Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
File: rWUjcvDl0WnCAPfR0IDoVw_-23E.mft (raw, json)
Hash identifier: jst1jEIBrHohHNZtyR7KuPLduzrkZU3z8TwTX7I2NyM=
Subject key identifier: 66:B8:28:AD:22:28:DD:28:DE:E0:C7:DF:60:44:06:B6:30:A9:E0:29
Authority key identifier: AD:65:23:72:F0:E5:D1:69:C2:00:F7:D1:D0:80:E8:57:0F:FE:DB:71
Certificate issuer: /CN=ad652372f0e5d169c200f7d1d080e8570ffedb71
Certificate serial: 01964D47646FFABD9F41BE09998FEEA6EE01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
Manifest number: 0265
Signing time: Sat 19 Apr 2025 09:00:46 +0000
Manifest this update: Sat 19 Apr 2025 09:00:46 +0000
Manifest next update: Sun 20 Apr 2025 09:00:46 +0000
Files and hashes: 1: nQ9AG6h0t4BBBHaY1oIQ2Z7HXiE.roa (hash: bmhEBNk6LesEwcu8xwGODwFl5oPTmJlYZFKxsnvzgRU=)
2: rWUjcvDl0WnCAPfR0IDoVw_-23E.crl (hash: yHjrALtySXWzxbuR9GmMqxK9wNoHhHQmppr/aXf0jZc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 07:26:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:47:64:6f:fa:bd:9f:41:be:09:99:8f:ee:a6:ee:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad652372f0e5d169c200f7d1d080e8570ffedb71
Validity
Not Before: Apr 19 09:00:46 2025 GMT
Not After : Apr 20 09:00:46 2025 GMT
Subject: CN=66b828ad2228dd28dee0c7df604406b630a9e029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:65:bc:da:9c:d6:d4:7a:66:87:f8:1c:2a:c3:
73:11:ad:61:bc:60:24:31:81:b9:7a:ab:54:bf:d8:
a2:40:dc:23:b8:92:ce:6f:76:14:b6:3e:a8:93:53:
b9:dd:dc:77:95:36:85:09:56:c5:ef:b4:cb:51:60:
9d:d4:b4:d1:0c:c4:e7:51:59:19:6d:26:fc:c8:9b:
2d:c7:97:77:af:60:bb:fb:f5:8f:d8:b7:4b:15:8b:
03:44:39:6b:35:69:57:ce:2a:1d:b4:de:1a:68:21:
1e:81:d7:f8:b8:1b:ba:c5:3f:0b:61:56:ae:38:8d:
ae:31:a6:94:a5:63:d4:7e:3d:8c:fe:4a:8c:26:58:
5d:82:1f:f0:53:e7:28:63:b0:32:e2:6c:5d:3a:7d:
e1:14:fe:1d:01:05:11:15:4e:ca:a0:2e:a9:ab:76:
24:ec:58:15:9e:38:a5:7d:d0:2e:8f:72:c0:a2:55:
d3:9b:c7:01:8e:24:d8:82:af:14:4d:a0:97:44:17:
e9:a8:8f:f5:c9:33:0d:ed:e3:49:a4:e2:92:89:21:
a6:a4:14:71:b2:2f:10:6b:a5:5e:a2:a2:8b:ff:8e:
a5:97:b1:6b:9a:47:15:80:b1:d6:9e:2b:b4:3e:28:
f8:0c:c8:9c:af:66:3c:85:83:d7:8d:d5:a2:f1:67:
d3:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:B8:28:AD:22:28:DD:28:DE:E0:C7:DF:60:44:06:B6:30:A9:E0:29
X509v3 Authority Key Identifier:
keyid:AD:65:23:72:F0:E5:D1:69:C2:00:F7:D1:D0:80:E8:57:0F:FE:DB:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:4a:2a:3d:01:d0:f7:17:32:c7:ea:24:3e:44:63:0c:68:6b:
4b:23:0d:4a:2b:75:33:4e:b4:1a:53:13:c8:58:c6:69:9c:6a:
ce:63:f1:92:68:39:a2:16:83:27:55:69:ad:e0:f9:36:1c:90:
23:40:e1:aa:fd:3f:93:eb:95:ec:ca:c1:72:c9:01:6e:ec:00:
ff:58:08:06:38:0d:9b:ff:70:be:d7:a8:db:ed:66:41:c6:63:
50:4b:d1:7f:0f:d7:d8:a4:d3:58:98:2d:5d:1e:78:9b:aa:1c:
e1:2b:1a:77:3a:de:56:d5:a0:65:5d:94:61:d2:1c:6b:74:56:
47:a7:d6:5d:d1:e9:51:6f:8b:cd:8d:dc:f6:70:42:ca:0c:7f:
0e:2f:69:47:b5:fc:8a:15:a2:4f:03:66:e9:97:c4:55:45:82:
fe:9d:33:2f:f8:b9:4e:09:cd:9b:c4:ed:aa:03:69:0b:7b:54:
5e:b1:a6:66:79:a0:f4:8f:5c:8a:c0:4c:00:3e:91:d4:54:38:
02:b2:de:c0:8f:4e:86:40:83:39:63:7a:05:33:54:83:70:22:
73:f4:94:b2:f9:10:08:d9:2f:a9:36:df:9f:e8:b0:a9:c2:09:
f0:cc:8c:5a:b6:76:f6:fb:fe:83:ce:99:78:f3:d2:6c:c5:a2:
42:a4:6c:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 14:38:49 2025 by rpki-client