Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
File: 0krezYS7F0i9NbmezqRncuAeyTU.mft (raw, json)
Hash identifier: hPbXRQ4X74SboYqAi+EHlWcuDlxroR7DpXDgq/tgDtA=
Subject key identifier: 45:5B:06:60:0A:B7:4E:7C:55:0D:2E:B5:03:B7:B1:6D:C1:1A:4A:5F
Authority key identifier: D2:4A:DE:CD:84:BB:17:48:BD:35:B9:9E:CE:A4:67:72:E0:1E:C9:35
Certificate issuer: /CN=d24adecd84bb1748bd35b99ecea46772e01ec935
Certificate serial: 019651FFA630244D5C3C570CE1F2D844D1E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
Manifest number: 14FF
Signing time: Sun 20 Apr 2025 07:00:30 +0000
Manifest this update: Sun 20 Apr 2025 07:00:30 +0000
Manifest next update: Mon 21 Apr 2025 07:00:30 +0000
Files and hashes: 1: 0krezYS7F0i9NbmezqRncuAeyTU.crl (hash: 3QKh04t/YXMVppOBNSurYtYL7uTBAbKhX/BzwhEi6iQ=)
2: UON5AT9SXUWq39L68I_y2_ZUikk.roa (hash: JwjZjFuzIaj/y6AQtmJH9bJqGEr4cg/qlCiSjx+pXxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:ff:a6:30:24:4d:5c:3c:57:0c:e1:f2:d8:44:d1:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24adecd84bb1748bd35b99ecea46772e01ec935
Validity
Not Before: Apr 20 07:00:30 2025 GMT
Not After : Apr 21 07:00:30 2025 GMT
Subject: CN=455b06600ab74e7c550d2eb503b7b16dc11a4a5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:6a:43:90:ef:38:21:cd:71:40:36:72:ac:bb:
53:3d:65:cc:9e:da:11:f6:f4:27:b9:e3:5e:5c:25:
d4:22:01:ae:88:82:89:bf:75:05:c5:03:80:27:b9:
69:f8:fc:e4:70:41:4e:5a:6b:08:f5:d5:6b:fa:f8:
05:4d:fa:79:2a:ce:36:26:2e:b4:a0:d5:18:69:cb:
d3:96:66:e4:4b:13:92:a6:46:ec:c2:8e:1e:5f:f0:
c8:72:07:d0:f1:ca:d2:4d:c6:97:40:4e:2f:f9:3a:
4b:de:62:75:31:6a:d4:0f:2a:98:bc:ed:b1:a5:18:
fe:db:a0:85:5e:b2:48:54:ba:00:6c:b5:b1:d5:86:
25:c0:0f:17:2a:85:34:2c:10:da:f3:cc:27:cf:a9:
77:6f:0c:0e:24:af:d0:9d:d7:50:09:30:90:5c:5b:
14:6e:11:ef:9c:09:9d:0d:5a:58:dc:d2:42:31:d9:
f3:2a:7f:04:d1:f3:75:8d:54:4a:75:2c:bb:cb:03:
0b:50:fa:6f:ef:26:06:8d:3a:0c:d5:6f:52:69:6a:
0f:76:fe:9d:4f:b5:19:b2:1e:ba:e7:2c:6b:e6:b9:
d4:97:69:12:74:a4:21:b3:2c:b2:2f:8a:53:1d:e2:
b6:27:99:48:31:f6:08:36:05:0b:c0:0d:83:c1:88:
5a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:5B:06:60:0A:B7:4E:7C:55:0D:2E:B5:03:B7:B1:6D:C1:1A:4A:5F
X509v3 Authority Key Identifier:
keyid:D2:4A:DE:CD:84:BB:17:48:BD:35:B9:9E:CE:A4:67:72:E0:1E:C9:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:3a:9a:b2:f0:ff:f9:6a:2e:e5:11:58:3b:28:83:72:56:19:
cb:8a:4e:53:7f:5d:ee:80:67:92:ad:4b:49:9c:c3:9d:2d:eb:
00:83:c0:97:a0:07:a8:71:02:61:61:51:60:21:0f:49:3b:1d:
60:34:66:50:99:3e:ed:7c:24:5a:7d:95:04:92:b6:b6:89:96:
a0:88:2a:91:28:e4:bd:52:5d:f1:82:9a:82:77:8a:55:5c:fc:
e4:97:db:a6:9d:7a:aa:a7:38:b9:89:1f:75:ea:0f:95:c3:83:
c5:ac:71:6c:b6:05:9f:b1:d4:6d:0e:51:09:8b:86:9f:40:e5:
4c:bf:09:b8:d6:e8:d1:44:9c:49:a0:6e:a3:f4:2e:6f:95:f2:
87:ef:3c:43:27:c2:0d:83:ac:c7:bf:9a:84:14:5a:b0:9b:7c:
8b:50:52:65:56:c6:b8:c5:b1:d9:3d:fc:0e:51:58:08:3a:60:
a7:1b:72:53:78:8b:6b:35:c1:24:42:47:58:22:25:f8:1d:51:
c6:43:b7:52:94:54:93:61:dc:e2:2a:26:17:37:7f:15:35:a7:
86:d6:e1:2d:b3:8a:b5:a0:fd:6f:68:93:cf:3b:b8:62:e0:5e:
6c:87:30:31:a6:0b:f4:77:8e:d1:9b:ad:0c:0f:0c:c4:60:3a:
f9:7d:03:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:55:50 2025 by rpki-client