Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
File: 32GikiI62a68itgsKlZHX72XqDQ.mft (raw, json)
Hash identifier: 4MQ7fN3Q9UwCq6JigYVG+VwWm7m7JaTZeHUgRbNq+AM=
Subject key identifier: 01:58:70:34:F9:98:CA:A2:7B:4F:2A:E4:18:5C:33:92:E1:08:03:8B
Authority key identifier: DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34
Certificate issuer: /CN=df61a292223ad9aebc8ad82c2a56475fbd97a834
Certificate serial: 019631D0815084AF20FC22389343E4B01609
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
Manifest number: 0B9A
Signing time: Mon 14 Apr 2025 01:01:10 +0000
Manifest this update: Mon 14 Apr 2025 01:01:10 +0000
Manifest next update: Tue 15 Apr 2025 01:01:10 +0000
Files and hashes: 1: 32GikiI62a68itgsKlZHX72XqDQ.crl (hash: A+tposboSWjpkkt+sEQlcbzL6L2B1OtKXECiSx1EmAE=)
2: DmQguxgVyJ_d0tpi3KUPtRcdGUQ.roa (hash: OiuAWrEvvfbOYm4huTJvJrvDJABO3FsTpYDNXs6sb+s=)
3: aI06tjVZeZrIS1TA5LHHtgH2TfE.roa (hash: LKF1KEnQy5/5rD4HRU7tZBGEwLV0sJ0zLyAcVF0BY1c=)
4: gCOrJJaf7HO535LCuEoI7vxf65A.roa (hash: 7Nbxw9zLeIaRzeX3DJv4MIaTHvVYcSTc1CbOKxR59lQ=)
5: k6eyynVladw6I8I9j1dsAe95OA8.roa (hash: A0AAtMX//zpiq0We38ivcj7YmnJWOeaOBnQnV51DCG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 15 Apr 2025 01:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:31:d0:81:50:84:af:20:fc:22:38:93:43:e4:b0:16:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df61a292223ad9aebc8ad82c2a56475fbd97a834
Validity
Not Before: Apr 14 01:01:10 2025 GMT
Not After : Apr 15 01:01:10 2025 GMT
Subject: CN=01587034f998caa27b4f2ae4185c3392e108038b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c3:d2:81:68:dd:4d:a0:a6:9e:08:da:5f:6b:
d8:91:11:b4:3a:1a:19:5c:ee:06:48:c2:33:5d:76:
ea:08:6d:95:20:a3:6e:56:60:07:68:97:2e:9d:98:
89:35:be:b9:de:33:53:d7:0b:4c:82:d8:db:c8:4f:
7f:3a:0d:12:d7:70:87:dc:d6:90:75:e4:03:72:7a:
e6:0e:f4:03:c7:a2:8c:be:4c:09:14:85:55:4d:c4:
82:90:d5:e3:b8:bb:c1:29:37:6d:14:da:d7:97:55:
f2:75:a7:ad:46:78:87:f1:87:a5:a6:f1:1c:2a:61:
16:8a:8c:91:40:50:11:8c:4b:0c:92:7a:0b:22:d2:
6b:1d:0e:e9:c1:ee:ee:48:db:ba:f5:8e:c6:10:7d:
03:7f:24:27:ef:47:f0:c7:66:8b:dd:91:9d:ce:60:
34:54:53:f9:fa:08:7e:56:6d:94:58:5c:b5:71:63:
62:9e:8d:34:7a:32:be:5a:ad:52:15:1a:d0:79:6d:
66:8a:d5:59:1d:d4:af:63:74:b4:e9:3b:37:1b:15:
f3:6a:55:fd:78:2a:bf:46:b6:b4:03:21:b9:b7:32:
cc:a1:77:40:7c:c6:63:44:0d:6f:70:b4:08:f9:0d:
37:61:1d:ad:47:f6:71:af:5a:dd:a2:86:34:ef:0f:
64:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:58:70:34:F9:98:CA:A2:7B:4F:2A:E4:18:5C:33:92:E1:08:03:8B
X509v3 Authority Key Identifier:
keyid:DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:1c:60:18:fd:bf:e2:6d:74:f0:f6:36:1f:52:bf:1b:f0:13:
8e:ef:09:e2:fd:91:f3:73:2a:53:4f:08:af:1f:1b:30:75:14:
88:63:13:6c:7f:15:fb:58:90:79:ce:a0:9a:56:c5:06:49:04:
ca:9d:ac:d8:8c:8a:ee:36:89:2e:00:ac:56:92:40:b9:e0:4e:
3c:a0:ce:65:aa:95:c4:80:76:5a:c8:ff:4c:e2:29:88:c9:2e:
82:83:08:48:de:c5:1f:6b:1d:2e:14:a5:1f:7b:90:45:bc:20:
46:f7:66:16:53:7f:64:f5:ff:ae:9e:4a:4e:e0:c3:51:8a:cc:
d0:5e:06:40:b6:53:b9:53:e4:d5:51:02:14:fd:4a:1e:47:83:
78:9a:79:94:20:1a:e4:68:c0:d7:af:14:0c:0f:49:0d:c7:e0:
59:ba:af:13:f1:a4:e6:b6:d4:1c:5b:5b:d5:f3:9a:5d:10:60:
8e:ca:a7:a5:7d:d0:84:46:4f:41:a4:2c:68:3f:4e:85:c1:c7:
d8:8f:4b:1f:f9:96:5c:64:7c:6d:47:ba:a6:f7:03:f6:bc:68:
ff:22:8f:7f:19:76:cd:74:c3:34:85:42:a9:87:5b:d7:0e:e8:
34:69:37:c1:5f:3b:97:40:31:46:9c:43:12:1f:b4:e1:8f:11:
c7:66:d3:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 10:35:18 2025 by rpki-client