Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft
File: jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft (raw, json)
Hash identifier: UnyOgWE8V89Zt35uYg9rq8R7LD3C+da5ro6yElpczJ8=
Subject key identifier: 32:7A:A5:18:68:B1:49:D2:35:BF:98:DB:1E:67:AA:D1:80:54:89:04
Authority key identifier: 8D:50:B3:A9:A0:50:39:05:59:6C:77:F5:80:2B:EF:9F:C7:3D:64:7D
Certificate issuer: /CN=8d50b3a9a0503905596c77f5802bef9fc73d647d
Certificate serial: 01964DB4C5328EFDD86C752985814DE275BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft
Manifest number: 0174
Signing time: Sat 19 Apr 2025 11:00:14 +0000
Manifest this update: Sat 19 Apr 2025 11:00:14 +0000
Manifest next update: Sun 20 Apr 2025 11:00:14 +0000
Files and hashes: 1: a8IXKpHV3NWa7LICJ758JvcRIvY.roa (hash: X2zHQ2bSxMYP23moGooOgAvqdrG84QharuHsT6bVARw=)
2: jVCzqaBQOQVZbHf1gCvvn8c9ZH0.crl (hash: GsRyk9NIMmTOCc0jNUVe8qcGsvLEU7R1KMAo21n31i8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft
rsync://rpki.ripe.net/repository/DEFAULT/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:b4:c5:32:8e:fd:d8:6c:75:29:85:81:4d:e2:75:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d50b3a9a0503905596c77f5802bef9fc73d647d
Validity
Not Before: Apr 19 11:00:14 2025 GMT
Not After : Apr 20 11:00:14 2025 GMT
Subject: CN=327aa51868b149d235bf98db1e67aad180548904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:98:ac:2b:6d:c9:62:fd:b6:9e:19:53:ad:1e:
2b:95:f6:9e:e4:10:e6:d9:88:c0:e4:9e:ba:3e:d7:
28:aa:f5:6b:96:38:ae:10:1d:db:67:fc:e4:a9:a0:
68:a0:2f:0e:b3:ed:0d:49:44:c8:51:f9:e1:5f:7a:
bf:43:16:12:50:61:ca:8a:f2:e8:60:24:95:98:4f:
3a:5b:6c:9f:12:bb:96:3d:3d:57:7e:ba:27:b9:31:
5f:6e:19:64:bd:f2:a0:c2:80:b0:c6:c0:c6:d8:70:
08:6a:92:29:46:11:c7:c9:dc:f9:90:8e:7a:2d:c7:
c3:a6:d8:74:77:6d:72:7c:fc:12:a7:74:b5:90:7b:
18:90:23:57:06:1b:9f:5e:88:24:f7:c1:6e:dc:09:
01:06:f1:47:d5:fe:4f:24:a6:c8:9d:60:49:85:7c:
ae:62:ec:56:e0:f0:55:87:2b:1f:b1:ab:8f:68:fc:
a2:65:e8:03:74:99:44:2d:7b:cb:3f:0c:a4:40:2a:
2f:66:c3:f6:25:1f:b4:b1:54:41:91:e4:44:df:1e:
0b:ef:83:6b:29:b9:59:95:11:a6:3f:26:44:2a:36:
a2:b9:a6:d6:cf:b9:94:d8:8f:b3:96:78:e1:63:e4:
91:7b:1f:73:62:10:ac:f6:95:da:72:7a:e8:3d:9e:
3e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:7A:A5:18:68:B1:49:D2:35:BF:98:DB:1E:67:AA:D1:80:54:89:04
X509v3 Authority Key Identifier:
keyid:8D:50:B3:A9:A0:50:39:05:59:6C:77:F5:80:2B:EF:9F:C7:3D:64:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:05:c9:01:8b:6f:3f:a2:42:16:e4:a6:a6:bf:ca:57:7e:b9:
18:59:5c:4a:58:5f:48:07:a8:d9:b0:fe:be:6e:6d:d6:a6:e2:
31:20:ed:4e:6c:fd:8b:98:1c:88:2b:f6:77:bd:6e:49:c6:11:
6f:ca:08:9d:b6:34:12:dd:0e:f7:53:62:a6:17:9c:9c:18:25:
2c:aa:e0:40:cb:81:ef:ab:7c:17:7b:09:b2:13:b3:b7:06:48:
93:ac:ab:7c:a2:51:64:c4:4c:3e:10:65:e5:d5:b2:1c:58:b1:
87:8f:fc:3f:a7:d0:e9:9c:53:85:ba:f2:a9:5d:3b:0a:07:eb:
4f:4e:07:88:af:25:47:76:37:52:64:0b:c1:df:1c:6f:11:6c:
dc:ee:20:39:50:4d:10:0e:3b:1f:36:34:ef:23:d0:0b:97:e3:
5a:f3:e5:f9:71:81:20:c3:9d:65:42:bb:9c:ec:00:3e:d6:c5:
e3:da:2a:08:ae:13:3e:ef:c9:69:13:ff:8d:a1:7d:60:4c:f3:
33:cf:60:1d:4c:80:21:5d:f0:f9:93:3b:2e:55:72:f2:4b:9f:
20:12:5f:12:78:a9:c7:c7:25:3d:b7:c6:4a:18:05:5f:43:ee:
5d:fb:a5:95:07:4b:b9:49:60:97:6f:d8:1f:74:6c:c8:02:9f:
ad:4c:e6:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:19:33 2025 by rpki-client