Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
File: 1O219t5yQ2FIs1pZA38jNBUN2zY.mft (raw, json)
Hash identifier: rPzRw5N5ZX4dSK47BcQ2CN9TYO99Lu14a0UMbGH1pNM=
Subject key identifier: ED:3C:22:EA:08:31:D0:D5:84:04:1B:ED:E9:0E:04:E4:5D:4E:7B:DA
Authority key identifier: D4:ED:B5:F6:DE:72:43:61:48:B3:5A:59:03:7F:23:34:15:0D:DB:36
Certificate issuer: /CN=d4edb5f6de72436148b35a59037f2334150ddb36
Certificate serial: 019644E893EE45F8D0524F5BA496A2ECBAD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1O219t5yQ2FIs1pZA38jNBUN2zY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
Manifest number: 1488
Signing time: Thu 17 Apr 2025 18:00:14 +0000
Manifest this update: Thu 17 Apr 2025 18:00:14 +0000
Manifest next update: Fri 18 Apr 2025 18:00:14 +0000
Files and hashes: 1: 1O219t5yQ2FIs1pZA38jNBUN2zY.crl (hash: zu5hSBEmGi0ChhJdw9NnSbVGMrsdp6NB9/VQ4f8VJn4=)
2: CUxoxoHUFgCcWdXLBL1XTZtblHU.roa (hash: nuVV0ajPUp0XSEkxw4hsRxKF9YmW1aG+8tY3rAw4VUA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1O219t5yQ2FIs1pZA38jNBUN2zY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:44:e8:93:ee:45:f8:d0:52:4f:5b:a4:96:a2:ec:ba:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4edb5f6de72436148b35a59037f2334150ddb36
Validity
Not Before: Apr 17 18:00:14 2025 GMT
Not After : Apr 18 18:00:14 2025 GMT
Subject: CN=ed3c22ea0831d0d584041bede90e04e45d4e7bda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:52:4a:c4:0e:72:da:1d:98:8d:21:73:76:ae:
b2:76:da:80:05:b2:b9:c0:e3:e8:d3:41:24:92:8d:
7a:4e:9f:62:c0:2b:9d:5d:53:aa:02:21:a8:48:87:
22:04:68:d7:2e:e1:49:e5:e2:4a:0b:b8:b4:58:6d:
23:60:f8:6d:b5:d5:44:8c:49:fd:ec:ac:25:00:21:
fb:64:f8:b8:c6:09:06:5a:2d:32:46:9d:e2:8a:50:
fa:53:1f:90:78:12:a9:27:c5:9e:4c:46:4c:a5:36:
2b:fa:e2:5a:8c:a8:3d:cf:01:62:81:02:f3:fe:e8:
d1:f3:34:92:5f:ea:92:35:ca:c4:3a:ad:5d:24:51:
99:79:04:1d:05:2e:c9:58:5b:2b:1f:50:44:46:ef:
4e:69:d2:0b:14:f4:db:8d:c9:37:b9:d8:af:39:06:
09:0b:64:07:a4:5b:3b:2b:01:cc:a1:7f:25:9f:6d:
c6:78:58:d4:39:7a:a8:6d:55:77:cc:ba:4c:7c:6c:
9b:e9:92:b6:8f:f0:a0:2b:7b:c4:e7:63:ae:5e:8f:
db:0f:fc:1e:41:6f:37:89:be:e7:97:fb:a1:4e:6f:
20:6f:5b:e2:e3:71:6d:14:e6:7c:9d:f0:af:22:55:
ce:18:b7:65:59:ca:36:30:f7:88:44:42:84:cd:2e:
49:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:3C:22:EA:08:31:D0:D5:84:04:1B:ED:E9:0E:04:E4:5D:4E:7B:DA
X509v3 Authority Key Identifier:
keyid:D4:ED:B5:F6:DE:72:43:61:48:B3:5A:59:03:7F:23:34:15:0D:DB:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1O219t5yQ2FIs1pZA38jNBUN2zY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:78:25:9e:21:4f:50:44:c4:8b:30:69:d7:d2:e9:53:f7:ec:
87:f5:09:a6:d5:da:96:8f:25:d4:86:a6:eb:ce:67:65:d8:cf:
74:34:b9:ee:66:c5:28:16:b6:44:d5:5f:e8:65:14:a8:18:9e:
80:53:6f:f7:fb:90:4e:04:34:53:1b:c1:dc:b0:7f:5e:b7:e7:
3a:02:85:cd:64:66:42:81:74:7b:25:1e:9b:b2:ab:57:23:cb:
48:8d:3c:19:ff:da:35:27:b3:4f:28:be:be:51:3b:28:f8:ee:
3b:48:75:ce:62:54:0f:a5:ad:e5:ca:36:10:ac:67:3a:9d:57:
7b:12:b9:a7:b0:fc:45:29:2c:32:f2:9f:23:0c:39:be:26:1a:
c9:fc:09:ac:f0:bd:68:71:00:04:47:16:61:0e:73:28:ed:ea:
38:f9:c4:9e:2c:98:18:f1:a5:8d:8c:82:08:21:fa:44:c0:c9:
6f:34:4e:d1:d0:9a:c9:01:36:03:cd:37:ae:e4:73:39:e2:41:
90:ff:80:21:1b:4b:88:be:17:5a:4a:15:0f:03:ff:8a:1d:6f:
75:b3:c9:51:c0:93:9b:0e:6e:85:0e:b2:62:aa:03:67:24:31:
40:50:98:50:36:b5:9a:5b:88:2b:cd:49:f2:81:95:fe:c7:96:
30:7f:bc:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:32:44 2025 by rpki-client