Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
File: a4QIvvwC39bmGQhUh4WgCKS3TWc.mft (raw, json)
Hash identifier: D9EEmiwL6dkd4awcKTOBloIxltA98OyW93t6POkirO8=
Subject key identifier: 45:46:EB:7E:50:E7:28:13:7D:1C:6B:9F:42:CD:5A:3D:EB:C1:70:D7
Authority key identifier: 6B:84:08:BE:FC:02:DF:D6:E6:19:08:54:87:85:A0:08:A4:B7:4D:67
Certificate issuer: /CN=6b8408befc02dfd6e61908548785a008a4b74d67
Certificate serial: 019653EE043E4D7FD0F051BA1E3575207E46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a4QIvvwC39bmGQhUh4WgCKS3TWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
Manifest number: 0950
Signing time: Sun 20 Apr 2025 16:00:29 +0000
Manifest this update: Sun 20 Apr 2025 16:00:29 +0000
Manifest next update: Mon 21 Apr 2025 16:00:29 +0000
Files and hashes: 1: XG_GoCIjsfzx85ZAfU48cGk_g2A.roa (hash: O4zvtPOigYM3HdyO+PNnJwZMHPFxCAa0+qt7cBa9RoM=)
2: a4QIvvwC39bmGQhUh4WgCKS3TWc.crl (hash: 0oGuooZH2sOMqg6+fUlKrMcrK7qHTZMgbwxQVd8X0Og=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/a4QIvvwC39bmGQhUh4WgCKS3TWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:ee:04:3e:4d:7f:d0:f0:51:ba:1e:35:75:20:7e:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b8408befc02dfd6e61908548785a008a4b74d67
Validity
Not Before: Apr 20 16:00:29 2025 GMT
Not After : Apr 21 16:00:29 2025 GMT
Subject: CN=4546eb7e50e728137d1c6b9f42cd5a3debc170d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5d:4a:f9:2e:16:66:b8:2d:e5:dd:4b:44:0f:
3d:0b:c6:09:99:07:a9:2b:0a:dd:a2:48:9f:5f:e1:
fc:b5:b6:38:82:b9:73:9f:1d:a0:05:7d:23:6c:db:
07:8a:50:93:17:94:a7:da:72:c6:d8:be:f1:33:31:
31:c3:2c:60:72:46:59:0f:36:6a:aa:ea:fa:56:45:
f7:36:f7:d1:e6:95:03:53:89:c0:72:ef:8b:32:a5:
f5:62:ce:8d:53:4c:c9:e1:11:89:9a:fa:e0:2b:30:
ec:c3:f4:ce:a9:03:03:71:d9:b1:54:e2:bf:12:bd:
9c:54:f2:b4:fb:3c:70:ac:30:b4:96:2a:97:3c:fc:
83:33:f4:69:b9:65:d0:d5:03:dc:b7:03:a3:0c:51:
df:03:dd:44:20:12:7d:4d:b4:91:2c:11:3f:4a:48:
0c:f5:2d:e4:c0:b2:98:84:14:31:a6:74:3b:7a:9d:
7d:17:49:7a:e3:e9:63:6a:80:a3:69:cf:bf:78:78:
8d:0c:c1:e9:e6:1a:9c:40:54:12:29:47:02:8b:ab:
e9:16:4f:d9:a0:5e:3c:63:12:7e:fc:56:77:9e:61:
c3:33:8b:55:5a:4b:24:f7:b7:b9:00:ce:2f:dc:d2:
be:5d:fb:23:f0:1b:8a:4c:41:1f:e7:32:ec:93:e1:
c4:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:46:EB:7E:50:E7:28:13:7D:1C:6B:9F:42:CD:5A:3D:EB:C1:70:D7
X509v3 Authority Key Identifier:
keyid:6B:84:08:BE:FC:02:DF:D6:E6:19:08:54:87:85:A0:08:A4:B7:4D:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4QIvvwC39bmGQhUh4WgCKS3TWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e615e-3610-4520-9484-7a8baeef5ee4/1/a4QIvvwC39bmGQhUh4WgCKS3TWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:54:88:5e:d3:f5:94:b3:7c:8d:21:00:23:50:0f:a2:c8:f7:
b0:fc:98:45:4f:6e:94:d2:1c:7d:5f:3c:54:62:43:a0:fb:51:
28:ba:04:11:de:09:0f:7e:c7:ba:44:42:ee:7b:4a:99:53:80:
17:03:7e:73:a8:6f:6b:8c:82:78:11:59:7a:8d:9a:05:b3:c5:
f6:c2:b7:76:73:5b:31:78:9c:c2:46:c1:ad:77:47:b0:d1:00:
8b:9c:62:9e:91:71:2e:8c:a8:51:02:8a:3b:b0:1a:7b:d6:cf:
18:41:5e:c8:38:f3:16:20:4c:6a:b3:4f:27:2f:9f:71:ea:09:
88:46:b7:cf:b6:81:3d:55:64:29:06:f2:ea:4b:4b:6f:6b:d5:
df:81:0d:34:6f:50:bd:96:e6:ae:4e:13:f4:aa:cf:75:ac:94:
29:f8:2c:e5:20:24:76:6f:72:4a:68:48:41:ed:9a:ff:75:87:
55:ce:92:80:72:e8:b8:fa:0c:d5:17:8f:96:b0:38:3e:86:49:
d0:ab:e4:3e:8e:46:a0:0d:36:ee:28:52:8e:d7:e4:06:40:5e:
04:1e:08:13:1a:65:b3:d9:c9:27:27:0f:e4:0f:d3:ca:e9:70:
49:58:b8:2f:0b:05:e2:69:05:7e:4d:7f:2f:84:04:e9:9a:f0:
13:b4:97:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 19:32:07 2025 by rpki-client