Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
File: S21-pBAzg38IwoxHQphLgrj0Q98.mft (raw, json)
Hash identifier: 7Oll6o2og6TiM8wu4vf8QZfDlP3A8xqYvfIdxyQosDs=
Subject key identifier: 9C:36:E2:0D:DF:09:86:E1:7C:0D:A4:D3:7C:A4:27:89:FD:A0:7C:9B
Authority key identifier: 4B:6D:7E:A4:10:33:83:7F:08:C2:8C:47:42:98:4B:82:B8:F4:43:DF
Certificate issuer: /CN=4b6d7ea41033837f08c28c4742984b82b8f443df
Certificate serial: 01965492FCB09C3C8EE08EC6D7EBBC422FC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S21-pBAzg38IwoxHQphLgrj0Q98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
Manifest number: 112E
Signing time: Sun 20 Apr 2025 19:00:41 +0000
Manifest this update: Sun 20 Apr 2025 19:00:41 +0000
Manifest next update: Mon 21 Apr 2025 19:00:41 +0000
Files and hashes: 1: R0-_LF6KU0ufBdJHLr5D2OsCZsM.roa (hash: 9atL02W0zWCgguNUrFQhgbOUdRY0kP2jIZbv6fAlg2k=)
2: S21-pBAzg38IwoxHQphLgrj0Q98.crl (hash: Dw+29H9+JVUL+ksymF0Fk/TmNFlN38JUA5+BQ7rxpyQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
rsync://rpki.ripe.net/repository/DEFAULT/S21-pBAzg38IwoxHQphLgrj0Q98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 19:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:92:fc:b0:9c:3c:8e:e0:8e:c6:d7:eb:bc:42:2f:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b6d7ea41033837f08c28c4742984b82b8f443df
Validity
Not Before: Apr 20 19:00:41 2025 GMT
Not After : Apr 21 19:00:41 2025 GMT
Subject: CN=9c36e20ddf0986e17c0da4d37ca42789fda07c9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:da:fd:ab:dc:e7:8f:a9:58:4f:7d:46:c1:49:
03:0a:50:ea:3e:6c:7f:5b:39:35:e3:af:0d:b8:41:
4f:af:d4:00:89:c7:69:f6:05:54:af:b2:bd:6d:8e:
f2:fb:0d:24:a9:2a:9b:af:45:ac:a5:bd:05:a3:20:
4e:c9:e0:77:4a:44:a2:05:d8:74:23:0f:63:2b:b8:
24:c3:6b:51:6e:1e:2e:b7:dc:f4:02:00:f5:ba:a5:
ca:e0:33:5e:e6:4d:50:9d:3a:72:77:2c:1a:a1:8c:
b6:a1:4b:3a:13:4e:a9:84:c1:5b:4a:dd:4f:64:1a:
70:2b:b7:4c:16:0a:b8:93:ba:61:5e:3b:50:af:13:
b0:4f:64:89:ee:d6:2b:8f:1b:db:2e:cd:ea:25:db:
3f:3c:06:77:71:12:0c:8a:32:80:36:45:ca:4c:36:
07:a1:11:a2:2a:0e:df:3e:c3:ef:7b:10:70:e9:2f:
80:a0:72:a2:02:dd:45:af:e0:01:b5:8b:89:f9:70:
6f:3a:51:04:bb:54:e1:29:ed:a8:92:9a:b0:6d:3c:
9c:fe:14:1e:eb:43:d4:15:0c:e4:32:bd:4b:71:0f:
d3:4f:c9:8f:88:da:7e:39:19:5b:32:09:d0:7f:96:
a8:8a:9e:41:3d:16:88:09:9f:c6:ae:c5:5b:3e:77:
4e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:36:E2:0D:DF:09:86:E1:7C:0D:A4:D3:7C:A4:27:89:FD:A0:7C:9B
X509v3 Authority Key Identifier:
keyid:4B:6D:7E:A4:10:33:83:7F:08:C2:8C:47:42:98:4B:82:B8:F4:43:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S21-pBAzg38IwoxHQphLgrj0Q98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:ed:a7:3d:ad:35:5a:0b:69:d9:8d:84:22:0f:ce:e1:0f:82:
69:75:fd:44:77:6b:b0:de:d8:82:59:02:26:69:30:68:9b:ab:
ba:f3:4b:6a:98:5a:2b:2a:ed:58:21:98:e1:c0:18:dd:dd:d4:
a1:45:ce:2c:46:97:85:f9:ea:0f:2c:de:7f:83:16:f3:6e:64:
42:69:ff:69:05:f9:53:f7:f2:7a:38:11:d4:03:97:6a:e0:ac:
0e:1c:80:86:5e:ff:ac:d9:1e:ae:a8:0a:66:b7:5f:dd:74:0a:
fc:2b:f6:f0:5b:bf:ad:8b:1b:ad:3b:5e:71:9c:75:e0:e0:ca:
da:f6:47:db:9e:da:c7:f6:9f:14:a9:5a:54:b1:c9:d1:a0:c5:
36:57:63:2d:22:35:83:e5:4b:ec:df:12:5f:ac:70:80:f7:8c:
a2:da:02:a4:bf:4a:57:28:72:74:a1:8d:97:a7:1a:4a:5c:fb:
9f:7c:d3:6f:e8:c9:de:70:d3:7f:69:35:99:6c:1c:0b:00:42:
9e:b2:65:e5:89:4b:79:e7:41:c4:db:da:bf:86:85:7d:b1:c8:
a2:8b:74:e1:ce:f7:2f:29:b7:d8:c8:ab:e1:5e:61:e7:06:fa:
03:64:cc:30:55:b5:6d:fd:b4:15:a6:c0:0f:df:6e:b9:f8:89:
51:83:62:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:05:43 2025 by rpki-client