Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.mft
File: R-XTM9rZ1i1TKNEleKMd70KvjzQ.mft (raw, json)
Hash identifier: EBHKYeL1M9O49hXt+d75tVb3fyx8meUEd3Oc1RjaG8g=
Subject key identifier: D1:2D:D5:FD:B2:FB:97:02:D3:75:90:EE:38:31:EC:A2:29:AC:14:7A
Authority key identifier: 47:E5:D3:33:DA:D9:D6:2D:53:28:D1:25:78:A3:1D:EF:42:AF:8F:34
Certificate issuer: /CN=47e5d333dad9d62d5328d12578a31def42af8f34
Certificate serial: 019656EED474C835FBC56414EFDFF8E13E27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R-XTM9rZ1i1TKNEleKMd70KvjzQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.mft
Manifest number: 077F
Signing time: Mon 21 Apr 2025 06:00:14 +0000
Manifest this update: Mon 21 Apr 2025 06:00:14 +0000
Manifest next update: Tue 22 Apr 2025 06:00:14 +0000
Files and hashes: 1: I_0zk_rD0Gdq5jU6WeRSly4SVcs.roa (hash: JHLttM3n9KjjQEXLZtpKJI1GYGGri8Vj45nM2EhgE4A=)
2: R-XTM9rZ1i1TKNEleKMd70KvjzQ.crl (hash: NVl7A3KdTgKPSX3FTfWpmWG5OCmdLyxJvB2MOE6soKg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/R-XTM9rZ1i1TKNEleKMd70KvjzQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:ee:d4:74:c8:35:fb:c5:64:14:ef:df:f8:e1:3e:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47e5d333dad9d62d5328d12578a31def42af8f34
Validity
Not Before: Apr 21 06:00:14 2025 GMT
Not After : Apr 22 06:00:14 2025 GMT
Subject: CN=d12dd5fdb2fb9702d37590ee3831eca229ac147a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:28:2e:44:54:c6:00:6d:0b:a4:56:cd:fe:9a:
99:b5:81:9a:55:ec:90:df:f4:42:84:d0:1f:3a:64:
97:51:d9:75:41:04:1e:f3:33:79:00:9e:a2:21:fe:
54:38:b1:75:28:6e:7d:b9:62:7c:3d:84:4e:66:f7:
0a:2b:0b:6a:ea:bb:5b:7f:43:8c:88:4d:4d:56:17:
e0:ec:ce:44:f8:65:b8:41:7e:6b:60:db:d6:72:ca:
a6:b8:ff:e2:be:7f:70:87:45:cd:04:fe:ed:ab:d8:
7e:1e:d9:bf:fe:9f:9c:25:33:5e:02:4c:2f:5c:e7:
8a:42:ff:83:41:66:87:d5:0e:f8:3e:67:49:3c:eb:
11:df:c6:00:71:c9:c6:41:10:ef:20:e8:69:37:49:
cc:79:41:9f:b5:36:1e:05:69:02:dc:59:98:5d:76:
7e:c5:c7:b6:24:75:19:91:cb:1b:9b:a8:f5:c1:04:
7f:de:21:7f:1c:8a:e4:d2:c1:19:97:79:2d:0c:f8:
67:8a:2f:d7:14:06:fd:89:e0:93:fb:27:cd:f4:17:
bf:a3:28:08:21:d6:9d:06:f0:ac:35:ef:dc:be:f8:
32:64:1c:89:ef:dc:57:09:7b:ea:f1:36:f4:fc:e5:
6d:f6:92:09:17:66:e0:d6:a8:44:e5:98:5f:ab:98:
ce:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:2D:D5:FD:B2:FB:97:02:D3:75:90:EE:38:31:EC:A2:29:AC:14:7A
X509v3 Authority Key Identifier:
keyid:47:E5:D3:33:DA:D9:D6:2D:53:28:D1:25:78:A3:1D:EF:42:AF:8F:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R-XTM9rZ1i1TKNEleKMd70KvjzQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:59:ab:0f:a6:10:b0:76:b2:a8:f3:54:bc:18:6b:30:45:56:
7a:21:17:d1:84:8a:f3:8d:d1:98:b5:7d:0b:82:af:d9:22:0e:
65:25:d0:8c:62:84:66:44:75:4c:81:df:b0:3a:5d:6a:79:f4:
dc:10:66:b0:bb:ad:c6:54:af:db:26:7f:83:9b:61:6e:70:02:
6d:51:8e:22:16:20:3f:04:b8:b4:dc:fb:c1:62:2f:39:4d:da:
ee:c9:76:4b:36:22:f9:d8:88:30:19:71:64:be:c9:d7:10:05:
db:65:eb:e4:5c:96:c3:a3:55:7d:10:5e:2d:6d:5c:62:99:5a:
4c:29:28:68:f3:5b:15:eb:e2:67:cd:41:35:6c:38:f8:e0:23:
7b:88:4c:fe:52:e9:35:27:90:12:a8:eb:dc:02:53:40:b7:2d:
57:b7:12:de:cd:b1:91:68:54:59:03:a6:db:0a:ab:01:75:1d:
e2:22:01:8d:38:45:40:69:90:d8:bc:fa:86:fb:07:10:81:cf:
b0:81:36:60:c6:39:7e:68:5d:fd:9e:dc:e7:c7:02:fa:f9:89:
17:30:e2:75:5e:48:a5:d8:90:13:92:e5:2b:7d:fa:40:7e:ad:
04:c5:7d:b7:2b:41:1f:55:47:a4:43:fe:f9:e5:43:81:6b:f0:
fc:2a:4b:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 10:59:26 2025 by rpki-client