Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
File: cF3hUpBmZK56yfIIesTQBoWl1_A.mft (raw, json)
Hash identifier: AJ+W4j2B2ZLWxBA1gbNxDkh+JXvwMKyVvA0Ok3CYuWs=
Subject key identifier: D5:27:76:21:5C:57:DB:C3:E1:F3:C1:04:4E:2E:0D:D2:12:C5:72:09
Authority key identifier: 70:5D:E1:52:90:66:64:AE:7A:C9:F2:08:7A:C4:D0:06:85:A5:D7:F0
Certificate issuer: /CN=705de152906664ae7ac9f2087ac4d00685a5d7f0
Certificate serial: 019658388DC7A73BF7F172AE50111E67405C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cF3hUpBmZK56yfIIesTQBoWl1_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
Manifest number: 1501
Signing time: Mon 21 Apr 2025 12:00:23 +0000
Manifest this update: Mon 21 Apr 2025 12:00:23 +0000
Manifest next update: Tue 22 Apr 2025 12:00:23 +0000
Files and hashes: 1: TKoxALo9u8PRYJQQjNMDBzOManE.roa (hash: e6LRQQhGn2Pm43QUsi5AMgfehOrdW1tISUFnEIiJny4=)
2: cF3hUpBmZK56yfIIesTQBoWl1_A.crl (hash: gfEsTA2RSnBKqgDaTSGiLuVWC8KW7qDXoWdHSFyPXSY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
rsync://rpki.ripe.net/repository/DEFAULT/cF3hUpBmZK56yfIIesTQBoWl1_A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:38:8d:c7:a7:3b:f7:f1:72:ae:50:11:1e:67:40:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=705de152906664ae7ac9f2087ac4d00685a5d7f0
Validity
Not Before: Apr 21 12:00:23 2025 GMT
Not After : Apr 22 12:00:23 2025 GMT
Subject: CN=d52776215c57dbc3e1f3c1044e2e0dd212c57209
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:55:0b:8a:ad:d0:59:73:b4:7c:92:9c:37:c7:
97:84:48:a8:e2:7a:56:28:70:d1:3e:b0:57:ca:86:
c9:b2:45:06:8e:a4:a8:62:b9:29:58:3a:1c:de:99:
bc:e0:36:d2:3a:e5:cf:ba:c8:f3:11:82:49:c4:5d:
f3:11:c2:2c:90:82:23:e0:c8:b8:db:5f:bd:7d:f0:
a0:81:99:a6:ae:ad:ba:da:53:0d:04:3b:f3:21:70:
ae:2c:d5:f9:bc:f1:86:fb:fe:53:2f:58:0f:47:2f:
a2:00:ed:ff:59:6f:a0:f2:b7:75:11:99:ac:7d:ea:
06:61:a9:af:7b:63:4e:e4:56:93:fd:33:24:1c:80:
b1:04:f1:0d:2d:ee:32:7b:c4:cb:7c:08:e1:42:2d:
fc:b7:40:00:03:36:fa:6e:09:da:5f:f2:a6:63:03:
ee:8f:17:ac:55:45:a4:d2:db:49:38:ef:8e:71:48:
92:7f:64:80:8b:a6:28:6e:af:a3:79:ca:0a:25:06:
f4:7a:b7:21:98:20:76:d1:9f:ef:0b:18:ab:fd:e6:
3c:59:e2:0c:57:a7:e7:ae:6e:f6:00:1f:4d:c2:4c:
56:3e:a3:43:51:60:60:6d:b6:07:9e:40:de:b4:b6:
5d:f6:a1:0b:7b:0b:c3:52:0f:06:97:28:3a:f3:1a:
84:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:27:76:21:5C:57:DB:C3:E1:F3:C1:04:4E:2E:0D:D2:12:C5:72:09
X509v3 Authority Key Identifier:
keyid:70:5D:E1:52:90:66:64:AE:7A:C9:F2:08:7A:C4:D0:06:85:A5:D7:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cF3hUpBmZK56yfIIesTQBoWl1_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/212a76-7934-4cc1-82c4-f5618477f8d4/1/cF3hUpBmZK56yfIIesTQBoWl1_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:67:de:12:37:76:3c:7e:1a:8a:f0:df:cb:e6:7c:91:4c:e1:
e1:a7:f2:f8:e8:91:a4:2a:b3:22:6b:f6:4d:89:b9:d0:c3:df:
ed:cd:af:78:68:6c:e5:27:82:cb:53:15:43:f2:d6:d0:98:d5:
78:51:a3:ea:87:25:8b:20:9c:00:e4:60:d1:e7:68:d5:01:27:
f8:a7:4b:cd:8c:40:dc:c3:99:d4:a7:62:69:8b:27:86:5d:1c:
79:c9:b5:c4:62:b2:3e:34:f4:51:94:22:34:b9:7b:c0:97:ef:
fa:cc:59:46:6c:04:e8:48:97:7f:2f:c3:99:6e:c5:76:6f:18:
ab:73:1b:ae:c0:49:52:f7:0e:53:f2:46:29:e6:b3:c1:31:ee:
90:f4:ea:80:24:b3:68:b9:59:2f:15:df:d0:b3:e5:0d:df:19:
ae:b1:95:44:bf:75:3d:5b:37:ea:da:71:88:48:4e:a1:39:f2:
8c:0b:4f:1e:2d:b0:a9:30:c8:b1:f2:be:4f:32:48:f2:8b:71:
a0:e8:d4:a3:58:13:55:16:04:c0:c4:a9:ad:dd:49:fd:7a:f3:
8e:e2:0b:fb:d0:cd:56:c7:2f:b8:64:af:e4:48:6d:27:b0:14:
7a:a0:5a:d5:fd:4d:12:85:69:0d:90:cb:a3:9b:70:13:ce:82:
9c:a0:09:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 19:19:47 2025 by rpki-client