Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
File: sK0iZDwtl71x-LY0-40dT58B9Kc.mft (raw, json)
Hash identifier: kilrd+MMfjxjrOXi3+HPk03GrtJm8ey2CTAlrxqEcvs=
Subject key identifier: F0:5F:C7:0B:D9:ED:2D:B3:16:D5:D4:D3:E1:19:EC:7A:DF:F3:66:26
Authority key identifier: B0:AD:22:64:3C:2D:97:BD:71:F8:B6:34:FB:8D:1D:4F:9F:01:F4:A7
Certificate issuer: /CN=b0ad22643c2d97bd71f8b634fb8d1d4f9f01f4a7
Certificate serial: 019652DB6D35D358F610D7265114B859E693
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
Manifest number: 0F5B
Signing time: Sun 20 Apr 2025 11:00:34 +0000
Manifest this update: Sun 20 Apr 2025 11:00:34 +0000
Manifest next update: Mon 21 Apr 2025 11:00:34 +0000
Files and hashes: 1: 89qbXuP3JJGKzWaNZO3dqnt1pdw.roa (hash: obr33L2CB/OVnTXprqPZCOQ9LeK6vQA821ilRu8qFT0=)
2: sK0iZDwtl71x-LY0-40dT58B9Kc.crl (hash: OOjM2gOwiNvak3Fvm16G60E3yDeRCPCaM7s2KK2DJGY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 11:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:db:6d:35:d3:58:f6:10:d7:26:51:14:b8:59:e6:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0ad22643c2d97bd71f8b634fb8d1d4f9f01f4a7
Validity
Not Before: Apr 20 11:00:34 2025 GMT
Not After : Apr 21 11:00:34 2025 GMT
Subject: CN=f05fc70bd9ed2db316d5d4d3e119ec7adff36626
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:f8:bc:96:f0:4f:f9:00:c1:78:bf:d7:a7:66:
17:58:82:66:c9:7e:19:9e:65:ec:ad:b3:c8:f2:36:
4b:cb:ca:a8:7a:62:6d:d4:53:fd:ce:ff:20:5a:a3:
94:3e:19:05:34:bf:c1:ed:8c:30:5b:2f:c8:ec:5c:
56:c7:19:d4:4b:26:29:82:6a:93:19:6b:a8:1b:79:
4b:70:6e:20:8d:f0:40:d1:b6:88:ea:43:9f:cc:2a:
b2:2e:c1:41:d8:8e:00:20:8a:6a:1a:d7:84:a4:b3:
d8:1f:b7:0e:78:86:57:28:8f:78:5d:01:60:46:51:
70:72:88:f1:22:11:c1:f9:65:84:a7:d6:16:b3:8d:
48:7d:f1:55:48:ce:c5:1f:9c:ca:88:a6:6a:f2:05:
c1:30:a1:9c:f8:7a:f4:ad:57:8f:a3:1c:ab:46:04:
ef:b9:00:b3:c8:91:9a:26:ba:73:9d:12:a0:67:c4:
5f:52:ce:69:21:c8:e7:b3:b7:8b:2d:31:31:e1:b7:
96:34:6c:cf:68:ff:16:f7:ce:05:d3:86:d2:e9:5d:
73:72:8e:6b:bb:57:06:9e:d8:e7:9a:82:40:cb:2f:
c9:fa:81:56:f6:f8:7d:63:8f:f1:0d:17:13:3e:ae:
34:27:aa:5d:af:9e:b4:c6:e1:0e:c9:7a:6c:05:d9:
8a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:5F:C7:0B:D9:ED:2D:B3:16:D5:D4:D3:E1:19:EC:7A:DF:F3:66:26
X509v3 Authority Key Identifier:
keyid:B0:AD:22:64:3C:2D:97:BD:71:F8:B6:34:FB:8D:1D:4F:9F:01:F4:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:eb:6a:99:01:5e:ef:5c:73:5f:e4:c6:1d:9a:f3:67:06:e9:
67:3c:3a:01:d7:25:fe:ed:78:79:e6:f8:30:f4:c8:05:48:64:
da:0f:08:db:4d:ea:38:0f:47:cc:e1:9c:43:b0:fe:90:28:5e:
7f:c0:80:7e:f5:4c:61:39:ca:c0:20:1a:f9:23:4d:a6:0b:5e:
7b:b4:df:55:be:d0:71:ff:de:5d:90:e1:dd:e4:00:f2:99:e4:
1a:d6:ee:ac:57:21:e7:a5:56:f7:1d:3c:3b:a8:85:83:35:60:
fe:05:cc:6b:3a:32:ad:e9:09:8e:a5:5d:f1:19:32:bd:8f:e3:
09:51:64:3a:0a:48:dc:11:45:b0:64:07:a6:83:9b:1e:96:a9:
1a:c3:9c:da:c2:90:c0:e7:67:2e:4c:5b:ac:e0:e2:98:a8:9d:
85:54:0c:dc:85:7a:33:7a:41:b9:bd:12:30:0e:85:1c:01:77:
b6:23:ef:fa:67:87:5f:c2:49:d5:0d:a0:de:df:5d:7b:49:e0:
88:85:e5:43:13:7d:29:a4:09:16:b1:be:6f:a3:ec:2b:8d:f6:
ee:03:a8:ad:52:1a:ec:ee:5b:5a:bd:5b:fa:bd:3e:c6:42:2a:
b7:b1:60:d2:d7:06:a9:4f:77:34:e4:ac:07:41:a2:47:42:ea:
db:f8:bf:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 21:07:20 2025 by rpki-client