Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
File: a3sSBFsa8JrPlmLuNbos1-HIW60.mft (raw, json)
Hash identifier: x172dRGTOAKMevBQTjQH1Cp4cSYXDJlrJFvVrIkEOj4=
Subject key identifier: D1:D4:20:FB:F1:B3:8A:CA:04:2D:CF:7C:4E:B6:22:BE:59:79:DE:99
Authority key identifier: 6B:7B:12:04:5B:1A:F0:9A:CF:96:62:EE:35:BA:2C:D7:E1:C8:5B:AD
Certificate issuer: /CN=6b7b12045b1af09acf9662ee35ba2cd7e1c85bad
Certificate serial: 019654C98C36221355DB30AA458A483F2E30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a3sSBFsa8JrPlmLuNbos1-HIW60.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
Manifest number: 04A9
Signing time: Sun 20 Apr 2025 20:00:16 +0000
Manifest this update: Sun 20 Apr 2025 20:00:16 +0000
Manifest next update: Mon 21 Apr 2025 20:00:16 +0000
Files and hashes: 1: 6rvpyTq3GpToeI0SORQBn8auSqk.roa (hash: It3me0g3R8Ie8D4qrGq2UTC1Pz9Blt9bU50UXq7GwOE=)
2: a3sSBFsa8JrPlmLuNbos1-HIW60.crl (hash: 8iwcwgaijZd29NWHIR7knRQa/y60HgpoJ9dvSxDql/Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
rsync://rpki.ripe.net/repository/DEFAULT/a3sSBFsa8JrPlmLuNbos1-HIW60.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 20:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:c9:8c:36:22:13:55:db:30:aa:45:8a:48:3f:2e:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b7b12045b1af09acf9662ee35ba2cd7e1c85bad
Validity
Not Before: Apr 20 20:00:16 2025 GMT
Not After : Apr 21 20:00:16 2025 GMT
Subject: CN=d1d420fbf1b38aca042dcf7c4eb622be5979de99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c3:28:aa:e0:10:e9:8e:d8:5c:7b:45:16:23:
cc:76:13:bb:21:34:0e:ba:03:97:03:d8:84:58:5b:
56:de:48:4e:93:22:28:08:58:7c:0d:1d:57:ec:50:
43:25:6c:b0:01:5a:56:a6:55:f4:b2:a6:95:34:8c:
fc:de:4d:6b:f7:0a:74:dc:0d:e4:50:11:66:ab:5a:
09:49:51:f3:63:65:63:0b:2c:af:e3:b6:c8:d5:e3:
8b:58:e5:da:d8:72:00:f5:26:22:86:81:a8:c0:f6:
b0:b5:68:a4:8c:73:ee:18:7c:a3:f9:ef:d3:34:7a:
73:e1:e1:42:14:94:1b:a3:45:7c:85:7c:4c:83:08:
37:86:7f:89:f3:8a:fe:b0:6c:79:62:b5:19:a8:5a:
7c:15:a6:1f:8e:e1:4a:08:60:7b:7b:59:bb:6e:62:
68:45:d9:09:3d:38:6e:0c:0f:71:3f:b9:1a:cf:9c:
77:22:f7:ab:84:05:5e:24:96:f7:b3:d6:3c:64:4c:
09:f7:07:76:09:e0:17:b8:69:c3:6c:65:4b:9c:4c:
1a:fa:40:7b:45:c7:78:19:50:fb:78:ae:87:67:35:
42:b6:81:76:ea:e8:b9:0f:88:5c:41:08:29:4a:71:
61:03:48:f6:85:f6:ce:ec:34:6e:b7:29:ae:2f:53:
f5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:D4:20:FB:F1:B3:8A:CA:04:2D:CF:7C:4E:B6:22:BE:59:79:DE:99
X509v3 Authority Key Identifier:
keyid:6B:7B:12:04:5B:1A:F0:9A:CF:96:62:EE:35:BA:2C:D7:E1:C8:5B:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3sSBFsa8JrPlmLuNbos1-HIW60.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/868a9c-fe25-4b59-a329-18401da43563/1/a3sSBFsa8JrPlmLuNbos1-HIW60.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:6c:27:87:21:b1:ce:ca:4d:11:8e:73:79:8a:44:ff:6c:a6:
78:81:e5:9d:72:cd:8b:f3:f5:0e:7d:c2:1c:28:aa:7d:e4:64:
65:5d:a5:38:6b:e1:e0:38:6c:a1:4c:ba:30:b5:f0:bd:62:a0:
bb:27:a1:ac:de:4d:be:1c:cd:91:7d:2a:07:50:d1:49:17:a0:
34:45:7c:bd:3e:e9:6c:3b:20:97:b2:85:ec:c6:f0:79:71:1f:
b4:a1:64:5e:dd:11:de:65:9b:35:03:eb:23:c7:07:15:a1:c4:
17:1b:f7:43:f4:59:7a:47:6f:c4:81:fd:8c:27:d1:b5:3e:39:
01:c0:83:9a:47:24:04:0b:82:1b:7b:a5:85:e9:f7:76:2b:35:
57:a5:49:40:65:70:0c:03:61:cc:e0:0e:c5:c0:12:1d:00:ad:
1e:ad:aa:38:39:4e:00:f6:fd:a0:8c:06:ca:ff:50:58:be:90:
c8:b8:db:8f:52:12:2d:42:56:e6:1f:02:fa:f9:2d:2e:ce:06:
29:62:b2:fa:46:fb:1d:c5:60:37:d1:6a:83:86:0b:bb:a3:9b:
cb:2a:e3:63:6e:7f:0b:cf:7e:c5:fb:07:5c:4e:2c:a7:4a:31:
6f:d1:4b:82:0c:64:d2:fa:9d:d8:c0:9b:81:80:0a:86:4e:28:
1f:d4:c4:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:09:49 2025 by rpki-client