Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
File: toF3Ytn8jxGwHPUjS25DHPvsG80.mft (raw, json)
Hash identifier: K0xkUjC6R3t3l9CULpMlQC4c3B0i9oAJvdZHoqB3CyY=
Subject key identifier: 43:8E:3A:AA:A6:1C:DB:D5:97:B7:44:1E:66:96:2B:8E:EE:38:E8:BF
Authority key identifier: B6:81:77:62:D9:FC:8F:11:B0:1C:F5:23:4B:6E:43:1C:FB:EC:1B:CD
Certificate issuer: /CN=b6817762d9fc8f11b01cf5234b6e431cfbec1bcd
Certificate serial: 0196556E506DC891A53426AC42ED1A5DE165
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
Manifest number: 085E
Signing time: Sun 20 Apr 2025 23:00:14 +0000
Manifest this update: Sun 20 Apr 2025 23:00:14 +0000
Manifest next update: Mon 21 Apr 2025 23:00:14 +0000
Files and hashes: 1: iFeMzfeEdL5eLiPhJVZH9fOR9os.roa (hash: Hluf44L3umjh9a1sEhuox24mM0+jKftFeuevrlqeW6M=)
2: toF3Ytn8jxGwHPUjS25DHPvsG80.crl (hash: Yq75RJxh+G/OUwfFPbTmY/uQ1CMz9NIdENkFDkVb1Dg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 23:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:6e:50:6d:c8:91:a5:34:26:ac:42:ed:1a:5d:e1:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6817762d9fc8f11b01cf5234b6e431cfbec1bcd
Validity
Not Before: Apr 20 23:00:14 2025 GMT
Not After : Apr 21 23:00:14 2025 GMT
Subject: CN=438e3aaaa61cdbd597b7441e66962b8eee38e8bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c9:e4:16:48:3a:ff:3a:f2:6c:05:a6:1e:37:
84:56:81:46:66:32:fc:43:6d:41:71:b2:8b:47:28:
05:03:bc:f6:17:bd:d8:27:8b:16:95:af:b3:87:27:
5d:56:ef:ab:ce:24:59:4f:1c:a8:63:4e:f2:90:0a:
25:36:81:68:c5:65:24:3e:f2:25:da:3c:23:55:87:
1a:a9:b7:cd:12:99:c8:42:c2:80:5b:fa:82:9f:98:
f9:03:1d:0f:0b:21:2e:00:72:b4:50:14:d0:fb:e8:
77:dc:11:4d:33:2c:6e:7f:a3:3f:44:66:98:86:b8:
07:09:48:05:77:d3:5b:be:8b:c4:fc:c6:cb:0f:6f:
82:e7:53:0d:97:de:bb:87:32:6e:a8:f5:ae:03:e6:
d1:7a:03:49:1f:77:56:39:6e:2a:f3:fa:d2:2a:aa:
0a:20:92:0e:b9:0d:82:f6:4f:31:72:71:d6:95:4e:
06:16:02:2d:68:2d:cd:ae:5d:6b:d5:20:41:b0:b3:
40:54:10:9f:c3:8f:f5:4d:f2:05:3e:a5:03:4d:06:
5c:85:a6:e4:ae:c4:70:07:5c:08:dc:89:68:5c:8f:
aa:61:f4:90:71:cb:96:57:2b:53:76:27:91:ff:3b:
0b:54:e2:db:2c:52:15:8d:06:9a:b2:a0:fc:1b:d8:
26:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:8E:3A:AA:A6:1C:DB:D5:97:B7:44:1E:66:96:2B:8E:EE:38:E8:BF
X509v3 Authority Key Identifier:
keyid:B6:81:77:62:D9:FC:8F:11:B0:1C:F5:23:4B:6E:43:1C:FB:EC:1B:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:89:b2:07:2e:75:ce:07:6f:65:83:39:ee:6d:4b:9a:92:d7:
a2:51:38:dc:3d:ea:db:26:ee:d5:b1:51:4c:b8:51:b5:ed:2e:
38:5a:64:f3:72:53:49:59:f5:88:ee:21:45:7a:20:41:31:0d:
1f:89:2d:6c:92:23:9b:b0:63:02:d5:59:97:e6:f4:40:e9:fd:
22:c6:1e:ff:b3:47:64:cf:d8:60:03:19:26:d7:0a:6d:0b:61:
c6:e4:1a:16:3a:03:34:25:3d:99:09:c7:73:6c:73:1a:8a:97:
21:e2:6e:c4:6a:43:80:fd:19:20:d4:de:6a:9e:83:b1:71:ee:
60:66:0a:d9:28:de:ce:af:1d:ec:83:99:42:e3:9a:29:e6:84:
e7:40:94:03:d7:14:13:3a:47:5a:d1:80:58:c3:a0:87:85:b7:
19:e0:9b:98:8a:91:68:d6:04:48:26:30:45:a9:ad:e9:b4:f9:
f4:68:12:fa:0b:a5:d7:81:72:43:da:94:7e:41:6e:d1:d0:9f:
c9:7c:b4:bf:1c:a8:22:62:30:6f:74:6a:cf:62:96:96:65:eb:
33:35:80:cf:78:76:89:fc:d3:5e:f5:88:59:f1:5f:4d:71:b2:
f3:b3:89:b0:81:24:67:31:96:b6:7e:9e:95:42:7f:f2:6d:e9:
9c:06:99:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:11:30 2025 by rpki-client