Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.mft
File: Ac8qcbLHv1QcbMBBUc0CB402mSY.mft (raw, json)
Hash identifier: jRPGPCKzPYWpaIaPqNGMH4nZ8SLGcGn1BaiYcSyC1Ls=
Subject key identifier: 70:9D:EC:FC:2F:DF:2F:97:B2:8B:E7:D4:48:83:92:97:B2:5A:7A:C2
Authority key identifier: 01:CF:2A:71:B2:C7:BF:54:1C:6C:C0:41:51:CD:02:07:8D:36:99:26
Certificate issuer: /CN=01cf2a71b2c7bf541c6cc04151cd02078d369926
Certificate serial: 01964E90A3534B98BD82BB070F548283458D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ac8qcbLHv1QcbMBBUc0CB402mSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.mft
Manifest number: 0201
Signing time: Sat 19 Apr 2025 15:00:23 +0000
Manifest this update: Sat 19 Apr 2025 15:00:23 +0000
Manifest next update: Sun 20 Apr 2025 15:00:23 +0000
Files and hashes: 1: Ac8qcbLHv1QcbMBBUc0CB402mSY.crl (hash: BcvPihSITE35xp9wt6YuYzNvF3Gb/VaZvv1U5hqnlgM=)
2: rygZTFCBNWEkh81f14PWqNNI1kI.roa (hash: Nw/ZIl2uHVeZMov8V5+Nv9xGTV5/WVlGxw5x2u+Et/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ac8qcbLHv1QcbMBBUc0CB402mSY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 15:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:90:a3:53:4b:98:bd:82:bb:07:0f:54:82:83:45:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01cf2a71b2c7bf541c6cc04151cd02078d369926
Validity
Not Before: Apr 19 15:00:23 2025 GMT
Not After : Apr 20 15:00:23 2025 GMT
Subject: CN=709decfc2fdf2f97b28be7d448839297b25a7ac2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b2:34:52:97:e8:e8:04:d4:1c:de:d3:f8:64:
dc:cd:12:ac:f5:85:6d:9d:da:02:c7:28:ad:e8:a8:
05:e6:2b:79:7b:b6:58:3e:40:60:54:67:2b:7c:57:
77:a3:e9:a2:04:eb:8f:41:07:0a:ed:c2:8e:93:41:
e9:16:62:8a:39:d9:76:f6:c0:3e:ff:df:fa:81:ec:
72:9f:a2:11:55:1e:60:59:91:a6:74:75:0b:be:c5:
c6:8a:ed:d4:b6:f6:9c:c4:a6:c7:5f:42:35:59:3c:
dc:3c:12:80:5d:58:fe:8a:f7:12:a8:57:b4:38:23:
dd:72:5b:ff:66:8f:85:f0:df:ee:db:d2:9c:a9:fd:
8f:f3:87:38:80:f6:fe:9a:ff:ec:d9:e8:f4:af:8d:
13:b7:5a:be:a1:38:e4:c9:ab:11:4e:61:6e:c8:90:
f0:8e:34:cb:dd:08:5a:cf:4c:0f:33:e0:3d:d4:6c:
d0:9f:c3:47:fa:fd:cb:d7:0e:cd:95:46:00:8f:41:
10:86:0a:86:a7:fc:b0:af:10:0f:0d:f2:f7:5f:3c:
8f:90:4f:c7:b0:e7:9d:9a:4d:9c:ec:99:00:f1:33:
e7:cd:09:e9:1b:6d:9e:66:35:36:87:0f:7a:4c:93:
01:bb:44:1e:61:6b:0d:49:cf:cf:21:ec:fa:aa:d2:
17:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:9D:EC:FC:2F:DF:2F:97:B2:8B:E7:D4:48:83:92:97:B2:5A:7A:C2
X509v3 Authority Key Identifier:
keyid:01:CF:2A:71:B2:C7:BF:54:1C:6C:C0:41:51:CD:02:07:8D:36:99:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ac8qcbLHv1QcbMBBUc0CB402mSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/c24ee1-2cb2-4907-8048-b0f4fbe26b61/1/Ac8qcbLHv1QcbMBBUc0CB402mSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:ac:37:ac:d2:cd:43:1e:6c:07:1e:e6:21:e6:d6:f8:91:62:
9f:bc:b4:0f:35:7b:45:59:ef:4f:5e:db:9d:f0:83:e6:b3:9c:
cf:46:e3:59:1d:63:16:ba:ca:a5:03:de:49:50:ba:08:7a:cf:
56:2f:39:dc:2d:da:20:e4:15:0b:18:2c:d0:07:ec:80:6c:63:
88:4f:de:c6:c7:ce:8c:f7:30:40:2f:01:5c:ab:9d:7b:23:98:
62:69:0c:e7:bf:85:63:32:af:50:15:f0:dc:d6:6e:dd:32:81:
63:4f:f9:83:1e:a0:a4:ee:53:dc:18:46:de:22:61:de:02:08:
2b:34:8f:d0:68:c9:16:ca:14:4e:fa:a9:93:f1:4b:1d:6d:fc:
66:f8:30:4c:16:4a:a2:4b:b4:5f:35:81:d4:31:20:39:ca:36:
c8:d7:d7:10:70:48:ee:b2:83:29:29:14:b9:aa:3f:f9:01:2c:
0f:40:05:2b:74:f4:d3:61:6c:01:dc:1c:cf:42:9d:e6:68:72:
41:fb:d0:c0:0d:5c:fb:9c:6e:27:7f:c2:d8:0c:9b:85:6d:1b:
e2:02:62:e8:79:5b:74:e3:f4:af:71:e9:89:a6:da:2d:ea:ea:
85:9f:1d:dc:33:a1:dc:77:96:98:17:3f:0e:24:26:34:22:05:
6f:8d:1f:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 00:13:48 2025 by rpki-client