Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
File: evGnv3QoXbLoIJH79GOi7vbjpXg.mft (raw, json)
Hash identifier: noxCZmpT86KCTJrlEDw28uhaIvS/JgbDsq6Z1IpHN5Y=
Subject key identifier: BE:F6:04:4F:C3:35:DC:74:1D:3A:EE:47:8A:6C:42:2B:A9:82:B0:95
Authority key identifier: 7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78
Certificate issuer: /CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578
Certificate serial: 01961546CA06AF2317007675011319F3CE62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
Manifest number: 0218
Signing time: Tue 08 Apr 2025 12:01:22 +0000
Manifest this update: Tue 08 Apr 2025 12:01:22 +0000
Manifest next update: Wed 09 Apr 2025 12:01:22 +0000
Files and hashes: 1: HeJAD4YHm_sJaYZYcU9XbBvO2ZQ.roa (hash: X87UHvfB+nlPvI0ZCTJdcn/R8oWH+T+ddbzxZs7Ye8A=)
2: evGnv3QoXbLoIJH79GOi7vbjpXg.crl (hash: F167pyTqAGOX3Q112NHlhdzkmQCZvJ41Bb/30Xh+VDU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 12:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:15:46:ca:06:af:23:17:00:76:75:01:13:19:f3:ce:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578
Validity
Not Before: Apr 8 12:01:22 2025 GMT
Not After : Apr 9 12:01:22 2025 GMT
Subject: CN=bef6044fc335dc741d3aee478a6c422ba982b095
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c4:56:5a:f8:c7:bd:21:5e:c9:f4:f6:60:24:
2a:34:a5:67:84:f6:d8:92:d7:38:3a:15:e0:b7:53:
b5:25:b9:71:d7:6f:f8:a2:bc:9c:d5:fa:72:59:e5:
d7:75:cb:20:f8:34:f1:fe:8f:79:dd:c7:4c:5e:2e:
9c:16:ce:06:7c:ec:b3:70:52:af:36:47:34:9d:ab:
a0:06:c2:ef:6f:e8:f5:84:1b:b8:bf:4b:9e:de:5f:
10:c1:06:30:e9:83:f3:4c:94:d3:f6:05:4f:80:5a:
af:e1:07:94:bc:72:96:4c:3a:ba:eb:63:25:bd:57:
95:21:28:91:e6:cf:d3:f9:9b:f0:61:a9:2d:82:90:
2b:29:3a:d2:3b:3d:87:0b:17:51:32:e4:26:7d:44:
87:b6:d8:e3:42:f2:da:98:e8:bf:67:6a:e4:e4:76:
17:a1:de:7f:70:de:eb:e4:38:e7:22:66:79:31:c1:
4f:62:5d:b4:08:eb:52:ba:a7:66:32:40:6d:15:16:
ff:84:15:7e:5b:1c:a5:34:36:e2:f9:dd:fb:da:a6:
ea:74:28:e8:f8:64:71:a8:7d:c2:92:cf:6c:e2:b7:
01:d4:f6:4d:16:b6:7b:76:f8:6e:7a:c2:aa:f3:c0:
9d:86:81:bb:ea:e4:a9:11:05:e2:fe:34:23:8a:53:
70:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:F6:04:4F:C3:35:DC:74:1D:3A:EE:47:8A:6C:42:2B:A9:82:B0:95
X509v3 Authority Key Identifier:
keyid:7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:fe:b4:47:dc:be:5f:32:4c:08:ac:46:c4:a4:56:45:b3:ee:
d4:66:85:23:70:88:fc:41:1a:64:4c:3f:15:9f:7f:79:50:66:
6f:02:66:db:31:52:d3:5b:03:6c:45:ea:2e:48:a6:f3:d1:9e:
28:39:5e:59:2f:e8:b2:64:e1:24:98:d2:ae:f5:78:d2:e5:c7:
33:1b:81:68:ff:8d:4a:8c:c9:a7:bb:fc:66:7f:1a:9a:31:2d:
ff:09:b2:b8:87:48:4a:b7:a2:82:ea:d6:c0:aa:95:c4:a0:dd:
e0:42:c7:38:4a:6f:78:39:75:3f:cb:f1:ea:38:7a:7c:58:cb:
81:3d:d7:8c:a9:a9:55:89:96:04:ea:00:f1:2d:ce:10:f9:f1:
48:91:81:4a:9e:31:c1:b7:2f:dc:7f:70:0d:78:3c:59:46:bb:
ff:b0:08:d6:2c:0b:d8:28:57:f2:dc:0e:57:29:cf:d5:af:c3:
c9:d8:8f:1d:fe:dc:90:05:52:a6:86:fb:01:03:99:b9:c0:3e:
dc:a9:21:bf:45:d9:30:6a:16:15:2b:2e:dd:4f:e9:b6:73:62:
7f:60:21:6a:80:5b:71:6c:fb:d0:b3:9a:d7:f6:d4:7b:54:a7:
52:35:68:ac:92:9c:16:0a:2c:e0:c8:46:68:76:74:49:e9:3b:
c9:6a:0f:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 21:19:32 2025 by rpki-client