Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft
File: 0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft (raw, json)
Hash identifier: U/U/qG01C+VtBG+Uuw+h7qrcuAfQDcupMSOWMjqOqy8=
Subject key identifier: E2:A6:28:26:15:B4:F0:E2:21:12:53:1A:91:63:9C:28:9E:86:49:09
Authority key identifier: D2:43:22:B2:D0:A7:94:FD:07:6B:85:E8:DC:57:8A:BB:0D:03:EC:40
Certificate issuer: /CN=d24322b2d0a794fd076b85e8dc578abb0d03ec40
Certificate serial: 01962B97C4F378530DEB3714EFF7D1B39957
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft
Manifest number: 047D
Signing time: Sat 12 Apr 2025 20:01:28 +0000
Manifest this update: Sat 12 Apr 2025 20:01:28 +0000
Manifest next update: Sun 13 Apr 2025 20:01:28 +0000
Files and hashes: 1: 0i_jhQqN2iNg5AEP50J1N6ocU14.roa (hash: dte6GhHBF0dhj/nHMGGQvO/MzVf6vGP1TT8x/x47jYs=)
2: 0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl (hash: FJfctzxOuD7MiuZNyU/s6YXQSkbKu/rrIMuqrOdrPgQ=)
3: wH2BXhQbp4RbWEqazf0ETM0OAOI.roa (hash: WPj1rnPevOFK6Wz2Mo2etzdEIyu2IX1IvghxSjU5v1Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 14:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:2b:97:c4:f3:78:53:0d:eb:37:14:ef:f7:d1:b3:99:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24322b2d0a794fd076b85e8dc578abb0d03ec40
Validity
Not Before: Apr 12 20:01:28 2025 GMT
Not After : Apr 13 20:01:28 2025 GMT
Subject: CN=e2a6282615b4f0e22112531a91639c289e864909
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:cc:42:57:be:02:ab:95:46:a0:67:8c:52:68:
4d:8f:0f:d1:49:65:21:18:7a:d2:1a:54:f8:f2:f3:
ac:80:4b:c2:a8:74:b9:bc:49:b6:02:ef:41:69:bb:
8b:11:7c:53:f2:5f:83:2b:ce:37:98:61:45:46:85:
b1:59:4f:04:7d:ac:12:d0:16:dd:c9:aa:69:ff:c1:
7d:a0:1b:65:4e:3e:12:ca:46:ff:f5:0d:12:4f:70:
0a:d4:9f:bc:2c:86:4d:fc:8f:06:23:b8:2b:ed:77:
30:27:07:4d:3a:f4:c1:3d:4f:ea:ed:f6:01:7d:42:
3d:7a:ce:7c:26:d0:02:02:32:e1:9f:7b:c8:df:eb:
68:6d:3c:58:c3:80:3a:27:c0:16:ba:78:b3:d0:9a:
e3:9f:a7:df:66:4e:f6:73:ec:fc:c5:47:f9:0b:f2:
2c:34:cf:93:d9:26:d2:73:cd:26:90:86:5e:d1:77:
7f:cf:eb:fa:ae:57:2d:69:6f:d1:a0:41:94:62:9c:
be:92:77:99:13:d2:50:eb:30:a8:9f:3d:c0:8d:26:
2f:8d:cd:66:4a:82:38:ee:89:40:ff:32:25:3e:f2:
17:2a:22:3c:70:23:56:b2:49:15:b4:08:e2:d2:8b:
fe:b2:81:49:34:80:0d:25:a4:a2:fe:da:e7:d4:3d:
be:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:A6:28:26:15:B4:F0:E2:21:12:53:1A:91:63:9C:28:9E:86:49:09
X509v3 Authority Key Identifier:
keyid:D2:43:22:B2:D0:A7:94:FD:07:6B:85:E8:DC:57:8A:BB:0D:03:EC:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:a8:34:99:01:c6:bc:0f:af:e1:3b:61:d3:f4:cb:24:5b:b7:
de:fa:2d:85:7b:1c:ea:ac:bf:68:04:5f:64:15:7e:ef:a4:8e:
e5:bf:b4:58:7d:87:81:c4:50:65:3d:5b:9b:e2:fc:a2:a5:93:
e6:82:e7:74:8f:b7:d4:33:ac:9c:41:3c:c3:7a:75:06:fe:5f:
bb:94:89:db:8f:69:ca:35:24:1d:0b:e8:06:17:dd:fa:52:89:
5b:c9:fe:06:97:6c:af:b7:64:43:6a:2e:ca:17:eb:2d:6b:ea:
01:6e:1b:50:45:bf:93:37:8e:77:04:c4:29:e8:d7:39:89:25:
f4:af:f5:f6:df:69:cd:bd:f6:f0:0a:a9:10:54:ef:7e:b0:41:
c7:65:7c:1c:d8:12:e9:f4:10:1e:64:60:70:b3:b8:0a:cc:a1:
1b:94:4c:41:32:0a:a5:fd:cd:ee:0f:72:bc:6f:8b:22:75:a9:
91:6d:75:b4:fc:75:0c:18:82:f8:ca:7e:61:b2:5b:1c:05:23:
aa:2d:32:ec:20:3e:13:6f:9b:28:ec:3a:b2:38:e5:8e:4d:2b:
68:a7:91:06:8b:71:e1:12:b1:c3:22:45:63:01:4d:27:e9:18:
e6:49:b0:01:4c:c5:05:85:e2:ec:93:d2:ca:f1:dd:26:d8:ff:
ea:5e:79:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 23:09:52 2025 by rpki-client