Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
File: 0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft (raw, json)
Hash identifier: swlf3/n720yF2HKH6l1HBIwyUm2KYq3+zzZP1nQiY7o=
Subject key identifier: 64:E2:8A:E3:8F:B7:D7:94:F6:08:54:39:8E:84:0F:6C:78:EC:C8:65
Authority key identifier: D2:91:74:12:52:BB:9C:4C:DA:80:04:7D:FB:01:CE:98:C2:19:D1:80
Certificate issuer: /CN=d291741252bb9c4cda80047dfb01ce98c219d180
Certificate serial: 01964FDAC00EEA3FED5A4052A6D029FE343E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
Manifest number: 13AF
Signing time: Sat 19 Apr 2025 21:00:58 +0000
Manifest this update: Sat 19 Apr 2025 21:00:58 +0000
Manifest next update: Sun 20 Apr 2025 21:00:58 +0000
Files and hashes: 1: 0pF0ElK7nEzagAR9-wHOmMIZ0YA.crl (hash: 1O5S+P9QXy11EZI1tEjy+oupiesqkaPu6gQa71bcdjo=)
2: 24F3NWEaUDo-ywzWotAmlAOE0aY.roa (hash: ERf1+Eo8kcPOcjF9iXtlxaEqblrqJRaC4jpu9Wj4DSs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 21:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:da:c0:0e:ea:3f:ed:5a:40:52:a6:d0:29:fe:34:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d291741252bb9c4cda80047dfb01ce98c219d180
Validity
Not Before: Apr 19 21:00:58 2025 GMT
Not After : Apr 20 21:00:58 2025 GMT
Subject: CN=64e28ae38fb7d794f60854398e840f6c78ecc865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0f:2b:c9:57:58:fd:a9:37:fd:80:9a:b4:f6:
69:03:2d:ad:03:f7:04:06:81:d8:e6:48:7d:ff:a4:
e0:f0:df:77:fb:34:05:8e:8d:3a:d9:37:64:2e:74:
46:88:15:60:ca:0b:37:7d:2c:fc:d1:df:fb:da:b4:
cc:39:f1:90:02:0d:eb:44:c2:af:fd:1a:0f:9c:81:
55:ca:2a:d7:c1:43:82:88:d8:5b:72:df:d8:77:1a:
b0:d9:06:bc:0c:cd:1f:b8:35:4b:9f:31:2b:6e:ef:
05:e7:c6:58:37:e2:62:aa:c1:48:02:54:75:80:9e:
c1:62:96:07:36:b1:31:b7:15:ae:42:36:aa:93:ea:
74:6f:a8:05:53:b3:df:e7:f0:2e:74:be:39:ff:96:
21:75:7b:43:f5:7e:f8:22:45:61:74:8a:d0:e6:80:
af:ae:1c:37:20:33:f9:d6:c9:cf:a1:fd:20:e2:3f:
56:23:b5:10:18:1b:eb:c6:75:76:d9:c0:13:0b:c5:
ba:b4:97:85:34:28:de:ce:17:92:4a:53:f7:e6:1e:
18:71:42:6f:2f:cb:8f:d6:1f:27:55:c2:93:a5:98:
1c:40:5a:2c:67:3b:1a:ee:e6:e7:10:e6:55:07:3b:
7a:66:45:05:a4:f7:96:b3:8c:d8:34:7b:59:65:a0:
47:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:E2:8A:E3:8F:B7:D7:94:F6:08:54:39:8E:84:0F:6C:78:EC:C8:65
X509v3 Authority Key Identifier:
keyid:D2:91:74:12:52:BB:9C:4C:DA:80:04:7D:FB:01:CE:98:C2:19:D1:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0pF0ElK7nEzagAR9-wHOmMIZ0YA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/3ba6fc-2d49-4aff-9229-48b957264c26/1/0pF0ElK7nEzagAR9-wHOmMIZ0YA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:12:cb:bf:30:c4:2c:67:be:3e:4a:52:bc:ac:77:4e:4d:db:
a2:30:f9:37:19:56:03:44:43:e8:2b:e7:67:c2:c7:1b:9d:5a:
ba:65:2c:0c:b7:e9:69:c5:b1:25:0b:7a:9b:6a:98:d9:02:f6:
d2:c6:fd:a7:da:86:28:39:73:2c:9c:36:ff:1f:1f:e3:ba:e8:
d6:75:54:2f:ff:e5:c8:5f:26:b0:bb:32:3d:fb:a9:b8:a8:1b:
da:54:39:5e:86:4f:e8:a2:d0:b9:3b:f0:bf:19:92:ba:93:fd:
1d:90:18:c1:90:8a:5d:d9:e0:7b:1b:04:d7:4f:27:12:7f:e0:
ce:7d:5d:12:52:c5:2e:a7:c1:2b:e2:e6:2f:ca:c8:ec:c0:23:
13:67:61:ba:bf:91:c5:28:4f:94:94:89:22:d6:ec:d6:ae:64:
53:d3:d3:f4:67:ea:ab:7f:05:7c:fe:33:0e:9b:71:f8:1f:02:
f9:61:64:37:48:11:b6:ee:99:38:00:a1:18:6d:bc:08:48:5d:
ca:af:6d:4d:d8:39:c7:da:a0:bb:1e:4c:c1:34:27:ff:1f:55:
b1:60:e7:32:61:1a:d0:0b:be:4a:3b:64:72:1a:1f:14:7a:4b:
ea:4c:e3:da:c6:9b:63:42:b9:48:8e:67:78:60:ab:e6:ea:9b:
85:3f:ef:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 03:33:38 2025 by rpki-client