Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft
File: Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft (raw, json)
Hash identifier: bCDRKKjoq1QvGlSmToJX8U1PWMCQHcTzglLE4mNNdUU=
Subject key identifier: CF:AD:80:23:AF:AB:62:65:CB:AD:E9:EF:7E:94:02:47:CA:F9:8F:14
Authority key identifier: 4A:3C:36:0C:36:4B:B6:6D:C6:35:17:19:35:68:F5:BA:85:17:AC:E8
Certificate issuer: /CN=4a3c360c364bb66dc63517193568f5ba8517ace8
Certificate serial: 0195907409D0A9600C68E50EDC78B1511B2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft
Manifest number: 12E5
Signing time: Thu 13 Mar 2025 17:01:18 +0000
Manifest this update: Thu 13 Mar 2025 17:01:18 +0000
Manifest next update: Fri 14 Mar 2025 17:01:18 +0000
Files and hashes: 1: 4HxC1YnWdGWm4g8pwWn_Hlow4Qo.roa (hash: qpMp8mE7oIuGxE7UiKhcFCXTbJmQfeSevFyEhmL5FpM=)
2: Sjw2DDZLtm3GNRcZNWj1uoUXrOg.crl (hash: kT3uuTX2vdhClMPkRzEWjhg4cQBcttED8gCcvI+WPbQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:74:09:d0:a9:60:0c:68:e5:0e:dc:78:b1:51:1b:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a3c360c364bb66dc63517193568f5ba8517ace8
Validity
Not Before: Mar 13 17:01:18 2025 GMT
Not After : Mar 14 17:01:18 2025 GMT
Subject: CN=cfad8023afab6265cbade9ef7e940247caf98f14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f9:3f:ef:af:8c:4a:cc:8b:43:91:b3:15:4e:
fd:b2:b7:c0:f4:b0:ec:f4:95:d7:d8:3b:3a:55:77:
5e:cf:43:ff:22:c2:b8:db:3a:42:66:b5:5a:46:03:
8b:ae:ca:91:94:34:57:ad:79:5e:d9:47:66:f1:a6:
2c:31:d4:03:a0:9b:dd:93:5a:3f:0f:a9:04:ea:f1:
67:78:74:0b:75:3b:4f:57:92:d3:a6:68:30:c6:0d:
0b:2f:f4:a9:65:ee:a6:ea:b3:2a:c6:bd:90:1f:38:
d9:d3:00:7d:d5:90:df:a7:d1:ba:aa:a4:4e:4d:f3:
60:bf:64:ee:66:45:df:51:f9:e9:f2:e0:e8:51:e7:
5c:a4:db:37:27:58:f3:0c:06:5a:c9:15:54:a7:e2:
78:95:a8:ae:ad:27:79:49:02:96:13:7d:b3:de:ab:
63:90:b9:7e:01:37:2e:54:00:d0:8d:78:16:d6:56:
59:6a:cd:41:5b:31:a6:52:91:b9:2a:ee:c5:93:03:
c6:34:98:14:73:2e:1f:52:01:81:26:1c:a9:f7:9f:
71:98:ce:ee:a8:2e:48:28:ba:69:15:b5:dd:e1:c6:
b8:73:fb:fa:84:02:ab:97:c1:fb:77:28:5a:52:6f:
b1:27:b7:02:89:01:33:21:0f:09:fd:66:65:9b:ea:
33:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:AD:80:23:AF:AB:62:65:CB:AD:E9:EF:7E:94:02:47:CA:F9:8F:14
X509v3 Authority Key Identifier:
keyid:4A:3C:36:0C:36:4B:B6:6D:C6:35:17:19:35:68:F5:BA:85:17:AC:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:7f:75:2d:d9:03:23:82:57:7f:95:44:59:4c:22:58:f0:6f:
d0:8e:eb:da:58:99:1f:ce:9f:fd:ac:4b:75:0c:f1:ec:2e:fe:
aa:2f:46:9f:9d:62:77:16:b2:12:ab:74:06:42:18:39:b6:83:
dc:da:ed:46:dd:3d:dc:52:da:40:59:be:58:38:ce:e0:43:91:
fb:44:cc:c1:ef:90:ee:d9:8a:35:d2:e6:03:09:ad:36:15:2a:
8f:ff:5d:67:59:cc:47:5b:4e:79:2b:71:4c:a5:92:06:38:ac:
dc:9f:25:01:a1:5d:b5:54:74:f4:c8:18:58:77:68:a6:32:c4:
21:57:54:92:20:e3:1d:10:86:1e:5c:b4:aa:84:ac:16:c3:43:
b7:45:1d:93:64:9e:91:17:f4:a2:7b:25:f1:9a:d8:5d:1b:39:
1f:80:db:18:48:f8:1d:8d:19:a2:93:c3:02:15:c2:bc:f6:97:
be:92:b2:e6:44:95:10:55:f0:7a:ac:07:49:ea:13:5d:de:a4:
9f:2b:08:21:2c:10:87:4c:03:ee:9c:bc:c4:97:c7:45:9c:4a:
ce:a7:6a:54:61:80:25:ff:a2:16:fd:56:58:cd:42:21:a2:d5:
0d:23:3f:60:ef:57:b8:09:06:9f:ea:ba:58:b6:75:98:9b:bc:
00:70:1a:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:44:47 2025 by rpki-client