Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.mft
File: sKEzNsOO66EMusnCjK8e_PRKyGM.mft (raw, json)
Hash identifier: 3gGXAYxoeMp53yF1GYU6neTOhbVlo54edHWV+tEcsJY=
Subject key identifier: E5:E3:9A:F0:E8:4B:AB:46:97:9E:D4:5C:71:2E:EA:DB:9B:7D:02:2A
Authority key identifier: B0:A1:33:36:C3:8E:EB:A1:0C:BA:C9:C2:8C:AF:1E:FC:F4:4A:C8:63
Certificate issuer: /CN=b0a13336c38eeba10cbac9c28caf1efcf44ac863
Certificate serial: 01964EC81A0CFC460B2AFDB67B20EC6AFCC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sKEzNsOO66EMusnCjK8e_PRKyGM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.mft
Manifest number: 07C4
Signing time: Sat 19 Apr 2025 16:00:58 +0000
Manifest this update: Sat 19 Apr 2025 16:00:58 +0000
Manifest next update: Sun 20 Apr 2025 16:00:58 +0000
Files and hashes: 1: sKEzNsOO66EMusnCjK8e_PRKyGM.crl (hash: eNzz615mZns/wRztstjUPoYE/JONU3FSfCjAyHkyz3s=)
2: y3LlHCcHKFo-BQ_p86jxyc013sQ.roa (hash: 70W6ragDKntXJcQVl89iuaUr+4h8ye/EbsXthKhbWqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.mft
rsync://rpki.ripe.net/repository/DEFAULT/sKEzNsOO66EMusnCjK8e_PRKyGM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:c8:1a:0c:fc:46:0b:2a:fd:b6:7b:20:ec:6a:fc:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0a13336c38eeba10cbac9c28caf1efcf44ac863
Validity
Not Before: Apr 19 16:00:58 2025 GMT
Not After : Apr 20 16:00:58 2025 GMT
Subject: CN=e5e39af0e84bab46979ed45c712eeadb9b7d022a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a8:35:70:0a:55:14:d9:41:a8:02:ff:5c:66:
3c:32:e1:95:28:36:c9:cf:14:dd:85:b1:ac:29:a2:
05:bf:1a:c2:40:d1:b5:05:ae:f1:15:e3:12:ff:04:
54:5d:40:f8:31:8a:7b:4f:59:75:b0:13:3e:05:a4:
f0:6d:4e:07:84:68:08:71:8e:fb:15:f6:0a:82:7c:
6a:97:d6:96:f7:e6:6e:23:e5:7e:be:67:f5:ae:d7:
84:49:b3:e3:c1:3e:e1:52:1b:e8:ae:7c:b9:52:bb:
63:3d:b5:28:44:bc:bc:7f:05:40:02:be:b2:a6:9d:
d4:3d:7f:e9:03:17:06:19:c7:27:01:47:00:2e:02:
ae:06:61:3b:17:b9:3c:93:7a:f3:8c:59:99:36:ab:
39:0f:b8:90:b3:7f:df:ea:5b:82:22:0e:b0:ce:8f:
a1:10:93:79:da:6d:ca:9d:1e:25:63:8b:63:b6:01:
ff:29:ee:a9:6a:f8:87:f6:59:93:dd:aa:25:91:c2:
69:91:9f:9f:e5:c8:e8:c6:1c:54:8a:3d:d0:65:26:
42:68:12:8d:07:1b:c1:4d:d0:c6:47:2a:21:00:53:
84:ef:ba:51:72:13:a0:56:b9:3b:91:45:39:6f:ca:
6d:c4:04:4f:0e:f7:a0:2f:ea:d2:8a:02:5a:93:ea:
65:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:E3:9A:F0:E8:4B:AB:46:97:9E:D4:5C:71:2E:EA:DB:9B:7D:02:2A
X509v3 Authority Key Identifier:
keyid:B0:A1:33:36:C3:8E:EB:A1:0C:BA:C9:C2:8C:AF:1E:FC:F4:4A:C8:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sKEzNsOO66EMusnCjK8e_PRKyGM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/238486-3e8d-4bc3-a19d-0a768b24125a/1/sKEzNsOO66EMusnCjK8e_PRKyGM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:37:ba:c6:36:45:87:13:26:ea:de:4c:b1:b0:e2:39:62:ed:
16:0e:f6:27:95:d6:8e:d8:48:4f:a7:8b:9e:96:f5:4e:12:d3:
c0:12:c1:69:b2:51:eb:c6:6d:02:a3:17:10:a5:fc:f6:8e:af:
41:02:95:d4:40:f7:b7:00:35:f6:1b:7d:a9:65:21:31:7c:97:
82:db:32:81:ff:64:a4:19:3a:d8:99:93:12:5f:6e:64:5b:d8:
fa:bc:2d:3c:2c:10:df:5c:69:15:63:c6:92:25:da:53:f3:31:
93:81:01:e5:88:2e:f7:03:a4:fd:06:ab:3a:f9:84:83:d5:30:
65:18:3a:66:b6:3d:7d:2e:35:c1:f8:1d:c8:e1:61:b5:1b:09:
ad:57:69:12:0a:ea:05:4a:8c:13:57:02:af:6c:b2:d2:ef:0f:
9b:06:85:5d:46:3a:9a:c3:63:ff:bd:a3:83:a8:fb:9b:97:7c:
b3:31:3b:03:f5:97:60:dd:44:26:ec:b0:57:f8:cc:62:27:16:
14:45:9e:21:6e:c3:dd:b0:f4:65:ff:78:99:3d:8a:ce:0d:fc:
77:39:3e:16:46:29:25:0c:41:fa:58:7f:aa:ff:85:a2:81:04:
ca:86:79:15:4b:c6:53:92:fa:6d:40:a4:75:94:b9:d7:f5:1b:
88:c5:89:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:09:23 2025 by rpki-client