Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
File: 0627YSN4H_DjVBNEaseTHP9KSQ0.mft (raw, json)
Hash identifier: Q1DX5AwA6XTt7JWOy0LT6PYZRiq3IIcHumLCzat7yTw=
Subject key identifier: 9B:FA:DB:2A:1C:BA:57:FC:F0:1D:87:DA:F5:B0:D2:4E:A5:16:49:DE
Authority key identifier: D3:AD:BB:61:23:78:1F:F0:E3:54:13:44:6A:C7:93:1C:FF:4A:49:0D
Certificate issuer: /CN=d3adbb6123781ff0e35413446ac7931cff4a490d
Certificate serial: 01964CA236239E70764E1D817019DCA0E78D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
Manifest number: 14FA
Signing time: Sat 19 Apr 2025 06:00:21 +0000
Manifest this update: Sat 19 Apr 2025 06:00:21 +0000
Manifest next update: Sun 20 Apr 2025 06:00:21 +0000
Files and hashes: 1: 0627YSN4H_DjVBNEaseTHP9KSQ0.crl (hash: 8Bk088kIyLpkeAIIfMJm4k3RBDt6yT2OQi1QzzLcQ3k=)
2: yWi1Y-nakOmyfRqesRZIzBZCSpo.roa (hash: XIYZfLdl8kZlRiSAj90PT17pvRJ8h9U9zRjI6i+BCkM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:a2:36:23:9e:70:76:4e:1d:81:70:19:dc:a0:e7:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3adbb6123781ff0e35413446ac7931cff4a490d
Validity
Not Before: Apr 19 06:00:21 2025 GMT
Not After : Apr 20 06:00:21 2025 GMT
Subject: CN=9bfadb2a1cba57fcf01d87daf5b0d24ea51649de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:3f:95:c8:ce:a8:10:cc:f4:aa:e9:2e:a9:08:
0e:72:91:46:cb:1f:dc:f5:b4:9b:e8:13:4e:49:a7:
fd:9d:f5:a2:68:87:5d:76:f9:46:7f:77:3b:71:9a:
d5:42:cb:b1:e4:ed:49:1e:1e:a5:15:e5:ca:1a:c1:
42:76:fe:62:b2:7a:4d:74:a9:2e:25:63:f4:12:82:
b8:50:53:d0:eb:6e:94:0f:37:16:1f:9f:fb:94:c8:
ca:7a:7a:22:ae:3f:6b:18:ba:09:95:79:5f:04:d7:
7d:50:39:92:20:52:82:4f:bd:1a:02:57:f2:eb:b2:
b1:1d:3b:e2:07:94:8a:50:78:67:ce:cc:be:68:67:
70:be:89:8a:1b:6d:9b:a9:46:1e:db:28:fc:22:4c:
69:2c:c6:b4:fc:09:df:1a:7a:fe:38:30:6c:d3:4f:
e2:2f:16:70:f8:a2:45:21:5b:42:2b:12:3e:61:33:
f5:97:bb:f6:29:e3:16:54:72:d6:26:16:5e:d7:14:
ae:9c:e5:bd:0c:02:2c:f1:5b:bb:9c:9c:bb:64:80:
b3:8a:04:fc:18:8c:95:a4:9e:82:2c:68:0f:4d:27:
2b:10:44:f1:ae:be:64:e1:ed:67:ea:40:6c:c2:ba:
cb:15:c0:2b:85:58:f7:d6:2e:b7:69:09:8a:4d:74:
eb:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:FA:DB:2A:1C:BA:57:FC:F0:1D:87:DA:F5:B0:D2:4E:A5:16:49:DE
X509v3 Authority Key Identifier:
keyid:D3:AD:BB:61:23:78:1F:F0:E3:54:13:44:6A:C7:93:1C:FF:4A:49:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:3b:73:a5:36:29:70:6a:6a:d9:25:16:ee:6e:b2:0a:e0:d6:
4e:fc:ef:ab:4d:0d:d0:70:5a:5b:6c:92:82:6d:66:69:50:3c:
0a:10:fc:c5:6b:c1:1b:8f:cf:92:0f:7b:ac:67:ba:58:ff:8e:
0d:a2:db:e9:e1:5c:cf:86:66:bc:de:91:af:b7:3e:63:f7:4f:
76:4d:2a:bb:91:1e:80:63:45:6d:10:12:2e:73:fc:55:7b:67:
d0:36:7b:a3:07:fc:98:3a:93:ed:c5:38:44:e9:8e:57:fb:b3:
84:24:b5:e7:2c:33:75:cc:8e:98:2e:d3:9a:45:bc:29:9f:c7:
18:dc:4a:1c:bb:a7:fd:3e:25:3a:72:73:d2:f8:e4:e3:d9:c4:
d1:f7:f3:d1:2f:2e:c2:f5:89:d8:b8:52:d2:51:35:79:b0:ac:
07:8a:85:17:70:d7:1d:05:d1:27:97:f0:72:da:8d:d5:a3:3a:
db:c4:2c:23:a0:3e:39:cf:dd:d2:f4:de:47:4e:7b:10:f0:61:
55:0f:56:b7:d0:5f:d6:95:58:e8:f0:80:9a:69:e2:27:be:6f:
08:38:67:bb:cb:3f:31:87:bb:a1:bf:19:58:d7:0a:0a:c8:f1:
87:58:50:84:fd:b6:3d:14:4b:42:0b:44:15:aa:5c:ef:4c:10:
a5:f9:22:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 10:24:45 2025 by rpki-client