Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.mft
File: s7XStDrMDZ8HqgCqkPAlyW1c7CU.mft (raw, json)
Hash identifier: F2hfgx+3t570WUdIuLb0mRKDgiVgAf0EWjGLgGMX39I=
Subject key identifier: 38:13:B9:CA:D3:CE:80:C1:CF:45:D1:84:68:F1:09:7B:AC:75:EC:DA
Authority key identifier: B3:B5:D2:B4:3A:CC:0D:9F:07:AA:00:AA:90:F0:25:C9:6D:5C:EC:25
Certificate issuer: /CN=b3b5d2b43acc0d9f07aa00aa90f025c96d5cec25
Certificate serial: 01964EC76CB26579B9FCA6C75A515C88F0BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7XStDrMDZ8HqgCqkPAlyW1c7CU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.mft
Manifest number: 0A53
Signing time: Sat 19 Apr 2025 16:00:14 +0000
Manifest this update: Sat 19 Apr 2025 16:00:14 +0000
Manifest next update: Sun 20 Apr 2025 16:00:14 +0000
Files and hashes: 1: 5APXg_wiW_V1QU4DTTNO_V06dfg.roa (hash: TZwqI4bOTkCy7vwcX2/rFQxdaiYIWAZfVHV4G7nb07k=)
2: s7XStDrMDZ8HqgCqkPAlyW1c7CU.crl (hash: 96ZJuMA+cggrh/W9Y26HAtI/CTzZjk+FlzM8xniU4aU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.mft
rsync://rpki.ripe.net/repository/DEFAULT/s7XStDrMDZ8HqgCqkPAlyW1c7CU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:c7:6c:b2:65:79:b9:fc:a6:c7:5a:51:5c:88:f0:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b5d2b43acc0d9f07aa00aa90f025c96d5cec25
Validity
Not Before: Apr 19 16:00:14 2025 GMT
Not After : Apr 20 16:00:14 2025 GMT
Subject: CN=3813b9cad3ce80c1cf45d18468f1097bac75ecda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:50:1b:38:93:b6:ab:db:aa:b8:c5:89:8e:44:
96:f8:2f:de:6e:45:5d:44:8b:1a:9c:6a:d7:18:db:
61:97:31:4f:2f:a5:e7:76:a9:5b:d5:d0:8c:eb:4a:
a1:be:b7:1e:60:58:05:24:d0:1c:65:fd:aa:38:52:
44:d6:aa:e1:a4:a2:12:d8:88:de:d9:0c:0e:66:83:
5f:41:7b:14:e8:0d:85:a4:7b:a1:b8:8e:66:93:b4:
27:a5:24:d0:a5:bc:d2:f4:97:b9:cd:b6:5b:f2:37:
14:3f:ae:ef:5c:02:d9:93:cf:6f:e8:a4:a0:15:41:
1b:38:a9:45:4e:b3:c4:5f:c8:58:9d:fc:5d:82:be:
9e:15:12:a7:a0:39:6a:c9:3d:a9:43:b1:e7:33:30:
87:19:af:2c:47:86:e8:a5:6e:ad:06:2f:f1:e0:2e:
75:3d:a1:d8:ec:e5:e4:22:70:69:cc:7f:ff:80:13:
95:d5:d7:68:56:fd:25:c4:f8:f2:f8:97:a1:ef:7a:
f4:71:bd:0e:0f:1b:19:8b:fe:4b:7d:6e:f2:8d:04:
a1:a3:55:ed:49:85:26:1e:85:38:44:24:89:17:7e:
62:0b:e8:24:b9:8f:e6:87:a7:f3:c9:27:41:9c:1e:
e4:2d:3c:20:f8:bc:f5:41:4f:2b:c8:10:0f:25:72:
f1:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:13:B9:CA:D3:CE:80:C1:CF:45:D1:84:68:F1:09:7B:AC:75:EC:DA
X509v3 Authority Key Identifier:
keyid:B3:B5:D2:B4:3A:CC:0D:9F:07:AA:00:AA:90:F0:25:C9:6D:5C:EC:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7XStDrMDZ8HqgCqkPAlyW1c7CU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0a92df-c509-4e92-8e2b-24b8c02fa82a/1/s7XStDrMDZ8HqgCqkPAlyW1c7CU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:40:0c:6a:0e:f7:82:25:1e:9c:4b:e3:d7:ee:bb:7c:a4:8b:
90:df:d3:c8:85:06:c0:17:05:47:25:d7:11:e6:6b:92:73:80:
a5:06:7d:08:53:de:9f:21:ae:21:7e:10:6e:4b:89:24:a0:e9:
6e:00:98:b2:39:cc:03:48:b5:09:c1:4a:ad:0e:f3:55:b2:3c:
22:1a:b3:3c:c6:51:c2:d9:9c:6b:46:48:e1:28:f9:48:93:e0:
a5:74:00:eb:68:3e:bb:73:e9:29:75:b8:00:f0:89:70:5f:cc:
89:20:96:0e:1e:b2:1b:43:c9:74:f0:9e:73:0d:c2:c5:38:6f:
33:37:4a:b2:cb:ed:96:3f:6e:01:1a:83:9c:11:38:2d:4b:5e:
f9:e9:d0:02:03:73:5f:8a:77:16:13:f7:17:b3:68:e1:3a:0e:
5b:af:69:b3:f6:1e:78:25:26:8a:18:23:2c:24:f9:b6:cf:51:
24:3f:96:55:d3:3b:0e:9a:ad:30:19:62:51:1c:4c:24:03:0e:
bc:43:63:76:5a:bc:df:9f:e4:0c:49:b6:b2:e4:55:dd:64:3d:
03:be:74:da:2a:6b:0a:38:a7:78:73:b5:49:32:32:b1:01:91:
1f:f4:8e:ec:58:4c:e2:a1:e0:16:e9:c9:92:b1:6c:3a:5d:a7:
31:69:02:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:51:57 2025 by rpki-client