Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/72bd07-3cf1-45b1-9eef-b847eb77afc8/1/mK_pac8OqToOjlfulYjK9VcrOyI.mft
File: mK_pac8OqToOjlfulYjK9VcrOyI.mft (raw, json)
Hash identifier: B/c9C0EJXdOEAB69QqeZ4kpjBEvei/rPg4qRAcYnhsM=
Subject key identifier: 12:93:FB:DF:2E:5D:08:BF:28:5F:5E:D4:C6:4F:AC:B4:B0:10:29:27
Authority key identifier: 98:AF:E9:69:CF:0E:A9:3A:0E:8E:57:EE:95:88:CA:F5:57:2B:3B:22
Certificate issuer: /CN=98afe969cf0ea93a0e8e57ee9588caf5572b3b22
Certificate serial: 019653B7041E7387A4FD58EFC6E9CA2A92BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mK_pac8OqToOjlfulYjK9VcrOyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/72bd07-3cf1-45b1-9eef-b847eb77afc8/1/mK_pac8OqToOjlfulYjK9VcrOyI.mft
Manifest number: 0322
Signing time: Sun 20 Apr 2025 15:00:25 +0000
Manifest this update: Sun 20 Apr 2025 15:00:25 +0000
Manifest next update: Mon 21 Apr 2025 15:00:25 +0000
Files and hashes: 1: 022L9fV8F1ZZ2EE1EuaAsn4eywo.roa (hash: XmLPJO8dC104vud5SObyJBz1K1qN+7X4uqFqIhLIBZ4=)
2: mK_pac8OqToOjlfulYjK9VcrOyI.crl (hash: GzfXsnYP3267x36o6kMacA6s8UolcVz1D2hgD+GKpyw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/72bd07-3cf1-45b1-9eef-b847eb77afc8/1/mK_pac8OqToOjlfulYjK9VcrOyI.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/72bd07-3cf1-45b1-9eef-b847eb77afc8/1/mK_pac8OqToOjlfulYjK9VcrOyI.mft
rsync://rpki.ripe.net/repository/DEFAULT/mK_pac8OqToOjlfulYjK9VcrOyI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 15:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:b7:04:1e:73:87:a4:fd:58:ef:c6:e9:ca:2a:92:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98afe969cf0ea93a0e8e57ee9588caf5572b3b22
Validity
Not Before: Apr 20 15:00:25 2025 GMT
Not After : Apr 21 15:00:25 2025 GMT
Subject: CN=1293fbdf2e5d08bf285f5ed4c64facb4b0102927
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:45:c3:0b:4a:3a:bf:fe:18:b1:cd:75:d2:c9:
07:db:76:08:71:3b:fd:a6:c4:9a:54:64:7b:16:f7:
22:86:fd:c3:27:22:ad:a0:0a:44:0b:a2:67:0c:0b:
4a:6b:9a:ad:57:0f:ed:69:06:c9:94:52:13:4f:61:
95:f1:25:40:8e:dd:53:45:73:d3:30:5c:fe:18:f1:
65:cd:94:4f:6f:37:b7:e3:ec:8b:d3:d6:a4:76:7f:
1d:37:cd:01:28:6f:47:d9:57:a9:e6:e2:fb:0f:f1:
cc:f1:22:1d:7e:fc:36:cc:0d:49:51:33:a3:3a:cb:
54:0e:1a:9a:17:4a:e6:e9:8f:ee:a0:d6:bf:ce:b0:
24:83:73:eb:f2:7d:1c:33:36:19:c9:4c:51:55:5c:
10:fb:fb:a9:78:02:41:09:29:bd:af:d2:75:13:dd:
00:1b:58:7b:e6:44:af:da:65:13:53:a1:7b:4b:80:
69:b6:bb:0b:c0:24:fd:2f:af:fa:75:7b:a1:47:c4:
36:d3:c6:41:9e:aa:4e:f3:0f:97:d3:6c:0d:49:53:
98:7d:54:8b:6d:fe:65:c3:a1:33:38:4b:a2:00:4f:
b6:30:9c:bc:9f:7c:2d:0c:2f:5e:07:ce:18:33:2d:
b6:06:98:6a:d6:f0:5e:5d:59:37:7f:3f:5a:ae:66:
d1:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:93:FB:DF:2E:5D:08:BF:28:5F:5E:D4:C6:4F:AC:B4:B0:10:29:27
X509v3 Authority Key Identifier:
keyid:98:AF:E9:69:CF:0E:A9:3A:0E:8E:57:EE:95:88:CA:F5:57:2B:3B:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mK_pac8OqToOjlfulYjK9VcrOyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/72bd07-3cf1-45b1-9eef-b847eb77afc8/1/mK_pac8OqToOjlfulYjK9VcrOyI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/72bd07-3cf1-45b1-9eef-b847eb77afc8/1/mK_pac8OqToOjlfulYjK9VcrOyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:ca:6d:27:68:f6:77:f8:6c:3e:33:1f:59:e8:31:6a:23:f0:
e0:e1:54:54:d5:cd:9f:96:c3:6e:68:cf:eb:4d:4b:f6:de:08:
d7:ef:2a:7b:52:f2:80:a4:f1:35:d8:17:de:c8:ef:2b:a5:7c:
1d:66:9f:89:a8:a3:aa:88:08:2a:ca:85:28:4f:8b:18:15:fe:
cd:23:7a:a8:59:b9:a6:11:3b:3d:ea:6f:a2:00:0f:87:22:c0:
e0:2b:e9:9d:58:cb:73:1a:ee:53:d8:61:48:58:c5:04:b7:60:
ff:4c:81:40:ce:b4:e8:06:b6:47:a2:b1:56:b2:87:9e:c2:e5:
7c:52:93:fa:88:4a:c2:59:1c:fd:42:66:0c:21:47:99:d1:9f:
57:c7:41:69:da:0d:97:42:7a:0c:ae:3f:e8:d0:24:2b:10:fd:
14:a8:5a:5f:88:89:82:9a:11:ec:f7:a1:06:d3:9a:4a:85:66:
e6:53:9c:96:bc:21:01:05:02:a8:29:7a:4f:fb:dd:9c:94:41:
64:43:27:60:65:21:07:b4:1b:48:22:11:1b:87:92:95:5e:13:
d2:50:0d:b0:ad:be:f5:9b:59:5d:f7:39:f6:18:f4:a6:b2:db:
dd:c4:eb:24:a5:ce:f3:34:9b:1d:6b:22:31:e9:b2:6f:53:c7:
4e:bd:0a:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 20:14:58 2025 by rpki-client