Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
File: 4z2f_axY52ErCVFE_sBrolhapqg.mft (raw, json)
Hash identifier: hx7kGWd8E+13ZxBo18dLxhyvsuqVS/sAK/0K2sfBGaU=
Subject key identifier: D5:66:2A:D2:39:4C:07:54:51:68:DB:92:64:30:89:98:44:84:EE:8E
Authority key identifier: E3:3D:9F:FD:AC:58:E7:61:2B:09:51:44:FE:C0:6B:A2:58:5A:A6:A8
Certificate issuer: /CN=e33d9ffdac58e7612b095144fec06ba2585aa6a8
Certificate serial: 01964A46492A45D344D85B8BDA61DCAC8B31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4z2f_axY52ErCVFE_sBrolhapqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
Manifest number: 124F
Signing time: Fri 18 Apr 2025 19:00:42 +0000
Manifest this update: Fri 18 Apr 2025 19:00:42 +0000
Manifest next update: Sat 19 Apr 2025 19:00:42 +0000
Files and hashes: 1: 4z2f_axY52ErCVFE_sBrolhapqg.crl (hash: vxybQAs4Ultzp1qj7rszYQ2yId+tXsEMbfEDI9ApXgM=)
2: kDBI9l_YMVWuxKarh0cfBt-co8E.roa (hash: Cmec62sAgGLnTuvkkeIcYM85TIkQ74UMRSA2arV5eDI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
rsync://rpki.ripe.net/repository/DEFAULT/4z2f_axY52ErCVFE_sBrolhapqg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:46:49:2a:45:d3:44:d8:5b:8b:da:61:dc:ac:8b:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e33d9ffdac58e7612b095144fec06ba2585aa6a8
Validity
Not Before: Apr 18 19:00:42 2025 GMT
Not After : Apr 19 19:00:42 2025 GMT
Subject: CN=d5662ad2394c07545168db92643089984484ee8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:03:63:21:a2:b9:67:3e:9a:6f:aa:3c:06:d9:
79:f4:cf:85:45:87:32:d4:a7:6d:cc:9d:06:2a:79:
5a:aa:72:c4:41:35:08:be:37:26:08:ab:a6:79:ea:
96:8d:13:53:39:0a:03:ad:08:49:10:b3:c5:b4:f7:
af:77:86:77:8a:aa:7e:ef:65:13:ea:0a:58:6f:92:
d1:b8:16:8c:a3:b9:fe:bb:9a:67:9f:fc:94:e6:e1:
43:75:a8:4b:2d:f1:51:22:be:45:6f:dd:14:42:9c:
fe:a3:56:df:db:d1:28:71:8e:bd:84:0c:7e:da:d1:
3f:f1:90:ea:57:85:32:74:33:30:ad:ba:2f:88:60:
01:e1:29:84:a9:8d:f7:92:2c:ad:76:4d:a6:6e:bc:
79:86:71:e1:5f:d4:26:13:38:56:57:16:cb:ca:ec:
3b:53:f8:e2:18:3d:b5:cf:2a:38:c1:b0:7f:bb:8e:
c8:93:90:e1:e8:3c:45:e6:f2:14:df:cb:e3:64:87:
1a:5a:96:4f:0b:a7:23:71:5c:87:bb:0e:ea:44:21:
53:c9:a8:25:20:c1:6c:ee:70:f4:1c:ee:e2:52:a9:
80:fe:0f:d5:98:ae:d1:f1:b6:5f:d6:8f:a6:90:fb:
d4:4d:fb:d8:25:21:37:9d:29:0a:1a:72:a8:c4:ca:
6d:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:66:2A:D2:39:4C:07:54:51:68:DB:92:64:30:89:98:44:84:EE:8E
X509v3 Authority Key Identifier:
keyid:E3:3D:9F:FD:AC:58:E7:61:2B:09:51:44:FE:C0:6B:A2:58:5A:A6:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4z2f_axY52ErCVFE_sBrolhapqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a34200-4b9b-4334-a159-9cb296301e64/1/4z2f_axY52ErCVFE_sBrolhapqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:6d:d1:d9:4f:90:af:f9:52:6b:93:bf:47:3d:6c:78:e0:f1:
a0:0c:4c:57:6d:3c:4d:f8:40:8d:97:23:7a:e9:fb:39:f1:56:
ec:0e:e9:57:16:73:ce:84:e0:f4:ef:ce:cf:7a:98:0a:c2:f6:
24:4e:c5:eb:b6:c6:f2:ca:b8:8e:f1:cd:4a:17:e5:6c:e3:50:
dd:9a:dc:dd:4d:91:dc:83:c7:a9:36:94:ef:a5:41:07:cc:b3:
90:fc:d4:b9:7a:e9:78:5a:98:01:c6:eb:7d:68:22:27:2f:51:
be:8a:ee:bb:3d:d3:30:ee:78:05:e3:b7:7b:61:cf:84:82:ba:
26:5d:84:f1:5c:5b:f9:af:c0:25:49:a9:50:9a:86:4f:26:7b:
a9:77:11:cd:d4:5f:a1:a1:dc:af:82:e1:b7:b2:61:a2:ca:d4:
2d:81:8a:a9:69:0b:bd:cf:47:42:75:0f:5c:c2:98:c0:62:47:
01:09:00:fc:75:91:b5:71:ae:05:f6:19:eb:9c:89:f7:c6:36:
5e:51:8b:13:90:1a:61:ca:8d:5e:f8:b5:e3:36:7e:ef:da:5b:
3f:e4:37:4c:67:f2:6a:d0:5b:2d:10:00:78:d0:9b:c7:80:54:
d8:b7:5f:fb:dc:a4:6e:a0:4f:17:7f:5c:38:44:39:88:db:83:
a7:50:17:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 02:48:53 2025 by rpki-client