Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
File: cF3hUpBmZK56yfIIesTQBoWl1_A.mft (raw, json)
Hash identifier: 1wLw1cdyg9TKzCIn+L+prMJNYd2apspEXoiGlUk4VGo=
Subject key identifier: 02:3D:2B:B0:AB:31:3F:C1:4E:20:C2:BB:F3:01:DA:88:96:22:DB:15
Authority key identifier: 70:5D:E1:52:90:66:64:AE:7A:C9:F2:08:7A:C4:D0:06:85:A5:D7:F0
Certificate issuer: /CN=705de152906664ae7ac9f2087ac4d00685a5d7f0
Certificate serial: 01958B84528789EE03EF479497E9EBD67679
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cF3hUpBmZK56yfIIesTQBoWl1_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
Manifest number: 1497
Signing time: Wed 12 Mar 2025 18:00:59 +0000
Manifest this update: Wed 12 Mar 2025 18:00:59 +0000
Manifest next update: Thu 13 Mar 2025 18:00:59 +0000
Files and hashes: 1: TKoxALo9u8PRYJQQjNMDBzOManE.roa (hash: e6LRQQhGn2Pm43QUsi5AMgfehOrdW1tISUFnEIiJny4=)
2: cF3hUpBmZK56yfIIesTQBoWl1_A.crl (hash: 23ibTuMX8MREVDVjCknuB7yOTD31Ax8spohDTtr3RVU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/cF3hUpBmZK56yfIIesTQBoWl1_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 18:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:84:52:87:89:ee:03:ef:47:94:97:e9:eb:d6:76:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=705de152906664ae7ac9f2087ac4d00685a5d7f0
Validity
Not Before: Mar 12 18:00:59 2025 GMT
Not After : Mar 13 18:00:59 2025 GMT
Subject: CN=023d2bb0ab313fc14e20c2bbf301da889622db15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:39:99:b4:eb:c8:55:d5:08:7a:08:bc:b8:ea:
be:ef:b4:ff:ac:a3:45:60:a7:e4:3a:cf:59:81:46:
6d:21:38:3e:e5:38:ab:6f:b2:dd:11:1f:77:67:83:
bd:7b:dc:26:34:c7:fb:d6:d7:b9:de:0c:5d:2a:d3:
7b:3e:96:ce:3d:4d:e2:f8:56:09:48:cf:6f:7b:e2:
12:a0:98:52:d5:f9:1d:0e:21:b1:41:d1:17:db:12:
10:3a:a6:bc:41:33:f3:29:a6:d5:9f:91:d4:dc:63:
9a:88:01:26:c2:95:8e:58:76:bb:3b:1a:1a:58:84:
da:94:32:ce:f8:ef:53:3a:9d:0d:2c:68:46:13:e6:
f1:42:66:3a:da:a4:b3:ae:43:66:af:f1:d3:fb:26:
ad:81:99:c2:23:e4:dd:55:39:9a:59:30:66:1d:49:
9b:0c:7c:92:8a:4c:d0:05:58:cc:d3:fd:53:7c:83:
ac:37:f5:9b:7b:6a:7d:b7:d9:61:a9:a5:5e:b1:30:
7f:20:59:4f:27:85:2f:8e:b6:6c:75:a7:ff:5e:eb:
fe:21:70:79:c4:ca:ef:11:19:4a:53:c1:eb:a5:b9:
6a:a1:87:1e:f2:21:2e:cc:27:67:e0:ad:ee:0c:81:
dc:c3:61:68:4f:2d:e1:17:23:e1:2d:df:5a:7d:1d:
1b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:3D:2B:B0:AB:31:3F:C1:4E:20:C2:BB:F3:01:DA:88:96:22:DB:15
X509v3 Authority Key Identifier:
keyid:70:5D:E1:52:90:66:64:AE:7A:C9:F2:08:7A:C4:D0:06:85:A5:D7:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cF3hUpBmZK56yfIIesTQBoWl1_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:c0:8d:bf:1b:02:6d:03:b1:85:7d:01:6a:6e:07:31:8c:f5:
d9:ec:af:a8:d6:03:62:9a:7f:fb:9b:6d:49:b6:0f:fe:18:3d:
6b:59:07:ec:01:1d:03:ad:d4:62:f6:2f:a3:80:10:8d:8b:fa:
0e:3a:b8:6b:b7:4d:47:91:88:60:b3:4c:f1:c5:04:63:8c:6d:
50:7d:da:ad:2a:8a:4b:59:bd:9b:d6:42:b6:01:a3:d5:25:8b:
56:24:7c:8b:11:36:1f:fa:03:68:69:cf:e4:ea:c9:f9:01:90:
6a:27:9c:54:94:29:4c:49:27:48:8e:e2:72:e6:3d:a5:6b:91:
8d:af:b0:78:60:c5:cf:a7:c9:e2:d3:54:9b:85:94:c9:4e:13:
79:eb:36:b2:df:5f:50:59:47:63:69:62:57:72:5d:ef:3f:bd:
a2:d0:8c:5c:95:eb:c6:9a:34:26:42:36:05:fb:10:70:23:df:
67:f5:b1:3e:5c:88:b3:4a:33:db:60:d7:e0:6c:30:b1:cf:f2:
e2:f4:df:36:a0:18:76:19:ba:1f:d4:62:e2:dc:55:de:41:b0:
02:76:7e:94:a1:27:60:dc:22:a2:f1:63:df:8a:9d:ae:8d:bd:
bf:e3:7c:d3:aa:1f:a4:96:97:09:26:f4:9c:ab:bd:b2:d0:bc:
28:da:91:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:33:51 2025 by rpki-client