Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
File: cdm6oCIZQu3-SzqaVwgpXARBboA.mft (raw, json)
Hash identifier: yIZWU1qjGdzbzEf/uSNB4a91cDLgqazIhZTpbw97G6A=
Subject key identifier: E8:49:D7:65:28:8C:6E:DF:D7:08:32:8E:3B:9E:E8:4F:D6:A0:51:37
Authority key identifier: 71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80
Certificate issuer: /CN=71d9baa0221942edfe4b3a9a5708295c04416e80
Certificate serial: 019649A125405BCD267E9E6BD9344E29A37B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
Manifest number: 14F8
Signing time: Fri 18 Apr 2025 16:00:19 +0000
Manifest this update: Fri 18 Apr 2025 16:00:19 +0000
Manifest next update: Sat 19 Apr 2025 16:00:19 +0000
Files and hashes: 1: Uqk6ZpOTGE36LT5fcwe3jUUK8bs.roa (hash: 3ocr9qZ6ri2OW2BEWPNTcZs9jR00BhDPO+YzVSk3MLY=)
2: cdm6oCIZQu3-SzqaVwgpXARBboA.crl (hash: CR7l0oqxlC4et10ZCLhpE0gNd2vwIDBNT1rjfQZTuTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 14:20:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:49:a1:25:40:5b:cd:26:7e:9e:6b:d9:34:4e:29:a3:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d9baa0221942edfe4b3a9a5708295c04416e80
Validity
Not Before: Apr 18 16:00:19 2025 GMT
Not After : Apr 19 16:00:19 2025 GMT
Subject: CN=e849d765288c6edfd708328e3b9ee84fd6a05137
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:83:c0:d2:b5:a4:ca:54:7b:18:5b:70:14:3c:
73:6d:78:25:59:f3:fa:41:35:fe:6b:43:81:0c:a4:
d6:b0:d4:bb:ca:1b:19:45:d2:03:54:b7:9a:0b:ea:
bd:56:d8:1d:7c:3c:a3:fc:e5:c9:d0:b3:2b:7c:6c:
b0:23:c5:56:41:be:a3:3d:69:58:14:d1:aa:2b:ad:
09:1c:2e:68:c8:f6:7d:68:6b:48:be:a2:3e:e0:21:
93:6d:0a:42:1c:4a:99:d2:ef:20:a8:90:22:b8:b2:
19:32:3b:ef:06:1f:5d:14:c9:41:93:06:6f:18:77:
c9:a0:64:79:46:c6:13:24:ce:33:40:2f:5d:b6:d9:
69:cf:89:14:7b:7e:4c:8c:83:61:d4:f6:66:02:d0:
f5:8d:25:25:f5:85:00:6e:be:b0:c4:a0:4e:ac:fc:
df:21:a5:f6:7d:bb:3c:f3:40:84:05:75:4f:5d:fe:
f2:e6:f8:2c:84:b1:99:fc:e7:d5:45:ce:fa:44:e9:
45:7d:7e:bf:04:cc:4d:84:1a:5b:2b:74:6f:9f:ef:
01:af:13:d6:6e:40:4c:f6:5f:00:7d:e0:7b:02:8e:
01:81:a3:13:8e:80:fd:a1:26:d3:e7:85:65:fe:4d:
61:d4:06:2d:44:cb:42:49:16:40:bb:22:7f:84:1d:
f4:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:49:D7:65:28:8C:6E:DF:D7:08:32:8E:3B:9E:E8:4F:D6:A0:51:37
X509v3 Authority Key Identifier:
keyid:71:D9:BA:A0:22:19:42:ED:FE:4B:3A:9A:57:08:29:5C:04:41:6E:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdm6oCIZQu3-SzqaVwgpXARBboA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/8c3fb8-40df-4d5d-9363-504727a50b8e/1/cdm6oCIZQu3-SzqaVwgpXARBboA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:5b:2b:54:a0:1c:d7:43:23:79:c3:e4:91:a3:9e:69:ca:1f:
7a:c2:d0:c6:1b:5c:93:8a:89:26:9d:f8:97:3b:e9:9f:4a:58:
ab:c2:73:9d:dd:46:b3:29:65:da:58:ba:26:fc:12:bb:46:b6:
49:03:20:31:92:62:ff:ae:be:4f:d5:81:ba:3b:71:2a:3a:2a:
49:5c:e1:24:72:96:3b:a3:05:59:99:77:51:f0:73:ab:3f:5f:
2f:13:ec:17:c9:dc:a4:fd:2c:cc:73:50:ba:13:6e:33:fe:7b:
73:79:da:5d:ad:78:f4:26:3f:99:f3:d7:a8:2c:e3:ea:ba:7e:
2d:c1:58:3f:21:e7:73:96:2a:3d:13:93:10:c0:96:4e:2a:1c:
e8:f4:76:43:5d:24:6d:48:c5:48:6a:9f:ea:35:6a:7e:6d:df:
de:63:c7:eb:5d:b4:9e:90:a9:f3:9d:22:6b:27:48:03:a4:01:
9b:24:35:71:32:b0:eb:32:14:f9:bf:02:0b:e0:41:36:76:69:
0b:31:c6:6c:ca:a7:36:9b:b7:86:3a:6e:8d:90:18:a8:77:a9:
85:d3:b8:79:13:5f:ea:d1:6c:37:9b:3c:71:af:cf:40:db:e3:
cf:ab:3f:e5:bd:39:29:40:1e:77:7b:58:76:e4:ae:80:b9:03:
55:a9:66:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 00:05:20 2025 by rpki-client