Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
File: Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft (raw, json)
Hash identifier: JmgmEp2s9F80jcWsbP0XzokNmYo0t/iy+S3y1s2RKAo=
Subject key identifier: B8:23:75:9B:4B:B1:CE:51:50:03:06:F6:AE:E3:B8:3B:39:42:C9:36
Authority key identifier: 4A:1D:20:BE:77:E1:22:32:32:3C:14:22:FB:51:98:FE:A0:08:60:34
Certificate issuer: /CN=4a1d20be77e12232323c1422fb5198fea0086034
Certificate serial: 01959073C529B0BA4E967D8ADD6FCC11A880
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
Manifest number: 1498
Signing time: Thu 13 Mar 2025 17:01:01 +0000
Manifest this update: Thu 13 Mar 2025 17:01:01 +0000
Manifest next update: Fri 14 Mar 2025 17:01:01 +0000
Files and hashes: 1: Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl (hash: xASY8C4zT1GFqW04KAnyWFZwQBMFBCQ7t8CquPSNr1g=)
2: mN2qB1BO4S5r9HWkXJU36eJQAJo.roa (hash: CEQM9W3lMs7LPoWAqhYjN1IkeHCfM/C5tJypbGgHYt4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 15:28:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:90:73:c5:29:b0:ba:4e:96:7d:8a:dd:6f:cc:11:a8:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a1d20be77e12232323c1422fb5198fea0086034
Validity
Not Before: Mar 13 17:01:01 2025 GMT
Not After : Mar 14 17:01:01 2025 GMT
Subject: CN=b823759b4bb1ce51500306f6aee3b83b3942c936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a5:af:e6:1e:a1:bd:d4:81:12:23:3b:ed:9f:
ee:ea:2e:a2:1d:4e:6f:ff:e7:08:ca:d2:ef:2a:e2:
6a:6a:05:27:3e:f1:2c:d0:02:f1:35:e1:cb:bf:47:
a1:c3:37:46:74:c7:b9:3e:64:67:25:8b:65:b6:29:
40:7a:48:55:03:f5:a1:f1:ba:60:d5:28:13:ec:a2:
85:5e:74:dc:bf:1d:d5:b2:8b:ff:3b:be:55:2c:49:
ef:ed:6b:6f:f0:f2:2a:ad:a6:d9:de:93:ce:4d:2f:
d5:2b:27:58:3d:d6:10:28:80:22:21:a9:e3:24:09:
e5:ec:5c:74:5c:d7:6d:31:db:5a:89:1c:82:38:64:
09:43:c5:a5:ca:14:c9:d6:95:be:c8:18:b4:a5:76:
02:f8:ed:9c:d2:cd:6a:08:ae:ff:2e:d7:35:00:12:
89:d9:36:82:99:80:f4:4a:ac:d2:ec:09:5f:86:6e:
5d:68:58:c9:52:c6:bf:3a:c6:01:21:21:44:58:0b:
28:3e:db:7e:02:0b:33:31:2c:ee:f4:b6:22:02:2e:
00:6a:dd:62:a3:0d:e0:09:66:99:a2:f1:7f:12:ee:
0b:42:21:9d:6d:8f:3e:cb:78:34:3d:7e:0f:9c:eb:
dc:2f:67:94:49:36:35:a0:61:6f:20:d9:e2:f6:f6:
ff:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:23:75:9B:4B:B1:CE:51:50:03:06:F6:AE:E3:B8:3B:39:42:C9:36
X509v3 Authority Key Identifier:
keyid:4A:1D:20:BE:77:E1:22:32:32:3C:14:22:FB:51:98:FE:A0:08:60:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:b4:22:d0:de:50:7e:70:22:8a:00:77:85:82:eb:28:21:74:
6c:8a:41:5f:7b:b2:6c:e4:45:b9:4f:dd:fa:69:e0:f6:37:54:
e7:25:19:0e:b0:fc:91:64:7f:cd:9a:8c:b3:f3:31:ca:53:1d:
23:b6:da:74:fa:70:39:70:c2:56:b1:bc:dc:df:84:db:9f:84:
92:67:86:ce:59:c1:29:29:fd:92:3a:76:bb:79:48:9c:df:fe:
ef:71:d2:0b:a0:31:4d:34:87:09:b8:32:a4:f1:7f:38:71:07:
49:c4:8a:e0:a9:21:ad:9a:b8:15:37:9a:d4:af:b2:44:e6:87:
e2:21:59:f9:bd:ab:ea:4e:bb:ec:0b:3b:7b:29:75:0a:41:0f:
f1:01:c0:e3:22:fb:64:e2:b7:bf:c2:d5:f5:4b:49:1a:fd:37:
00:03:a2:2a:24:a6:74:e3:5d:c9:88:a5:78:0d:1f:55:09:a1:
16:34:fb:c8:79:57:d8:98:a6:7a:93:66:34:8d:fd:4b:7d:4c:
22:6a:64:51:a0:48:8b:a0:c5:f6:a9:cf:96:e6:b1:76:3b:8c:
98:ae:58:d2:5a:d0:3f:7c:50:11:31:69:fc:0d:a8:fc:b8:cd:
e3:0a:ca:dd:df:d1:51:38:d6:5e:ce:0a:92:14:df:3f:c9:02:
1c:72:ac:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:36:37 2025 by rpki-client