Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
File: 1onLcYkcbZS9nm8U8W5-N8LHKL8.mft (raw, json)
Hash identifier: WpzufH2/zqGJ2GWQvNDFpkBNl2PbSY5KOus7DLFJEzI=
Subject key identifier: A5:D1:A8:1A:80:A5:2E:7F:BE:D3:F4:65:2C:29:14:A5:D5:98:E7:34
Authority key identifier: D6:89:CB:71:89:1C:6D:94:BD:9E:6F:14:F1:6E:7E:37:C2:C7:28:BF
Certificate issuer: /CN=d689cb71891c6d94bd9e6f14f16e7e37c2c728bf
Certificate serial: 01964FA3938CA17DF50BED5ED94032A3C42A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
Manifest number: 02B0
Signing time: Sat 19 Apr 2025 20:00:42 +0000
Manifest this update: Sat 19 Apr 2025 20:00:42 +0000
Manifest next update: Sun 20 Apr 2025 20:00:42 +0000
Files and hashes: 1: 1onLcYkcbZS9nm8U8W5-N8LHKL8.crl (hash: offf0RGMwMe5hZ5pkSjiRkXEqAqV/Yu+GgczE7dsOME=)
2: kSER2798uaT4ZEQ3_Ywav1IgXDo.roa (hash: o89fQ/v3jr3XzrvC5mfE9JQZHOaC2hUzybiixeh55JI=)
3: yZlOT6r0_6wmgpAAvcSq6qfpXoA.roa (hash: CFuI4jvHDVJgJ7TNYXPE3aUuvYsSM/+AObIDbJtCPww=)
4: zl7tT8dRR7O1ZujdC0-GhGjBJAU.roa (hash: dZhp70Fm8wBLybFYAH8VTvH36PqVNE1zgwuzpEitFwQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:a3:93:8c:a1:7d:f5:0b:ed:5e:d9:40:32:a3:c4:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d689cb71891c6d94bd9e6f14f16e7e37c2c728bf
Validity
Not Before: Apr 19 20:00:42 2025 GMT
Not After : Apr 20 20:00:42 2025 GMT
Subject: CN=a5d1a81a80a52e7fbed3f4652c2914a5d598e734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9f:fa:88:ef:6d:05:5b:61:36:9a:b8:fb:00:
87:e0:e6:d7:80:e7:78:53:c9:5e:84:21:ac:c3:4b:
ea:3e:c5:9a:a5:a0:bd:bb:5b:86:08:d9:f1:8c:9c:
44:28:a8:d1:95:84:bd:45:3d:95:20:fe:a3:b0:7d:
27:40:53:c9:30:e9:5a:66:e7:b9:04:4d:20:b0:be:
3e:c5:65:cc:49:49:23:fc:a9:f9:6c:10:2e:e7:f5:
3c:ba:31:19:b6:e0:c0:55:7b:5a:6a:47:69:ca:22:
0f:3c:97:3a:a0:35:d4:9d:c3:b4:b7:4f:a1:27:e0:
c7:5d:fb:6f:6b:05:ca:1a:22:7c:48:e1:ac:30:b7:
39:10:ab:16:21:21:c3:b6:a6:fd:cc:8a:aa:aa:94:
7e:a5:f7:ba:9d:3e:57:23:de:27:ee:e3:40:39:4a:
6f:49:77:de:52:69:2a:aa:5c:f8:31:aa:17:98:a3:
51:e1:da:eb:01:fa:6b:2f:92:70:a6:9a:0e:87:58:
5c:2d:28:ab:cb:a8:a3:4d:31:28:77:d4:5c:6c:4d:
87:c5:ca:e2:12:bd:04:62:9a:34:e9:d7:0d:c8:3b:
8c:fa:cd:32:43:36:c5:32:8e:31:ef:c8:d4:c1:42:
57:51:3a:b6:99:69:fb:d8:ab:0b:03:59:c8:9d:c9:
2c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:D1:A8:1A:80:A5:2E:7F:BE:D3:F4:65:2C:29:14:A5:D5:98:E7:34
X509v3 Authority Key Identifier:
keyid:D6:89:CB:71:89:1C:6D:94:BD:9E:6F:14:F1:6E:7E:37:C2:C7:28:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:17:28:30:11:55:f6:54:b0:25:66:a5:28:2c:90:2e:34:4e:
52:c2:5e:fa:fe:23:d8:b8:3f:14:34:ea:ed:bf:4a:18:19:56:
e8:d7:64:0c:4a:82:09:7a:cf:6f:c7:12:23:c6:29:6a:10:a5:
77:a3:05:8c:77:91:35:dc:a8:11:21:8e:31:e1:92:2a:5f:16:
88:96:18:30:01:9e:9d:03:ee:7a:58:57:38:12:81:64:d5:66:
de:9d:2b:90:d1:ab:3e:02:e2:36:0f:fc:a8:8c:4a:97:e9:ae:
05:bb:49:06:49:c4:32:35:9c:40:72:3d:f2:f1:3b:da:52:f4:
ba:2f:b7:cf:91:aa:97:9f:58:ec:30:6c:a1:37:18:8e:3e:f1:
2f:a9:77:6e:c3:29:2c:23:ed:f8:80:6f:ce:56:ed:dc:fd:d9:
da:d7:23:8a:07:2d:7e:6c:33:7c:30:83:83:ad:d8:5e:9c:be:
1b:a0:26:23:1a:8c:be:c2:2d:da:47:e9:66:d9:4a:54:e7:f2:
68:0f:aa:20:8b:96:8b:e1:d7:8e:df:6b:9b:88:47:fb:a9:2c:
68:92:d7:ec:a3:a3:65:f4:2d:28:11:00:fd:5a:94:89:b4:4a:
39:34:f0:1f:36:7c:ae:44:f1:8b:3b:a5:9b:c3:51:7a:ec:87:
88:e2:10:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:43:45 2025 by rpki-client