Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
File: fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft (raw, json)
Hash identifier: 5c/kuI6kP6f5tEW1bQyD5AvraH1oA86bRk8TogZlX0k=
Subject key identifier: 56:4A:76:57:7C:C4:A5:92:1D:AC:EA:04:57:10:EE:E2:F6:4A:E2:A3
Authority key identifier: 7E:13:41:4B:DC:23:12:40:0D:FA:9F:50:65:0D:51:EE:04:43:DF:16
Certificate issuer: /CN=7e13414bdc2312400dfa9f50650d51ee0443df16
Certificate serial: 019659B99783E75FBF34C1EF024AD502FE82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
Manifest number: 1500
Signing time: Mon 21 Apr 2025 19:00:57 +0000
Manifest this update: Mon 21 Apr 2025 19:00:57 +0000
Manifest next update: Tue 22 Apr 2025 19:00:57 +0000
Files and hashes: 1: 1EKO08t3Z9nlIgriObmmD60gwS4.roa (hash: GhRL3PpvS/3V9MnssSh8wyX1VbIpwoy88Gmt2c9/PH0=)
2: fhNBS9wjEkAN-p9QZQ1R7gRD3xY.crl (hash: g6bUpUKiKQH//+CapuH6ouTAKMIL0aLF51td84pYZqk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:b9:97:83:e7:5f:bf:34:c1:ef:02:4a:d5:02:fe:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e13414bdc2312400dfa9f50650d51ee0443df16
Validity
Not Before: Apr 21 19:00:57 2025 GMT
Not After : Apr 22 19:00:57 2025 GMT
Subject: CN=564a76577cc4a5921dacea045710eee2f64ae2a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:15:d0:4a:2a:86:5e:73:5d:ad:3e:ab:11:d6:
5e:6d:30:c7:cc:0e:14:22:7e:8b:5b:7f:97:c4:e3:
b3:b6:40:24:54:8c:68:8e:b2:99:98:f6:b7:99:64:
3e:81:48:b5:d3:61:73:31:a6:d4:4a:cb:e3:14:69:
de:91:e3:f8:58:6b:8c:2d:40:7e:26:87:17:a0:ae:
50:d3:79:cc:ed:5b:65:11:a6:95:37:c9:95:1b:0b:
4e:63:20:54:26:32:81:df:ce:60:13:24:af:91:6f:
c3:da:0c:da:1f:a9:d0:96:54:5f:9d:d7:55:26:63:
8c:25:b8:a5:df:df:74:31:44:ff:cd:ee:ab:5e:ba:
90:ab:b7:5b:06:69:5e:c6:82:61:d7:a9:d2:3f:dc:
80:12:24:f6:2c:28:50:b7:4d:18:f6:32:9b:d4:46:
a1:8b:62:b4:ca:25:c9:8b:e6:cb:ad:cd:1f:d6:51:
70:b1:40:b4:d9:b0:3b:af:c5:19:93:ff:72:48:07:
61:80:ba:60:8a:c5:58:04:b2:db:23:d8:aa:9d:18:
84:df:80:9b:be:98:a6:e0:1b:f7:f2:b2:7e:9c:20:
07:75:24:2b:df:b8:2e:d0:ec:6c:41:f8:40:f4:6a:
7d:08:54:53:8b:db:62:9f:b9:8e:1a:2f:c4:ff:f1:
f7:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:4A:76:57:7C:C4:A5:92:1D:AC:EA:04:57:10:EE:E2:F6:4A:E2:A3
X509v3 Authority Key Identifier:
keyid:7E:13:41:4B:DC:23:12:40:0D:FA:9F:50:65:0D:51:EE:04:43:DF:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/44c365-6ced-45d9-865d-04fcecad70ec/1/fhNBS9wjEkAN-p9QZQ1R7gRD3xY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:41:7f:69:15:c1:cc:5a:f0:ea:dc:98:ca:e1:d4:d7:43:e3:
33:e1:88:c1:6a:03:22:ab:99:ff:3b:94:2b:9f:80:4c:f7:ef:
88:62:3c:d7:9f:d4:af:8a:0f:0c:83:97:03:4f:8f:bc:ec:15:
73:5d:c5:4c:47:2c:ef:98:50:33:e3:30:3b:00:d8:91:fb:c8:
d1:48:69:92:a4:20:0c:53:e9:27:0a:d0:9e:72:fc:e3:6e:df:
b9:5f:20:8c:4d:7d:f6:6d:b9:4e:60:65:01:4c:f8:0c:48:fc:
4b:28:80:71:05:3a:5d:d6:de:eb:3b:6d:03:89:b0:d8:0d:f7:
f6:70:58:63:5a:81:56:b1:56:db:8a:9f:b7:6d:4c:f8:b7:62:
f4:8a:03:1f:4d:ed:ed:24:83:8d:28:79:2f:eb:43:53:66:70:
48:73:f5:bc:5a:69:0b:f8:92:44:6e:51:d6:06:5d:3c:78:b6:
97:86:1e:f0:25:ea:47:41:30:1f:70:25:dd:ba:25:8b:15:71:
56:e4:5d:0c:4a:9f:e0:fc:8c:0b:d2:28:f1:6d:54:56:8f:aa:
25:8f:6e:19:c3:31:1f:fa:d7:20:e6:4c:f6:67:af:fa:c4:1c:
49:58:c2:c9:54:db:9e:33:4a:f9:20:40:67:89:40:2e:a4:d0:
29:91:e2:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 03:28:07 2025 by rpki-client