Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
File: R1oGyte9DD25-KOB8euc1sdaqyg.mft (raw, json)
Hash identifier: 91dszIfQqfwkepidSQwhej3XRUHKKZwRMAEldnZfX7k=
Subject key identifier: AD:CA:C5:D2:08:32:98:F8:97:DF:08:6C:E0:51:19:93:72:9E:57:A7
Authority key identifier: 47:5A:06:CA:D7:BD:0C:3D:B9:F8:A3:81:F1:EB:9C:D6:C7:5A:AB:28
Certificate issuer: /CN=475a06cad7bd0c3db9f8a381f1eb9cd6c75aab28
Certificate serial: 01965123B4DB6474F564E84EEF65BB9685A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
Manifest number: B7
Signing time: Sun 20 Apr 2025 03:00:16 +0000
Manifest this update: Sun 20 Apr 2025 03:00:16 +0000
Manifest next update: Mon 21 Apr 2025 03:00:16 +0000
Files and hashes: 1: P26izWnWykundEbYZ5JEBhpU0uU.roa (hash: cWV+pN/zcAshvYcQxK5v+o4IGsyjFJQg91I3ipirKBI=)
2: R1oGyte9DD25-KOB8euc1sdaqyg.crl (hash: IzpU7mQJOcgCgzX/emS0V2XkFLYYxWkDmswQ0QAWrB4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 03:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:23:b4:db:64:74:f5:64:e8:4e:ef:65:bb:96:85:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=475a06cad7bd0c3db9f8a381f1eb9cd6c75aab28
Validity
Not Before: Apr 20 03:00:16 2025 GMT
Not After : Apr 21 03:00:16 2025 GMT
Subject: CN=adcac5d2083298f897df086ce0511993729e57a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:61:fb:ba:44:7f:5f:b7:b7:93:2a:1d:05:3e:
eb:69:47:33:fd:cf:59:84:f8:d1:66:01:a9:ee:96:
1e:14:5a:f2:e5:51:f7:c1:57:00:cd:ee:07:cd:19:
0d:17:97:42:34:ce:f7:4b:96:fd:ea:02:49:8a:12:
91:2d:8b:0e:90:02:fa:b1:7c:8f:5a:12:e7:35:1a:
39:17:39:96:d1:a9:e7:c2:b5:e3:30:e1:fb:de:83:
d0:18:63:2a:ad:a5:87:00:7d:19:59:4c:e1:d2:ef:
26:ae:fe:ed:de:fb:38:4f:82:97:26:87:13:06:5f:
ea:8b:1f:d5:d3:08:78:78:ed:e9:43:27:29:03:f5:
97:bd:c0:b7:89:36:70:e2:cb:89:e7:77:ce:fc:14:
63:75:4b:d6:a6:b9:33:77:eb:be:68:d2:20:81:0c:
92:3a:96:54:ca:3e:e4:87:92:49:51:81:1a:73:0e:
20:d7:1d:05:81:2d:0f:79:9d:cc:50:2a:c8:68:a4:
7a:a8:0a:f8:33:65:c2:5b:ab:53:32:55:d9:b5:1c:
b5:7c:82:af:35:bb:fb:3b:47:e1:bc:7e:15:9c:f9:
6a:1d:5d:28:3a:62:5f:aa:a9:61:d5:f7:11:f4:09:
d8:d8:30:15:35:ef:d7:c3:47:73:25:38:6c:21:e9:
be:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:CA:C5:D2:08:32:98:F8:97:DF:08:6C:E0:51:19:93:72:9E:57:A7
X509v3 Authority Key Identifier:
keyid:47:5A:06:CA:D7:BD:0C:3D:B9:F8:A3:81:F1:EB:9C:D6:C7:5A:AB:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:e4:8e:7a:05:2b:f6:cf:8a:e1:3b:f2:1e:a3:9a:e3:d2:fa:
68:ef:99:2c:02:bb:1a:65:dd:75:4e:b4:fc:d7:bf:30:ed:d1:
47:ac:6a:71:ef:61:05:c2:31:1a:60:ee:1e:87:f5:bd:29:fe:
b7:c7:8e:7a:4e:57:95:d7:41:bb:2c:b1:4c:10:af:6d:fc:cc:
c2:ed:c5:16:bd:2b:bc:af:5a:71:bd:19:44:61:be:7c:7c:8c:
d5:84:06:19:65:3c:b9:4c:1d:cf:1b:9b:11:58:a7:35:ed:f8:
1a:b3:dd:79:74:19:ff:98:12:05:1c:d4:13:24:05:e4:0a:e8:
c2:3a:71:ce:ed:f0:f1:5c:60:fd:33:c3:ef:cd:83:ba:90:27:
0b:33:66:7e:43:74:df:c5:66:61:4f:fb:c9:a4:b5:5a:b5:48:
67:2e:56:19:ad:fd:0f:0c:12:d9:e7:3a:48:72:53:ed:37:bf:
ed:26:cb:02:88:b1:95:02:89:c4:c9:50:0d:0e:2a:17:9f:40:
70:51:40:2f:c4:57:d0:c2:9d:bb:85:5e:4d:58:81:88:b0:50:
e9:5e:a7:80:6e:44:40:32:72:bd:01:36:13:26:96:6c:f0:e2:
56:48:16:77:34:e2:e3:15:5b:3b:d2:d5:b8:16:4a:94:9a:61:
40:93:a9:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:42:25 2025 by rpki-client