Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.mft
File: srQdL319OFfgdfKk8vnT4ETy5TY.mft (raw, json)
Hash identifier: ZkT/H/9zXm39dSuogE7TcrN13smKOfy51cgdHBgck9g=
Subject key identifier: 8E:D7:D7:23:E2:A1:26:47:F5:7D:31:3B:44:49:BC:8F:88:08:5C:80
Authority key identifier: B2:B4:1D:2F:7D:7D:38:57:E0:75:F2:A4:F2:F9:D3:E0:44:F2:E5:36
Certificate issuer: /CN=b2b41d2f7d7d3857e075f2a4f2f9d3e044f2e536
Certificate serial: 019651920A4BEB637A5765161CE12E2BF613
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/srQdL319OFfgdfKk8vnT4ETy5TY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.mft
Manifest number: 04F1
Signing time: Sun 20 Apr 2025 05:00:47 +0000
Manifest this update: Sun 20 Apr 2025 05:00:47 +0000
Manifest next update: Mon 21 Apr 2025 05:00:47 +0000
Files and hashes: 1: Ypuf3qV0JE2AXfUrk2eNRiGtQN0.roa (hash: AxG4SgT0VS5arc9FHux7pFhrFyFYGK0/0AgX9zPeSBE=)
2: srQdL319OFfgdfKk8vnT4ETy5TY.crl (hash: DTenX2GnttO58lmqmIl3gfrbgd3zSQsoW5TY7ZU39UQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.mft
rsync://rpki.ripe.net/repository/DEFAULT/srQdL319OFfgdfKk8vnT4ETy5TY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 05:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:92:0a:4b:eb:63:7a:57:65:16:1c:e1:2e:2b:f6:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2b41d2f7d7d3857e075f2a4f2f9d3e044f2e536
Validity
Not Before: Apr 20 05:00:47 2025 GMT
Not After : Apr 21 05:00:47 2025 GMT
Subject: CN=8ed7d723e2a12647f57d313b4449bc8f88085c80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:8e:27:51:04:9c:5d:e2:80:72:d3:5d:1b:66:
05:57:cf:ef:c9:06:1b:e0:c8:07:fc:b1:07:78:03:
36:e2:6a:c8:9e:01:d3:c4:25:b8:e1:25:83:9c:1f:
dc:dd:24:21:96:14:f8:00:be:2c:38:ff:65:e5:ca:
c1:9f:ef:ea:12:af:ae:f9:c7:cd:16:64:35:ff:41:
df:9f:f2:9f:b2:a5:79:38:f6:be:a4:67:ef:98:b2:
a2:00:26:1d:2e:99:88:10:a8:e8:6c:6a:95:45:6d:
74:61:17:ad:16:28:71:ee:74:3b:21:52:c4:89:d6:
78:70:99:93:a9:42:fb:fc:d4:32:94:f9:44:8f:0b:
62:ac:0c:fa:f4:d4:40:be:ab:33:9e:f4:e0:eb:7c:
a8:a4:ca:b8:02:62:0e:94:24:4c:55:8a:f6:26:20:
ce:c5:1b:f9:5b:30:63:96:7c:2b:cc:fa:4d:80:fe:
3e:56:14:fd:07:ff:ff:4e:d0:29:df:d9:94:88:6e:
9a:ac:76:fc:b9:89:9c:ee:c6:1f:dd:5d:0c:7e:c0:
ae:3b:6a:a1:6d:c4:43:f0:70:fe:7e:23:9c:b0:22:
dd:21:d1:2b:07:2f:ac:b3:31:7a:c5:78:b2:77:33:
14:d9:df:6a:79:60:2d:d8:20:64:ff:fa:5e:b9:6f:
33:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:D7:D7:23:E2:A1:26:47:F5:7D:31:3B:44:49:BC:8F:88:08:5C:80
X509v3 Authority Key Identifier:
keyid:B2:B4:1D:2F:7D:7D:38:57:E0:75:F2:A4:F2:F9:D3:E0:44:F2:E5:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/srQdL319OFfgdfKk8vnT4ETy5TY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:95:ae:7e:e9:9b:94:dd:56:03:3b:34:77:bf:d1:26:a3:db:
c5:59:f2:92:6a:e4:8d:76:42:75:6a:f7:b5:be:4a:38:3f:24:
f3:7d:81:f6:35:3e:3f:3c:71:db:69:cc:9c:bf:42:53:c3:11:
e4:68:78:a3:cb:42:e7:0b:e4:8b:9e:ff:79:70:d6:8a:69:5f:
91:91:4a:71:9c:e9:c4:14:19:ab:98:98:72:ef:56:18:90:1b:
3f:63:4f:46:b2:37:74:c0:7e:99:ea:b1:84:5f:da:79:9c:a2:
12:c4:7b:24:14:b3:db:69:a6:d9:07:6a:51:34:52:dd:e5:32:
8f:25:40:26:bf:07:65:c1:6b:6f:46:46:7c:14:9b:48:e1:86:
76:5a:71:97:3f:40:4d:ce:60:d5:63:cf:62:2f:3b:4f:dc:22:
6c:a1:35:61:08:77:4b:35:90:cc:26:b1:28:72:c7:2a:ec:5c:
e5:a5:a0:5e:7a:26:6c:b8:1e:ef:33:8f:d2:fc:c8:39:69:f5:
3b:2f:ba:76:16:01:5d:1e:22:a2:45:7a:39:84:d8:0a:c4:33:
f2:9d:cc:52:b2:4f:44:82:3d:2a:35:25:20:d8:9d:9c:9c:1d:
59:83:ed:29:bc:23:1b:37:95:c6:5f:bd:c4:e3:9a:da:41:c5:
78:b2:d0:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:19:17 2025 by rpki-client