Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
File: raXVKzyodFRXW2W3IO74GiYqXzo.mft (raw, json)
Hash identifier: DC+McD72fq211brqQn5vdLtdWn68c8sQyeLdeCWddUw=
Subject key identifier: 39:67:B2:7C:F1:D3:1E:67:83:2A:07:BC:C1:A1:2A:CD:0B:A1:94:B4
Authority key identifier: AD:A5:D5:2B:3C:A8:74:54:57:5B:65:B7:20:EE:F8:1A:26:2A:5F:3A
Certificate issuer: /CN=ada5d52b3ca87454575b65b720eef81a262a5f3a
Certificate serial: 01964067606715E491740835BFDC6E214639
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raXVKzyodFRXW2W3IO74GiYqXzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
Manifest number: 0E32
Signing time: Wed 16 Apr 2025 21:00:38 +0000
Manifest this update: Wed 16 Apr 2025 21:00:38 +0000
Manifest next update: Thu 17 Apr 2025 21:00:38 +0000
Files and hashes: 1: YkyLNJe8eg5_ZWWXRqgb1FEedCU.roa (hash: yKbeF3cM/odTGzY3J6HPYew0I5seEJaLqL9iFLq9XbY=)
2: raXVKzyodFRXW2W3IO74GiYqXzo.crl (hash: wZ0yH1GHwN1cJwKkB5hFLctyPxm2qKmhwFb/+HkxB2A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/raXVKzyodFRXW2W3IO74GiYqXzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 21:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:40:67:60:67:15:e4:91:74:08:35:bf:dc:6e:21:46:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada5d52b3ca87454575b65b720eef81a262a5f3a
Validity
Not Before: Apr 16 21:00:38 2025 GMT
Not After : Apr 17 21:00:38 2025 GMT
Subject: CN=3967b27cf1d31e67832a07bcc1a12acd0ba194b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:03:53:0b:b6:94:7f:43:a9:39:b3:29:7a:0d:
e4:c3:ff:d0:30:12:f4:be:f9:93:f5:ff:70:32:a7:
15:d7:31:00:d6:c7:1c:d0:fc:e8:a7:b2:ac:8b:70:
a9:64:2a:7c:b0:2f:6f:3c:3d:26:9c:f5:0e:9a:0c:
b9:60:c6:d8:b9:65:c0:ab:74:94:18:15:95:a2:09:
04:18:d0:f8:18:9c:94:1f:53:42:ec:0a:6d:b7:57:
35:44:aa:70:b0:35:6d:dc:c1:52:7f:f5:6c:de:27:
ed:f3:61:8a:b3:f5:69:b4:1f:fc:89:99:19:e4:41:
02:cd:36:85:29:33:62:13:ca:91:22:92:f2:cf:ec:
d5:14:85:d6:97:35:b8:a3:a4:cc:84:bd:ab:ba:be:
7b:bc:35:e6:42:ba:1e:6d:66:c4:5a:7c:57:f9:7c:
14:5e:8a:26:50:5e:7b:39:1e:7e:9e:68:1a:e4:12:
00:b5:9f:1e:4e:c0:8e:51:9e:d9:93:62:ea:de:b7:
ca:10:c4:68:ce:cc:3c:29:9b:e7:00:1e:0c:a2:d2:
04:68:b4:62:60:0e:2d:83:f7:d4:c6:04:67:95:28:
71:77:4c:95:21:6c:fc:89:51:bf:5f:4d:8b:9e:2f:
6f:22:16:a2:f3:b4:f8:02:bd:b2:87:c8:85:32:51:
06:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:67:B2:7C:F1:D3:1E:67:83:2A:07:BC:C1:A1:2A:CD:0B:A1:94:B4
X509v3 Authority Key Identifier:
keyid:AD:A5:D5:2B:3C:A8:74:54:57:5B:65:B7:20:EE:F8:1A:26:2A:5F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raXVKzyodFRXW2W3IO74GiYqXzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:11:ef:ad:b6:a3:50:ec:30:a0:45:d9:15:08:90:83:27:b5:
67:fd:65:f5:74:44:58:ea:82:c5:0f:bd:ba:1e:c6:ba:99:13:
bd:3a:7b:8b:68:0a:07:11:cc:af:3c:47:39:be:70:1b:90:4e:
b6:cc:58:d1:b3:29:74:7f:49:f4:5b:2e:64:53:1d:41:be:0e:
ab:a0:44:d7:d9:c2:0b:3b:a4:3d:fa:8c:dd:44:7c:e9:42:e7:
85:95:2e:c5:30:16:b8:59:7c:96:13:13:32:d4:4c:2e:a7:f1:
8f:d7:b9:f3:b4:34:67:3a:7a:08:64:67:9d:57:0b:90:7d:bc:
7d:f5:ed:fd:1b:7f:d9:be:d4:93:4c:23:d4:da:b2:03:4b:1b:
a6:75:37:4f:3d:63:e9:a6:3c:72:09:ff:f7:9a:16:a8:37:be:
cd:5f:7f:ea:b9:eb:06:94:4c:cc:73:90:f1:41:8e:04:73:95:
c2:03:cc:ba:e1:e3:f6:4f:51:9b:80:be:9f:2f:50:71:80:be:
8f:07:d8:b1:a8:11:d9:2f:2b:e6:b8:b2:fa:7c:b5:ef:c6:12:
7a:d0:6a:c3:fd:63:1e:90:95:41:78:5c:83:1d:a0:fe:bf:df:
16:a7:d7:f5:8d:e1:71:b4:d6:b7:23:26:24:2a:8d:f4:6b:fc:
05:77:22:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 03:23:46 2025 by rpki-client