Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
File: 8khYdchHDmqs3JR0IQXzDFl6wrs.mft (raw, json)
Hash identifier: 87SG9AIAcgu4b6F2sIr+TBLkEKtFYi5xrbuwd1nePPI=
Subject key identifier: 4A:A2:97:6C:EF:E3:8C:53:C5:B0:C8:80:B2:E1:C7:E0:76:A0:07:6D
Authority key identifier: F2:48:58:75:C8:47:0E:6A:AC:DC:94:74:21:05:F3:0C:59:7A:C2:BB
Certificate issuer: /CN=f2485875c8470e6aacdc94742105f30c597ac2bb
Certificate serial: 01964DEC78F9B7BF38A6A16EDD5105B29D3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
Manifest number: 0BF3
Signing time: Sat 19 Apr 2025 12:01:05 +0000
Manifest this update: Sat 19 Apr 2025 12:01:05 +0000
Manifest next update: Sun 20 Apr 2025 12:01:05 +0000
Files and hashes: 1: 11v4ujiE85pODnajO4MIvDa-EEI.roa (hash: 899jJDpYjGC19E0C+sSPG4BflRjWNeXH81Y2tQUCHZ0=)
2: 8khYdchHDmqs3JR0IQXzDFl6wrs.crl (hash: 6itFtW1ufFcqlOypVTZa/p7BzuzefNRaLf5r53FfwMc=)
3: H5a6_PbqYpspvXprSKayoanO0T4.roa (hash: rh38nYvA7FwPR7BzdHUH02hvI8rv4wT+OqQOUSlde48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 12:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:ec:78:f9:b7:bf:38:a6:a1:6e:dd:51:05:b2:9d:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2485875c8470e6aacdc94742105f30c597ac2bb
Validity
Not Before: Apr 19 12:01:05 2025 GMT
Not After : Apr 20 12:01:05 2025 GMT
Subject: CN=4aa2976cefe38c53c5b0c880b2e1c7e076a0076d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:73:de:46:08:31:11:40:70:74:3e:01:cd:2d:
63:f9:d4:25:4c:3c:14:58:4e:ba:a4:7d:2c:c3:f8:
64:c3:a1:17:d7:6e:45:ad:11:e8:18:27:a4:02:33:
01:f8:96:ba:b8:ab:ac:8d:dd:67:a0:bd:13:16:18:
3c:e1:ea:dc:5b:67:71:4f:1b:c0:fc:3f:fe:93:47:
c6:e9:fc:67:7e:fc:01:14:62:0e:c0:8a:7a:6f:44:
21:2d:23:a9:0f:fc:d5:e9:74:9f:9b:15:82:72:83:
df:37:c7:ad:4e:06:c2:3f:4e:63:88:18:0c:7d:fc:
21:1e:fa:fa:7c:f2:34:67:99:64:bc:1a:ff:48:8b:
b3:c3:6f:c2:12:48:77:09:e3:7d:60:b9:2e:bc:35:
a9:c2:c6:b4:4b:fa:f3:74:bb:af:d3:4a:b5:d2:7f:
79:6b:a8:3c:65:90:9f:99:52:8e:e2:ca:0a:2d:e7:
a1:6c:93:74:fb:d5:11:bc:bf:64:b7:73:12:d2:61:
b7:ad:e5:ad:ad:c2:df:7a:88:e9:d8:53:ad:fa:34:
ba:8a:28:6a:07:0b:fd:ca:d1:d3:06:0d:30:fa:e7:
56:1c:bd:ad:b5:bf:38:17:f0:28:42:07:4b:a7:5e:
38:b8:15:8b:93:91:95:2a:07:44:a3:08:69:f2:5d:
81:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:A2:97:6C:EF:E3:8C:53:C5:B0:C8:80:B2:E1:C7:E0:76:A0:07:6D
X509v3 Authority Key Identifier:
keyid:F2:48:58:75:C8:47:0E:6A:AC:DC:94:74:21:05:F3:0C:59:7A:C2:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8khYdchHDmqs3JR0IQXzDFl6wrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/5a3f0b-86f5-406e-91d5-8fd4c024488e/1/8khYdchHDmqs3JR0IQXzDFl6wrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cd:4b:21:44:fc:74:1b:30:bb:62:da:47:6a:d2:23:ca:cf:28:
59:30:9e:08:60:8b:45:8f:ef:bc:96:36:7e:4f:12:92:2c:12:
41:b0:1c:ac:bc:a0:41:86:f2:22:4f:b7:bf:61:df:3e:28:ca:
1c:72:0d:04:aa:36:7e:96:29:4b:6e:7d:66:85:17:e4:e4:5e:
30:a0:2f:66:f2:81:b7:d2:21:b7:72:ba:ff:3d:e7:f7:d2:55:
76:ac:9e:42:2f:6f:a3:7b:cd:90:2a:9c:c4:26:82:34:e6:25:
af:b4:3d:46:48:df:73:9f:1c:48:37:5b:3e:36:6e:3e:4b:72:
75:f4:7e:cf:9b:ad:0a:4e:10:bb:dd:17:94:e0:40:a0:4c:36:
ef:5a:63:ed:a3:00:3e:90:25:1a:c2:ec:75:a9:99:02:38:9c:
67:4a:fd:a2:0e:b6:d1:b6:e2:51:7a:f3:20:a2:0b:09:7f:6a:
56:46:a5:8a:c8:0a:88:c4:8f:e5:af:24:cf:ef:1c:e2:51:f2:
3d:8e:36:60:d8:21:36:4c:9e:3a:89:e2:28:a7:02:57:9b:ec:
f7:38:79:e5:6a:80:b7:97:38:9d:18:9e:97:05:97:33:ea:da:
98:77:6d:dc:c2:2f:9d:1f:7b:d2:77:af:d4:ff:a3:8e:bb:73:
2c:bd:5c:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 17:24:24 2025 by rpki-client