Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft
File: sCqa8vxf6TxDFIqssTxRvpBMjkw.mft (raw, json)
Hash identifier: MW2k4xoGeRy2d6rYobu7cUjwDG4xHnzY3frZx33U13o=
Subject key identifier: D8:56:2A:DC:56:93:80:90:A4:9E:DE:D2:A3:C9:5D:4E:AF:5F:6F:60
Authority key identifier: B0:2A:9A:F2:FC:5F:E9:3C:43:14:8A:AC:B1:3C:51:BE:90:4C:8E:4C
Certificate issuer: /CN=b02a9af2fc5fe93c43148aacb13c51be904c8e4c
Certificate serial: 019652A4ADFBBC232F8D2A2D355128CEFB1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sCqa8vxf6TxDFIqssTxRvpBMjkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft
Manifest number: 0337
Signing time: Sun 20 Apr 2025 10:00:46 +0000
Manifest this update: Sun 20 Apr 2025 10:00:46 +0000
Manifest next update: Mon 21 Apr 2025 10:00:46 +0000
Files and hashes: 1: RLYBpjQJ_nWnvtQxzs5jpfZ53LI.roa (hash: WydSL9s2ghSAkXvNPUv+LZJE2s3aihvIV2UvrS6hIBw=)
2: sCqa8vxf6TxDFIqssTxRvpBMjkw.crl (hash: Y3jATkcasTq7FARndojNttd4vPHg/ksedMZV4ZMgSLM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft
rsync://rpki.ripe.net/repository/DEFAULT/sCqa8vxf6TxDFIqssTxRvpBMjkw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 10:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:a4:ad:fb:bc:23:2f:8d:2a:2d:35:51:28:ce:fb:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b02a9af2fc5fe93c43148aacb13c51be904c8e4c
Validity
Not Before: Apr 20 10:00:46 2025 GMT
Not After : Apr 21 10:00:46 2025 GMT
Subject: CN=d8562adc56938090a49eded2a3c95d4eaf5f6f60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b9:9b:3f:20:66:25:9f:95:8a:29:c4:31:ba:
cf:52:c4:2c:6d:9d:05:a6:e9:03:c9:97:82:e5:1a:
da:85:01:b8:c5:be:59:e8:1a:a0:08:a6:7b:56:72:
1d:9d:12:fc:d3:e9:fc:3d:82:74:38:0a:7a:50:e7:
a3:f8:e1:2d:0a:f7:e3:78:d4:47:60:bd:82:8d:cf:
07:36:0a:9c:c0:68:46:ae:6c:d6:ce:6c:b8:ee:6a:
e6:b8:cf:39:a9:27:42:32:a2:b5:99:d7:50:90:d4:
14:a3:83:b8:50:01:2e:35:8a:f5:8b:5b:15:33:20:
c0:c6:da:77:a3:af:3e:ab:8e:a8:23:38:27:f2:5d:
7f:12:73:dc:b9:04:2b:c0:11:65:41:27:b8:8b:c4:
ed:e3:8d:f4:18:5c:01:25:cc:4e:f1:84:98:bf:5a:
02:20:31:5c:5f:dd:fe:b2:7d:d7:d9:0d:2e:89:33:
89:90:f2:8f:08:8d:e9:6c:7a:1a:ca:8c:82:93:63:
1f:18:15:fd:49:da:88:9c:c8:f2:3b:30:00:d5:af:
7f:30:76:6f:f1:66:1d:35:be:e9:83:11:a7:aa:a1:
e4:f4:42:3c:ed:ab:9f:a4:99:23:52:17:1b:9d:fd:
fa:41:2a:17:8d:21:1f:de:e3:c3:9e:56:2f:f5:b1:
2a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:56:2A:DC:56:93:80:90:A4:9E:DE:D2:A3:C9:5D:4E:AF:5F:6F:60
X509v3 Authority Key Identifier:
keyid:B0:2A:9A:F2:FC:5F:E9:3C:43:14:8A:AC:B1:3C:51:BE:90:4C:8E:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCqa8vxf6TxDFIqssTxRvpBMjkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:50:ca:08:54:f3:31:a7:5c:3d:ad:ce:6a:37:66:58:7e:46:
b8:95:98:84:e6:f1:7d:a7:77:3f:a0:00:6f:b2:79:cd:7b:6e:
02:ad:56:27:4e:bf:c4:62:e9:5f:ea:e8:5e:4d:85:30:12:31:
ff:0a:9a:04:a9:a9:93:16:72:5d:2c:e9:b0:9c:74:b0:7b:49:
42:8a:ee:88:83:3e:58:3a:54:c2:94:1e:d3:22:2f:d5:14:64:
b4:1b:6b:63:a1:00:09:9a:31:1b:62:51:42:42:9f:14:5a:74:
1e:77:22:b1:7e:2a:75:10:0c:5f:c3:8a:f8:63:04:60:6d:b9:
76:49:d6:46:e7:1e:7d:d5:6b:44:a3:15:e2:ab:9e:f7:40:c0:
45:ae:ea:e0:27:09:7e:be:ca:32:4a:24:1c:69:91:b3:0e:64:
33:62:56:3e:eb:f9:07:03:51:3e:3a:b2:95:da:79:ad:1d:02:
a6:99:21:3c:9b:61:27:ef:51:d2:57:dc:f4:a8:08:0f:47:e7:
87:8a:38:89:8c:f3:1e:d9:b1:06:ad:c0:75:d2:c8:23:1c:db:
d3:19:cf:75:6e:1a:7c:86:f4:98:c5:2b:52:7a:96:ce:07:57:
ef:9e:7c:27:c9:fa:81:39:f1:c9:87:db:ce:61:81:fe:c1:de:
31:e0:49:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 19:29:02 2025 by rpki-client