Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
File: S2MqdYtZMJ6GEInWVTruBnprNT8.mft (raw, json)
Hash identifier: lR2hvpWByEw+x59TP1cK7ilN9bXyMDLnGuUEISonSLE=
Subject key identifier: 0B:29:DA:9B:6F:F8:83:BE:0F:1D:44:F0:50:67:CA:5E:F7:21:C1:2A
Authority key identifier: 4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F
Certificate issuer: /CN=4b632a758b59309e861089d6553aee067a6b353f
Certificate serial: 0196C0B82B4F977AEF4341F76C3A8230F805
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
Manifest number: 1537
Signing time: Sun 11 May 2025 19:00:17 +0000
Manifest this update: Sun 11 May 2025 19:00:17 +0000
Manifest next update: Mon 12 May 2025 19:00:17 +0000
Files and hashes: 1: BFmKhRFnCi2AJyutOk-Yxml708c.roa (hash: 30fgE+QkDlz/nOmXI9WzL3BXCW8rLDMyhnps4H9jCSs=)
2: S2MqdYtZMJ6GEInWVTruBnprNT8.crl (hash: y3mqaqsiRg29OUxd7iF7G0iHAqaVNlaf1SKOq1Za0jw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c0:b8:2b:4f:97:7a:ef:43:41:f7:6c:3a:82:30:f8:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b632a758b59309e861089d6553aee067a6b353f
Validity
Not Before: May 11 19:00:17 2025 GMT
Not After : May 12 19:00:17 2025 GMT
Subject: CN=0b29da9b6ff883be0f1d44f05067ca5ef721c12a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:43:93:3f:45:44:a4:ee:b6:aa:01:45:39:b0:
73:32:e5:b8:44:af:34:30:c2:40:33:ea:d9:45:0b:
ca:63:94:d9:d4:96:f4:39:0a:71:1f:13:f8:0c:41:
ae:ce:e6:a7:10:c1:d1:ac:5d:09:da:0a:f4:c8:a8:
fd:dd:a0:29:0e:81:11:ac:60:68:40:27:9d:a6:1a:
28:af:bc:11:42:10:77:3a:35:40:d8:98:ac:0d:8b:
6c:93:41:10:e2:38:90:12:42:9d:47:43:46:aa:e5:
14:7a:19:30:81:b8:74:a7:13:2d:05:ad:c5:aa:91:
45:29:74:f8:08:07:1e:29:0e:90:b8:79:3c:ed:64:
6f:85:e0:de:95:60:f6:3a:2b:b1:86:f7:68:a6:c7:
30:21:69:78:00:57:d9:85:8f:ba:8e:5b:15:d7:5d:
e3:01:5c:19:98:50:e3:9f:47:1c:a6:54:8a:8a:f8:
e8:b4:5b:70:07:ff:8b:db:38:16:08:67:41:66:40:
8c:d6:45:02:d2:5d:04:e5:af:94:e6:93:67:83:f6:
85:a0:98:99:72:07:25:7a:24:bc:94:a2:31:38:3b:
b3:63:d6:e3:2d:4a:c1:44:c4:34:18:0a:57:30:d8:
93:8a:0f:3e:3a:ef:da:33:c7:b0:68:10:58:fa:a3:
7a:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:29:DA:9B:6F:F8:83:BE:0F:1D:44:F0:50:67:CA:5E:F7:21:C1:2A
X509v3 Authority Key Identifier:
keyid:4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:9e:ef:51:0f:7d:73:44:4e:63:7d:02:ca:34:dd:75:05:c0:
02:c3:93:c4:76:f4:04:06:4c:5c:23:ee:92:75:da:a5:60:f6:
bf:86:fa:e1:c0:d3:ca:78:33:2e:d3:49:1e:c0:64:01:43:51:
de:de:d7:7e:40:32:ab:02:fc:c7:c4:1b:3c:14:1c:c4:c2:1d:
77:9a:ff:59:ba:c2:ef:b2:a3:bf:cc:33:3c:6a:31:5b:75:d9:
b1:f9:53:8d:09:d2:6f:b4:b3:70:96:6d:be:bd:c8:b8:34:28:
78:e5:5d:f0:61:1e:16:ee:0e:88:98:28:5d:5b:0a:4c:f5:c1:
40:71:1f:92:65:67:7f:c8:0b:aa:85:51:5e:75:94:0a:b3:c3:
1b:6b:f7:0c:7d:6f:f4:e5:89:54:16:62:07:01:43:6f:e1:48:
c9:1b:ee:b0:63:4d:3b:52:f9:08:06:a3:a7:e0:aa:09:70:c9:
8a:97:c9:70:34:c5:2f:89:34:a3:d5:bd:ce:23:e2:c0:09:f8:
64:a5:e4:9a:43:4b:ba:c3:73:8f:64:cb:2a:35:69:97:19:1f:
8a:67:58:d3:d9:84:9a:e2:6e:dc:ba:17:f6:df:77:6e:bc:df:
19:54:ac:c8:bb:82:04:14:d3:5e:5b:c5:36:eb:b5:cc:4a:0e:
8a:34:ab:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 21:14:40 2025 by rpki-client