ab:94:11:c5:78:f8:0d:cb:0d:62:
9c:35:f6:79:b1:b0:61:7c:f7:b9:2f:20:e0:6d:f3:
27:2d:4d:07:51:e2:82:1c:46:41:40:1e:06:56:b6:
28:f1:12:d7:e1:a4:20:f4:8e:73:10:dc:80:94:d3:
2c:7b:96:21:31:8b:bd:4a:2b:d8:16:35:44:4b:60:
7a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:6B:75:50:7D:97:1A:8A:44:BA:AE:C7:1A:3B:44:A3:6D:4F:AC:70
X509v3 Authority Key Identifier:
keyid:B2:2D:D0:65:01:F9:9D:47:02:2D:3A:40:39:EF:CF:43:9D:0B:C7:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/202633-c690-48e5-9613-711ffdf91698/1/si3QZQH5nUcCLTpAOe_PQ50Lx-Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:80:e2:50:70:42:eb:54:a7:a2:66:52:35:95:d9:2f:de:59:
5d:f5:59:92:c7:62:18:8e:b3:2c:0d:89:8b:23:72:c7:f1:91:
2c:48:55:82:54:bf:73:a0:c2:a3:49:b5:87:57:a9:ba:0d:1b:
0d:ae:e2:69:6b:6e:d5:87:e4:78:20:c0:d1:a6:d8:da:61:a6:
31:a2:88:2c:7e:65:c0:b2:40:2e:92:c0:ce:5a:8a:d8:83:b1:
a3:f0:9f:d4:16:ff:18:52:ba:ca:57:b7:8e:f8:be:ea:29:0c:
02:3c:31:59:28:88:f8:41:55:2b:c4:75:3b:c7:dd:b2:79:ad:
f4:94:e0:35:3b:cb:06:dc:62:75:22:9a:85:2a:22:ec:48:16:
ae:fb:7c:38:42:58:fa:de:ca:78:23:2c:ff:cb:00:b3:41:fc:
b5:fd:8a:52:ee:47:50:21:7a:a1:c5:12:49:de:c7:6e:a6:af:
98:d7:bb:10:fa:d3:b8:00:01:4b:99:01:e9:96:9b:5c:6f:e5:
01:3e:97:77:52:8f:56:58:59:fe:fd:67:33:19:78:38:fc:4d:
2f:b9:21:b3:67:61:f5:9a:28:c0:a1:5e:01:12:ee:6e:22:fd:
8e:99:b3:9d:8a:3f:4f:32:63:63:80:a2:e5:78:e6:3c:28:70:
e9:9b:f9:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 21:58:12 2025 by rpki-client