Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
File: siDZG06dcPA0-hahaoh9QlV5Kt4.mft (raw, json)
Hash identifier: 7qzOuQWxvaLhPnN+Lkw41UTJ7Dfdc7QSdvUFnWSEvKE=
Subject key identifier: 96:29:03:1A:8B:B4:3C:7E:99:AF:FC:04:B1:CA:A5:6A:9F:1F:53:E9
Authority key identifier: B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
Certificate issuer: /CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Certificate serial: 01965A270118D8682D2B864A47D1C6FB4642
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
Manifest number: 1501
Signing time: Mon 21 Apr 2025 21:00:27 +0000
Manifest this update: Mon 21 Apr 2025 21:00:27 +0000
Manifest next update: Tue 22 Apr 2025 21:00:27 +0000
Files and hashes: 1: mCm-KBIMQ6gtgsW9oEUxZqdGcRM.roa (hash: ItOlCehgUekOH/ud/IMp3e9dVCyKMOt54wV1YDUzoCg=)
2: siDZG06dcPA0-hahaoh9QlV5Kt4.crl (hash: rKqNDWi1KfDvUrBzSajuLDTJkbGaCHPQ6/1nb+yPuzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5a:27:01:18:d8:68:2d:2b:86:4a:47:d1:c6:fb:46:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Validity
Not Before: Apr 21 21:00:27 2025 GMT
Not After : Apr 22 21:00:27 2025 GMT
Subject: CN=9629031a8bb43c7e99affc04b1caa56a9f1f53e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f0:ae:39:a1:34:46:ed:0e:13:9d:dd:de:ee:
f5:ed:78:20:00:b7:2c:de:0a:97:d2:e9:af:7c:d4:
09:72:91:e9:28:fe:32:f6:02:95:0a:ed:b1:8e:e5:
01:bc:81:85:a5:f3:1b:35:c9:fc:c7:d8:60:3a:79:
e6:33:3e:8b:d5:e2:fd:2e:0b:01:76:39:ee:b6:af:
02:98:2c:ca:b2:79:4f:95:87:e8:85:bb:9b:32:17:
03:6c:cb:40:d2:68:99:cf:f5:e7:7a:7a:3a:43:d3:
95:21:4c:be:90:30:9e:cc:be:0c:06:a3:77:c0:9c:
b5:30:d0:76:75:c8:53:11:9e:23:f6:68:30:7a:78:
8f:a6:f2:c1:ab:c0:35:b6:6b:63:b9:f7:9d:9e:d4:
7d:15:e8:6b:ee:99:aa:d2:31:46:2d:82:6e:a5:e3:
2a:da:95:63:4c:3b:02:6d:cc:08:76:da:7f:3a:19:
cb:5f:8a:63:a3:5b:a9:46:dd:82:d2:7d:2f:3d:a8:
2d:bf:59:cd:14:2c:b6:31:6c:dc:99:d7:05:35:40:
99:d6:cf:de:58:83:58:b0:1a:c2:3c:16:cd:29:e1:
84:ab:d1:82:08:db:7c:9c:e2:c8:5d:a9:ec:f0:9e:
bc:c9:8d:c1:80:a7:69:b4:8a:43:38:5e:64:99:b1:
d5:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:29:03:1A:8B:B4:3C:7E:99:AF:FC:04:B1:CA:A5:6A:9F:1F:53:E9
X509v3 Authority Key Identifier:
keyid:B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:2f:73:ca:f6:e5:ce:e8:56:7e:63:c9:95:ec:6e:fc:8b:af:
44:1f:1d:8b:e9:e8:ea:9e:38:2a:8c:32:3e:ff:fe:1c:78:c9:
ab:99:38:59:ef:80:ce:71:3c:30:e1:b9:83:58:aa:73:bb:8c:
3f:4c:ab:18:29:01:de:c0:a2:0e:7a:4c:96:bd:69:6a:30:4c:
ef:b7:08:a9:db:d4:f7:36:fd:87:9a:8c:0a:fc:65:31:24:5a:
54:9e:a6:58:1c:0f:18:16:b4:16:62:31:07:92:a8:94:6a:58:
0b:8d:ac:29:a6:f1:02:fa:c8:97:9e:73:c7:bf:4c:2c:e3:fd:
4f:b6:8f:95:9f:c9:67:6d:b4:39:31:c9:f2:c3:c1:da:98:19:
76:91:a9:c6:2a:26:19:8d:bd:0d:4c:68:df:38:9d:69:ee:3e:
57:09:1e:5e:fe:00:4a:c4:b7:b5:fc:bb:d3:7d:f9:fe:4d:33:
0e:c2:f5:04:b2:09:4a:08:ce:07:1b:3e:03:b7:0e:48:fc:b0:
e7:7b:da:06:6a:ab:b6:cf:d8:00:9c:ad:10:46:59:88:bf:c4:
7d:c2:58:79:8a:e2:3e:2a:3b:cf:cc:50:7d:5c:08:a8:26:0b:
41:f8:20:6c:20:95:c3:6b:6c:c6:c8:8c:9b:e2:e4:55:2e:6a:
6d:af:55:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 02:55:36 2025 by rpki-client