Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft
File: 1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft (raw, json)
Hash identifier: YbdUbNo5HLAmn2e973aBsNGU4V+cxT7zl0VBdseXt0c=
Subject key identifier: 2D:F4:8A:AC:BE:68:E1:D6:2F:CF:9E:03:AD:E1:E1:41:F7:FE:84:9C
Authority key identifier: FB:75:13:02:AF:7B:5C:D6:BE:F3:71:7B:68:36:7E:02:B6:17:D2:DC
Certificate issuer: /CN=fb751302af7b5cd6bef3717b68367e02b617d2dc
Certificate serial: 0196538064D5CFCEBF26BC64DE52A48F6DD0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-3UTAq97XNa-83F7aDZ-ArYX0tw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft
Manifest number: 0F49
Signing time: Sun 20 Apr 2025 14:00:45 +0000
Manifest this update: Sun 20 Apr 2025 14:00:45 +0000
Manifest next update: Mon 21 Apr 2025 14:00:45 +0000
Files and hashes: 1: 1-3UTAq97XNa-83F7aDZ-ArYX0tw.crl (hash: x8/v+UgzMhvGEpa29RCM8WJb3nzI/EthwL3wbSaCqTo=)
2: Qqhw1hFjAH2cjMyIzDFuLuhBB38.roa (hash: N8UT7eSxYsrDW5XIIE4cv48SYlBhyKYdxt2C78AnGxs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-3UTAq97XNa-83F7aDZ-ArYX0tw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:80:64:d5:cf:ce:bf:26:bc:64:de:52:a4:8f:6d:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb751302af7b5cd6bef3717b68367e02b617d2dc
Validity
Not Before: Apr 20 14:00:45 2025 GMT
Not After : Apr 21 14:00:45 2025 GMT
Subject: CN=2df48aacbe68e1d62fcf9e03ade1e141f7fe849c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:89:2e:ec:83:14:c1:d1:0a:a3:db:12:e7:95:
64:4e:64:c6:95:cb:1d:ad:4f:d4:5b:b4:37:39:3c:
53:21:77:d1:c5:1d:72:96:e6:c5:af:9c:ed:f3:92:
cd:7f:cc:98:59:18:a5:08:64:f2:47:d2:f7:be:2c:
88:d3:f5:bc:7c:e6:2d:06:39:9d:a7:ae:a1:47:19:
57:9f:a2:c8:7f:3a:f4:6b:b9:71:2d:4e:24:07:4f:
19:6b:8d:da:b4:d8:b2:55:2d:67:99:46:ec:6f:1e:
5a:cc:59:e3:67:4c:39:11:f4:d1:38:8e:b2:f3:46:
ba:b6:81:ae:e3:12:b5:8a:95:99:1f:64:bf:ed:b5:
d8:92:38:b1:eb:8b:61:bf:ca:e9:c3:df:98:f6:c9:
fc:6b:8f:d6:df:d1:bb:3b:77:50:b9:24:82:74:54:
25:f9:ca:a0:ec:c9:90:a7:69:07:4a:b8:46:bb:3e:
29:d4:06:1a:fb:2e:e2:51:02:07:d1:f0:cb:1a:5f:
b7:10:50:45:7a:24:79:3a:7d:10:0b:c6:37:91:1a:
e5:99:98:64:ff:c9:a3:79:0c:0b:9d:60:f9:a3:31:
02:05:16:d9:11:db:15:f5:fc:30:fa:47:eb:d6:f1:
40:60:2d:9b:fe:3e:68:a4:1a:27:ec:6e:0f:bd:1d:
a1:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:F4:8A:AC:BE:68:E1:D6:2F:CF:9E:03:AD:E1:E1:41:F7:FE:84:9C
X509v3 Authority Key Identifier:
keyid:FB:75:13:02:AF:7B:5C:D6:BE:F3:71:7B:68:36:7E:02:B6:17:D2:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-3UTAq97XNa-83F7aDZ-ArYX0tw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/5d4004-aac0-4ead-a580-c664b4e86ab5/1/1-3UTAq97XNa-83F7aDZ-ArYX0tw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:fc:17:ca:ac:85:6a:a4:59:bd:c4:6d:80:62:24:7d:79:82:
68:f8:b7:94:5a:38:62:47:19:43:20:53:6c:04:7c:09:04:ee:
0c:fc:b9:f8:97:4f:72:f5:cb:0e:1e:46:2b:a7:9e:c7:35:07:
be:c7:80:91:93:d0:d4:c0:fd:29:57:46:53:af:e6:4e:29:d2:
4d:29:63:fd:e1:f8:6b:40:5e:17:8a:d0:d4:70:b9:92:60:ff:
d0:50:0e:16:49:25:29:19:6a:55:be:de:21:64:72:b6:d0:87:
7e:82:85:e9:b0:b9:97:20:23:d7:cd:26:eb:e9:ff:09:05:c9:
1f:65:69:23:27:c3:c9:ce:21:3c:99:e8:bf:ec:a5:44:0a:29:
bd:0c:d6:5f:68:dd:b5:3e:5a:44:a1:01:08:dc:96:6e:9e:7c:
6f:4f:61:61:19:97:11:73:69:cb:6d:8b:8d:13:18:0f:d8:3c:
4d:97:91:07:71:76:3f:45:f2:09:b1:73:28:a6:ca:e5:1e:69:
74:6c:9b:3a:0e:38:3f:bd:29:01:0e:ab:ab:b9:aa:16:97:fc:
a5:2e:71:7d:47:85:1b:08:7b:ad:38:bf:e7:6d:fe:f6:d2:8d:
a1:d7:37:4a:74:fd:e7:78:f9:3a:f8:7c:55:2e:fa:00:08:57:
51:8d:f1:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 17:34:18 2025 by rpki-client