Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
File: Po3UOSjt-xIA77xixEH5zSkEhYU.mft (raw, json)
Hash identifier: nFWH+rZtaZLEXV2CldhQuM0gFh6a45EusKbJgGViiIY=
Subject key identifier: 90:2A:1F:07:5B:77:90:23:84:B4:3B:25:02:CA:F2:ED:85:5C:0C:81
Authority key identifier: 3E:8D:D4:39:28:ED:FB:12:00:EF:BC:62:C4:41:F9:CD:29:04:85:85
Certificate issuer: /CN=3e8dd43928edfb1200efbc62c441f9cd29048585
Certificate serial: 01964E9103D29A867EED759AE0BD572696CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
Manifest number: 14FB
Signing time: Sat 19 Apr 2025 15:00:48 +0000
Manifest this update: Sat 19 Apr 2025 15:00:48 +0000
Manifest next update: Sun 20 Apr 2025 15:00:48 +0000
Files and hashes: 1: Po3UOSjt-xIA77xixEH5zSkEhYU.crl (hash: OLj7ISev8whg+SvMgwH+hQRZI/Z25yP4f6jlCE2ey6M=)
2: iLnTG4KE8dlv3U1b1zLTb14pMfs.roa (hash: umNqCdl7NmuDT1iFaPafaeRzRV1NstNTawuuz+ySb2o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 15:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:91:03:d2:9a:86:7e:ed:75:9a:e0:bd:57:26:96:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e8dd43928edfb1200efbc62c441f9cd29048585
Validity
Not Before: Apr 19 15:00:48 2025 GMT
Not After : Apr 20 15:00:48 2025 GMT
Subject: CN=902a1f075b77902384b43b2502caf2ed855c0c81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:af:5c:ba:1e:8e:90:f9:b3:ec:62:80:69:c2:
12:2e:cc:f0:7e:35:11:4a:2e:fb:43:15:16:6d:51:
3e:46:11:2d:17:a3:93:06:c1:91:62:10:ca:d5:43:
89:f9:0c:12:a3:03:c4:a7:49:15:11:45:11:df:53:
c2:8d:7a:11:80:bf:15:90:c4:4d:e6:2e:6d:46:ec:
10:89:9d:fd:d6:c7:a8:4f:9c:0a:26:a1:53:3c:b7:
27:48:1e:a3:82:57:36:26:79:97:a7:96:de:cd:93:
08:1a:d9:9d:bb:8a:42:7e:e4:ac:49:e8:ce:2c:fc:
72:9b:bc:2c:84:a5:10:21:8a:d5:e7:c0:cd:aa:7e:
8b:d7:f9:e5:af:8c:f7:e5:78:14:ab:c5:5e:e4:46:
09:24:83:6a:dd:b4:78:84:4e:1f:43:0d:ba:65:e6:
eb:91:fd:dd:ab:ff:d9:fd:0c:66:24:32:bb:71:9f:
88:60:aa:95:b2:23:64:39:73:d4:44:da:8f:b2:73:
ad:3e:39:9f:a4:c4:bb:09:57:f9:9f:01:d5:20:e0:
ef:cb:65:eb:cc:d9:d9:34:e9:eb:20:1c:be:35:df:
26:87:2d:28:d3:4d:8a:7c:62:9d:1b:6c:30:14:73:
0f:fe:c0:e5:88:b2:74:63:2a:cd:30:0e:53:c2:43:
38:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:2A:1F:07:5B:77:90:23:84:B4:3B:25:02:CA:F2:ED:85:5C:0C:81
X509v3 Authority Key Identifier:
keyid:3E:8D:D4:39:28:ED:FB:12:00:EF:BC:62:C4:41:F9:CD:29:04:85:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:7a:d9:d0:35:43:38:5f:0e:0c:25:61:6c:88:38:47:f4:75:
b5:d4:6e:1f:0e:5c:8a:05:d4:a1:88:a8:8e:43:3c:4f:34:f6:
d9:fa:da:ec:1d:cd:1b:b6:fe:69:58:95:c2:cb:8d:3a:be:5c:
d5:a2:22:3b:e9:3f:ba:ad:0e:c3:5c:48:fa:56:a1:3b:21:f0:
60:f9:ad:e5:f5:15:de:1a:2f:7f:ec:9f:2b:00:95:5c:23:2e:
ef:d4:51:c3:a3:36:27:46:84:85:81:d2:c7:3e:a2:22:29:ed:
4a:4e:7a:7c:a9:46:bb:58:7c:a8:f0:59:12:86:63:75:af:cf:
c6:6e:49:d0:51:ba:12:cd:51:2e:30:b6:2d:86:00:36:e0:c3:
ed:d0:b2:5a:eb:2d:40:c6:27:51:70:7f:ad:22:74:a1:36:ea:
30:47:3e:d6:01:b4:f1:00:77:90:fa:98:14:ee:c7:d5:e0:67:
79:f0:e2:c0:b2:6a:b7:ec:80:26:1c:49:82:cf:7d:92:a0:44:
e4:53:b5:79:20:01:2e:85:84:92:a7:9f:0f:fa:8f:95:e5:16:
1d:15:98:97:99:4b:28:e4:cc:53:45:eb:7c:88:07:dd:b9:a5:
5c:cc:83:be:0f:04:7e:d2:e2:92:81:ec:b0:f3:1a:e2:aa:a2:
96:ce:a9:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 00:12:06 2025 by rpki-client