Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.mft
File: 1XfOFDQjLYCBldDKcKs5HfsHry0.mft (raw, json)
Hash identifier: guU2V7DieHjza5oyzwWSu7iTQf8+Zv6IHTNlUFthsNs=
Subject key identifier: 3E:EF:D3:FB:A3:23:A5:09:3F:42:9E:53:BB:13:FC:EE:1C:C6:82:53
Authority key identifier: D5:77:CE:14:34:23:2D:80:81:95:D0:CA:70:AB:39:1D:FB:07:AF:2D
Certificate issuer: /CN=d577ce1434232d808195d0ca70ab391dfb07af2d
Certificate serial: 01964C34C2761B8B22A8F7DBBF6F41EEB512
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1XfOFDQjLYCBldDKcKs5HfsHry0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.mft
Manifest number: 14FA
Signing time: Sat 19 Apr 2025 04:00:48 +0000
Manifest this update: Sat 19 Apr 2025 04:00:48 +0000
Manifest next update: Sun 20 Apr 2025 04:00:48 +0000
Files and hashes: 1: 1XfOFDQjLYCBldDKcKs5HfsHry0.crl (hash: 0MsOe8nkpvnZNhDD7VxQ4T8/wW+d4xvqUDE1MMB2Coc=)
2: HcDxgF3nqk8cgEWN2FjSYTqgWIU.roa (hash: zRQPtKl4Mi8+zyT9yY1R1Qmmn1wM9W5eQbvQLliU+lY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1XfOFDQjLYCBldDKcKs5HfsHry0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:34:c2:76:1b:8b:22:a8:f7:db:bf:6f:41:ee:b5:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d577ce1434232d808195d0ca70ab391dfb07af2d
Validity
Not Before: Apr 19 04:00:48 2025 GMT
Not After : Apr 20 04:00:48 2025 GMT
Subject: CN=3eefd3fba323a5093f429e53bb13fcee1cc68253
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:63:71:af:34:f2:48:03:d6:d4:f5:02:bc:73:
f4:9e:82:88:2b:e8:9c:0d:e8:08:1f:ea:d4:36:0a:
c4:51:5c:5b:8d:19:c8:58:59:e7:a4:fa:d6:8f:cd:
1c:a2:2b:f6:d9:44:3e:8b:26:b1:c0:7b:49:a5:38:
17:21:44:c9:e0:f9:7d:17:1f:e3:ac:66:3a:eb:07:
2e:e5:be:ba:66:14:a3:c4:51:5e:f7:c7:5f:d6:1a:
a0:8c:9c:a3:01:07:b3:23:54:0a:fc:64:af:70:06:
2e:9e:62:a6:66:1d:f9:35:9b:02:a0:9d:57:6f:c0:
ac:6e:d3:e1:cd:b8:01:00:ef:d0:2a:5f:aa:d4:8d:
7a:18:84:91:cb:aa:2e:9c:f6:5a:7b:5c:09:0a:8f:
66:e3:6e:4f:92:57:3e:c9:d4:c1:51:e4:34:4a:93:
76:3c:46:49:ee:2b:12:3c:eb:4b:3f:97:39:a1:4f:
45:96:be:79:32:5a:09:53:95:29:e3:57:b8:2a:d6:
d1:24:57:18:3c:84:2e:6d:fa:cf:04:ea:ed:c5:0f:
3b:ae:b6:d8:46:a5:ea:18:75:a0:1c:99:4c:89:7b:
e5:a1:96:6f:f0:cc:0e:08:5b:a4:94:84:35:06:27:
00:f5:4e:ff:2b:b8:c5:35:3b:e2:5c:0c:d7:a6:2e:
bb:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:EF:D3:FB:A3:23:A5:09:3F:42:9E:53:BB:13:FC:EE:1C:C6:82:53
X509v3 Authority Key Identifier:
keyid:D5:77:CE:14:34:23:2D:80:81:95:D0:CA:70:AB:39:1D:FB:07:AF:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1XfOFDQjLYCBldDKcKs5HfsHry0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/0d615e-24db-47ef-9aa3-60e6b148d28b/1/1XfOFDQjLYCBldDKcKs5HfsHry0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:e4:d3:aa:4b:bd:a5:9b:a2:11:80:6b:4f:6b:4f:56:49:b9:
a3:bf:30:97:48:0f:25:d2:bf:d7:ab:f8:51:38:f6:63:cd:80:
b4:2f:de:e4:79:fd:95:a4:78:37:01:1c:ca:39:b2:4c:07:0c:
d2:ee:67:d8:3e:fd:25:ca:b2:1f:29:9e:e6:a3:85:fb:09:b6:
bd:de:45:35:c9:93:63:fc:6c:c5:8f:33:a3:51:5e:ff:b7:0c:
ad:ff:c6:10:87:37:1f:e2:aa:33:db:fb:08:21:d7:1b:18:be:
aa:66:db:7e:b9:98:e0:34:75:0e:16:09:67:63:98:e0:d3:23:
9d:8e:e1:ba:17:41:6d:86:52:93:5d:3e:f4:00:7e:c5:c9:8c:
08:26:ba:74:a7:cd:6e:eb:c0:60:96:ab:9b:f3:29:90:3d:75:
92:5b:01:a2:29:e1:71:4b:fe:55:74:80:bc:09:24:ad:f8:27:
ad:3e:3d:60:4d:30:36:08:dc:b9:1f:45:7b:9d:4c:01:a4:77:
14:43:47:c5:22:14:ab:a5:99:d1:71:59:6b:e9:21:72:af:8b:
5e:1a:d2:f0:6f:66:94:e9:c3:8c:6e:eb:e0:2d:77:9b:a4:d0:
95:bc:a6:c3:c9:2d:58:7f:bb:f0:43:54:cb:4d:18:bb:7c:2b:
cd:4e:05:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 13:58:49 2025 by rpki-client