Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
File: 1-puJ82fU-5UCh3AfYtSgObf2yyA.mft (raw, json)
Hash identifier: CjZpD22pZBSYtr28nAl3neiNC+FzBHaIQBmCi/DoWqs=
Subject key identifier: DB:98:58:4B:1D:AA:80:0E:2F:84:ED:81:9E:34:A4:41:46:B3:C8:7C
Authority key identifier: FA:9B:89:F3:67:D4:FB:95:02:87:70:1F:62:D4:A0:39:B7:F6:CB:20
Certificate issuer: /CN=fa9b89f367d4fb950287701f62d4a039b7f6cb20
Certificate serial: 0196BECA0C7128513522C0884174FF65F7C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-puJ82fU-5UCh3AfYtSgObf2yyA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
Manifest number: 1342
Signing time: Sun 11 May 2025 10:00:34 +0000
Manifest this update: Sun 11 May 2025 10:00:34 +0000
Manifest next update: Mon 12 May 2025 10:00:34 +0000
Files and hashes: 1: 1-puJ82fU-5UCh3AfYtSgObf2yyA.crl (hash: QgM9K/R/DBWJBZeqGptDNqauS3JBmGa3LzKhokhbmoQ=)
2: BkhUnEeKLpdw7zqQsCW8fb_TG_I.roa (hash: krWgcFHtgzZmGIlUNG6InVr0KfezPC+cFYoPcdTkKaw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-puJ82fU-5UCh3AfYtSgObf2yyA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:ca:0c:71:28:51:35:22:c0:88:41:74:ff:65:f7:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa9b89f367d4fb950287701f62d4a039b7f6cb20
Validity
Not Before: May 11 10:00:34 2025 GMT
Not After : May 12 10:00:34 2025 GMT
Subject: CN=db98584b1daa800e2f84ed819e34a44146b3c87c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:53:38:ac:de:dc:ec:d9:5b:a1:f3:d4:d3:32:
46:fc:09:1c:7b:bb:f3:ea:44:55:ca:05:ab:76:95:
29:ba:d1:fa:1c:c9:ea:7a:1f:e3:43:d4:d7:8c:09:
ad:f1:a6:31:11:81:8d:f1:6f:07:c9:3c:1a:2f:87:
16:6a:11:e8:ee:2f:3f:0c:68:be:92:72:18:23:8d:
a1:b7:ad:e7:a5:11:4b:3c:d1:e4:4e:72:02:13:f6:
f1:88:4f:5f:8e:76:8c:22:35:d2:d0:36:27:b2:9b:
21:8a:28:ef:0e:96:71:69:78:22:e6:60:9b:9c:0a:
dc:66:bc:b8:17:ff:d5:79:dc:9a:2f:c6:36:d8:d6:
7a:12:63:58:77:47:a2:18:30:7c:96:47:c7:6c:70:
2a:8f:71:55:34:f2:1e:77:e6:90:c5:7b:04:a4:e7:
0b:de:45:cd:c0:40:5e:14:93:d4:e3:3e:07:65:40:
aa:bf:aa:ce:a1:06:d1:8d:b3:88:01:23:e7:98:bf:
0e:cc:67:40:c3:fc:7d:68:56:57:4e:5e:5d:c4:6d:
10:82:72:16:38:13:29:ff:4d:7c:32:e4:ac:9c:8d:
b1:08:e6:c1:e0:64:04:f1:31:85:29:f8:87:a4:29:
6d:86:1a:c5:1e:15:ee:00:0a:ad:84:5c:5d:e7:63:
60:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:98:58:4B:1D:AA:80:0E:2F:84:ED:81:9E:34:A4:41:46:B3:C8:7C
X509v3 Authority Key Identifier:
keyid:FA:9B:89:F3:67:D4:FB:95:02:87:70:1F:62:D4:A0:39:B7:F6:CB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-puJ82fU-5UCh3AfYtSgObf2yyA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:38:9c:36:a1:09:45:84:87:25:5d:98:6d:f4:a6:62:d6:d2:
4e:7c:eb:93:1c:83:de:15:41:5c:dc:8d:35:46:f9:76:3c:d1:
2b:40:3a:01:94:9a:2b:8d:1d:1a:a5:41:fa:c2:c0:f0:f5:54:
f9:a8:09:a1:91:0a:94:98:98:75:e7:ba:ff:93:73:0a:f0:3c:
60:96:17:60:4b:64:17:5a:3f:48:57:7d:f7:92:1e:fe:1c:f1:
eb:3b:63:22:c6:f3:5e:45:98:fa:1b:0e:b5:11:a8:cf:59:ab:
1f:35:0e:17:5d:65:a0:07:5c:47:45:28:28:d7:19:f6:34:05:
f5:aa:6c:0a:fc:02:8a:d2:22:8a:6b:91:5f:de:c2:a8:17:82:
ca:8e:26:b9:6a:1a:e6:a9:1e:21:36:0e:08:7f:9f:63:41:0d:
77:88:7c:3f:dc:d8:0c:c0:83:8d:47:fd:72:d6:47:64:2c:a7:
00:3c:24:05:3b:b8:73:e9:64:d0:fe:23:5b:e3:61:9e:cc:0c:
25:cf:6a:7b:09:3e:09:f9:6a:d8:15:6e:f9:f4:a3:ef:08:8b:
91:f8:cf:71:aa:8e:f4:1f:36:1e:f1:4e:8a:27:9c:4b:06:b0:
b2:16:73:c8:a5:36:a5:54:a5:47:c9:e8:36:e9:3f:79:a1:93:
62:f7:9b:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 15:34:36 2025 by rpki-client