Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/5ccbaf-c51d-4e76-a3ee-35ab420173db/1/mXwn0VtG2xhLwCswPIa0fEScG1Q.mft
File: mXwn0VtG2xhLwCswPIa0fEScG1Q.mft (raw, json)
Hash identifier: WNJcfx4ipmrgZ2AHojTryAL7agbIPp737yEMkJWybIo=
Subject key identifier: C0:63:AD:4E:6C:E4:F5:66:ED:16:EC:F0:BD:E1:F3:30:A6:B2:EE:CC
Authority key identifier: 99:7C:27:D1:5B:46:DB:18:4B:C0:2B:30:3C:86:B4:7C:44:9C:1B:54
Certificate issuer: /CN=997c27d15b46db184bc02b303c86b47c449c1b54
Certificate serial: 01964FDB028AEDFAC240E2EFF17DFDEEE146
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mXwn0VtG2xhLwCswPIa0fEScG1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/5ccbaf-c51d-4e76-a3ee-35ab420173db/1/mXwn0VtG2xhLwCswPIa0fEScG1Q.mft
Manifest number: 0DC0
Signing time: Sat 19 Apr 2025 21:01:15 +0000
Manifest this update: Sat 19 Apr 2025 21:01:15 +0000
Manifest next update: Sun 20 Apr 2025 21:01:15 +0000
Files and hashes: 1: JpZlGPUSnNPcPAQ7HrfbEiiCY90.roa (hash: sj/ySyRWLvZHGTxRHODxTY1XK4NRx1uXT8wwjiiWvG0=)
2: mXwn0VtG2xhLwCswPIa0fEScG1Q.crl (hash: Qwh7lCjJ5ujCgxsOevhfZHnBgb2cGyPUCIcWJluxXfg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/5ccbaf-c51d-4e76-a3ee-35ab420173db/1/mXwn0VtG2xhLwCswPIa0fEScG1Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/df/5ccbaf-c51d-4e76-a3ee-35ab420173db/1/mXwn0VtG2xhLwCswPIa0fEScG1Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/mXwn0VtG2xhLwCswPIa0fEScG1Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 21:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:db:02:8a:ed:fa:c2:40:e2:ef:f1:7d:fd:ee:e1:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=997c27d15b46db184bc02b303c86b47c449c1b54
Validity
Not Before: Apr 19 21:01:15 2025 GMT
Not After : Apr 20 21:01:15 2025 GMT
Subject: CN=c063ad4e6ce4f566ed16ecf0bde1f330a6b2eecc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b1:92:47:5c:2c:00:71:92:51:b8:ea:05:fc:
41:d0:65:ff:10:ab:23:99:ef:11:b4:d0:17:61:d2:
b8:b1:d3:71:7e:56:c4:26:e3:30:2b:f8:c0:4d:97:
1b:39:95:64:e9:fa:3f:29:23:2e:9f:ec:a1:57:fd:
65:75:06:6b:38:b7:c4:df:40:8a:cc:46:16:99:84:
f5:f5:66:71:cd:22:6e:0e:d8:62:36:21:a6:8c:ef:
e5:72:b0:19:6f:25:50:4d:75:29:57:8a:76:8b:ba:
7c:70:4b:01:9f:01:a5:2a:54:24:d3:3c:07:78:83:
ca:d7:0d:b2:3b:2c:f6:11:53:d6:4a:53:9b:d7:6d:
34:30:b3:89:68:6d:0b:ca:89:51:ca:f2:d3:7b:03:
8f:ee:8b:ab:06:ab:3e:43:17:41:3c:69:d5:c7:48:
e8:c9:56:72:5d:35:da:4b:be:fe:19:34:73:ed:21:
bb:39:d7:4f:b6:8f:59:70:25:9f:18:77:82:89:91:
d2:af:78:56:f3:b2:68:d6:54:78:e0:59:c2:6a:c8:
4c:91:a3:f7:73:62:30:17:6f:f0:8a:9b:f1:d4:39:
cb:bb:75:17:66:4c:07:ae:38:18:d2:35:5f:1b:e9:
33:f7:d8:aa:51:8e:d9:a7:6e:b5:f8:32:46:1f:86:
8a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:63:AD:4E:6C:E4:F5:66:ED:16:EC:F0:BD:E1:F3:30:A6:B2:EE:CC
X509v3 Authority Key Identifier:
keyid:99:7C:27:D1:5B:46:DB:18:4B:C0:2B:30:3C:86:B4:7C:44:9C:1B:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXwn0VtG2xhLwCswPIa0fEScG1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/5ccbaf-c51d-4e76-a3ee-35ab420173db/1/mXwn0VtG2xhLwCswPIa0fEScG1Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/5ccbaf-c51d-4e76-a3ee-35ab420173db/1/mXwn0VtG2xhLwCswPIa0fEScG1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:42:f9:e6:9d:9e:a7:9b:b3:88:4c:3e:8c:e4:bb:ff:03:10:
89:bc:64:ed:0f:cb:93:d1:50:73:4f:99:31:51:8a:21:98:e9:
a3:ff:70:f1:c8:40:ee:d0:97:52:93:b2:53:0f:88:36:df:8c:
83:de:ba:ed:3c:aa:7c:04:d8:bf:c3:86:15:9d:d0:d4:a0:0f:
76:cd:f9:c9:42:b5:82:6a:a7:41:90:16:f5:cb:6f:35:1e:b8:
11:6b:66:a8:86:e6:12:26:ed:fb:49:e4:93:a1:fb:49:16:c9:
58:78:06:1c:80:58:e0:b5:20:76:23:9a:a5:be:c6:6e:c7:d7:
3e:05:65:07:d5:d8:34:41:74:63:70:33:98:95:d8:ce:c9:0a:
d9:7d:a5:87:c0:d3:36:74:10:a1:4f:7b:9c:32:09:fd:b7:c1:
6f:e0:71:a5:8f:d1:2c:e1:47:c6:b9:0c:54:53:34:dd:03:e9:
09:11:30:62:6f:dd:f6:98:94:1e:2d:f9:58:80:eb:2a:af:c3:
19:b1:71:d6:45:21:50:11:59:e9:a8:ff:6c:73:a3:2d:f6:6c:
11:a3:70:42:db:61:eb:f3:be:ae:c5:1e:f2:d5:8c:1e:ad:8f:
8e:92:0b:74:6d:37:e6:32:c0:40:6a:a0:5c:3b:18:52:51:52:
82:ac:88:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 05:02:04 2025 by rpki-client