Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.mft
File: 21m85hup0qDjVb4B8TQbjfdq69s.mft (raw, json)
Hash identifier: ppGB/7t4G1aoku1jYAse0l/DR0uTkOyBKcezg/qp/U8=
Subject key identifier: B6:2D:2A:A7:8B:2B:58:C1:B9:5E:3E:A1:D1:68:B4:8B:7F:FA:D4:B2
Authority key identifier: DB:59:BC:E6:1B:A9:D2:A0:E3:55:BE:01:F1:34:1B:8D:F7:6A:EB:DB
Certificate issuer: /CN=db59bce61ba9d2a0e355be01f1341b8df76aebdb
Certificate serial: 0196586FA990FFE3C81E994084FDE3B49609
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/21m85hup0qDjVb4B8TQbjfdq69s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.mft
Manifest number: 1500
Signing time: Mon 21 Apr 2025 13:00:34 +0000
Manifest this update: Mon 21 Apr 2025 13:00:34 +0000
Manifest next update: Tue 22 Apr 2025 13:00:34 +0000
Files and hashes: 1: 21m85hup0qDjVb4B8TQbjfdq69s.crl (hash: ayQ1P7lbe+rb1vIUfT2qaBNHSIfkhG+rJjADYZ2Zphc=)
2: y6zUASqLMYC9vOre4NE5oaCGRIY.roa (hash: nU1xlMhFlcEyY9/vfWFwqCMNEfoKNvZKlYNQ0axw4og=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.mft
rsync://rpki.ripe.net/repository/DEFAULT/21m85hup0qDjVb4B8TQbjfdq69s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:6f:a9:90:ff:e3:c8:1e:99:40:84:fd:e3:b4:96:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db59bce61ba9d2a0e355be01f1341b8df76aebdb
Validity
Not Before: Apr 21 13:00:34 2025 GMT
Not After : Apr 22 13:00:34 2025 GMT
Subject: CN=b62d2aa78b2b58c1b95e3ea1d168b48b7ffad4b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:59:28:cc:33:ed:c5:1e:95:4c:f5:d8:b0:2d:
37:2c:6b:d7:df:73:33:f4:88:03:85:64:c0:f4:58:
6b:17:2a:23:81:e1:64:87:0f:ec:04:87:46:02:73:
ac:e4:f6:7b:16:51:bb:26:1a:2a:e4:a6:a7:d2:ca:
85:d1:86:d3:22:84:1d:b5:45:5d:a2:85:9d:da:ac:
02:8e:09:15:41:56:00:24:84:be:4a:4d:0f:b8:c3:
db:f7:8c:10:e4:67:d5:cb:e7:70:07:e7:08:a0:84:
1e:61:73:83:c1:21:a0:23:d9:e0:35:50:52:07:a5:
0c:3e:18:11:c9:c8:96:57:92:3d:ab:bf:3f:3a:d9:
e4:b6:86:3a:b0:38:82:c3:c2:ca:27:ad:fd:c3:b8:
2c:54:d6:72:df:3b:42:bc:86:61:b6:9d:0c:79:34:
87:f4:a0:5b:e4:e7:d4:d7:aa:ba:d8:04:66:18:63:
dd:99:b6:01:30:0d:92:f1:bf:f1:b8:30:79:15:c8:
e8:6d:3e:07:33:ec:c1:1f:b2:3a:09:b4:5f:fb:7c:
51:f2:21:9d:a4:c6:95:94:d2:cd:dd:53:32:8a:29:
7a:82:92:6c:22:a2:16:f2:0b:f8:fc:20:bc:a5:51:
6d:1e:a8:5d:d4:e2:39:3e:f6:e5:a8:1a:b4:e8:1f:
ff:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:2D:2A:A7:8B:2B:58:C1:B9:5E:3E:A1:D1:68:B4:8B:7F:FA:D4:B2
X509v3 Authority Key Identifier:
keyid:DB:59:BC:E6:1B:A9:D2:A0:E3:55:BE:01:F1:34:1B:8D:F7:6A:EB:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/21m85hup0qDjVb4B8TQbjfdq69s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9209ed-4b98-4897-8e9b-3a042f77b738/1/21m85hup0qDjVb4B8TQbjfdq69s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:e2:01:6e:96:93:ac:cd:f9:c9:27:da:04:4c:2b:cc:58:82:
97:c0:68:89:c7:ad:78:4f:8a:f7:c5:09:8e:df:02:5a:14:78:
1c:f4:56:ed:51:52:2c:d2:0c:42:92:e3:3b:0b:55:1d:a5:e8:
9e:87:bb:74:cc:b4:b4:48:54:8f:af:dd:2d:a7:ec:77:a0:d9:
99:7c:68:39:7c:d4:02:8b:72:22:42:28:bf:35:30:40:03:e1:
34:9d:51:87:f6:bc:ff:b5:bf:17:84:ce:53:f1:d1:b6:cf:c0:
c8:9a:3f:25:e7:d3:65:3e:1e:f9:07:fb:ad:c6:99:54:58:c0:
ed:a0:e5:d4:fb:6a:89:e7:ea:07:d3:bd:42:88:f5:48:61:d1:
c9:a6:69:b2:44:d4:b8:c7:dc:5a:d5:6f:82:1a:df:be:f7:04:
75:35:a9:e0:18:6c:59:61:56:27:30:f6:26:ad:ac:cd:66:b5:
c1:49:93:94:51:02:72:b9:41:5f:64:7e:c1:68:2e:4c:5c:85:
5b:ef:67:b4:23:73:2c:c1:c0:88:be:1a:f6:c0:a8:80:46:40:
d4:49:fd:a2:c9:85:41:0b:ec:10:94:53:4a:5a:91:06:09:2f:
cd:8f:61:81:dd:f2:8f:99:16:bd:27:d2:bc:72:f1:2c:a3:b1:
72:ab:65:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:36:32 2025 by rpki-client