Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
File: sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft (raw, json)
Hash identifier: vwukRRis5MEzCzlBJTSRzXo0hTQfOQozW5EGUFIpAyk=
Subject key identifier: DD:D1:B6:7E:DD:6E:78:31:D6:7A:49:DF:2D:44:F6:BC:31:C4:AC:BD
Authority key identifier: B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
Certificate issuer: /CN=b20663583a8189cbeaac88d438767997b1125549
Certificate serial: 0196B333E3F815CD2504A46BF4A2A904B2DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
Manifest number: 148C
Signing time: Fri 09 May 2025 04:00:44 +0000
Manifest this update: Fri 09 May 2025 04:00:44 +0000
Manifest next update: Sat 10 May 2025 04:00:44 +0000
Files and hashes: 1: fW2b4Mi4-jlU6WyOHwej57Bj7xc.roa (hash: gkYhGIaUuP9pIbVaUa+O+pFYYvku1Vu69Icl89ypkjo=)
2: sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl (hash: whc6Jw1x9Tb1edUxt2CIhoEIHRBjcCrQ94Hoj3dqsBw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b3:33:e3:f8:15:cd:25:04:a4:6b:f4:a2:a9:04:b2:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b20663583a8189cbeaac88d438767997b1125549
Validity
Not Before: May 9 04:00:44 2025 GMT
Not After : May 10 04:00:44 2025 GMT
Subject: CN=ddd1b67edd6e7831d67a49df2d44f6bc31c4acbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:85:5e:5f:08:03:62:5b:62:23:92:2e:e7:f5:
f1:7b:a8:55:c9:fe:ee:5d:ea:6e:37:8d:58:56:a2:
7f:ed:6d:0a:c5:95:ae:91:f8:2c:a8:b4:04:33:56:
18:c8:1f:72:81:45:b9:11:c3:20:78:78:1a:a5:cd:
76:65:c2:13:97:73:8a:81:60:61:a8:f2:02:b7:d2:
18:f8:2c:72:26:ed:c0:bb:53:da:4a:8a:66:86:ba:
46:b4:5f:58:ce:f3:ab:bf:ea:8e:28:d7:1f:05:35:
da:05:50:37:6c:21:f4:41:17:ac:ee:20:18:3c:76:
6f:ca:e8:ad:18:d5:dc:6c:69:51:15:f3:a4:88:c1:
2c:fc:d6:6d:2d:0c:f4:0e:0d:d7:1c:ca:fd:27:12:
d5:e2:1b:ae:d1:46:36:b7:f7:21:9a:0f:4a:5e:b5:
09:e1:c9:80:2b:eb:a8:f8:44:8e:a0:4c:88:13:3f:
ca:c6:09:03:e2:e0:64:60:c0:22:d5:e6:e4:76:38:
db:6e:dc:12:72:b0:0b:f0:f1:aa:aa:10:31:31:c5:
1e:2f:83:16:0c:32:94:72:33:a8:4a:81:36:de:56:
22:2e:fe:06:83:dc:ea:5c:3a:e5:17:3a:c0:bf:f1:
81:c5:14:1e:4b:61:05:4b:15:56:b6:ba:99:3a:f2:
d1:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:D1:B6:7E:DD:6E:78:31:D6:7A:49:DF:2D:44:F6:BC:31:C4:AC:BD
X509v3 Authority Key Identifier:
keyid:B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:de:1d:e5:68:f1:fd:6f:8b:c6:5f:2e:a3:36:c0:fe:65:fc:
6a:10:20:a1:45:34:4e:d2:36:bb:c6:fd:88:26:4a:b9:3c:d3:
aa:94:75:9b:3d:31:85:61:4f:2d:99:fb:ea:95:1e:4b:77:7b:
be:26:3e:9e:e7:bd:49:fe:a1:63:0d:12:6b:33:cc:99:72:ed:
42:1e:49:d1:1b:39:88:27:a6:62:83:77:8d:9c:31:a3:5f:af:
96:7f:78:fc:85:71:e2:be:9d:70:ad:e0:f8:a0:78:bf:8c:d4:
98:cf:ed:01:50:0c:bf:6d:69:8a:69:5c:ad:53:19:ad:93:5f:
57:6d:0f:7c:89:2e:e7:c0:79:83:00:2e:77:e6:6f:7a:ab:9d:
28:6e:0a:8e:31:a8:ae:de:fc:eb:fa:f2:8d:33:62:58:b0:60:
4e:b6:4e:6e:98:17:bb:74:3d:0f:ea:d6:e0:b8:b0:71:ae:a9:
91:5c:32:2e:1c:6a:86:00:56:f0:1d:4c:16:45:b2:1f:d7:fd:
91:a5:38:71:c2:ee:0d:99:a5:00:36:78:51:de:b0:70:87:ab:
6d:03:38:e9:de:d8:54:fa:b1:1b:0a:d1:fa:04:f4:ee:4d:af:
29:ef:cf:a7:22:96:2f:92:c7:b4:47:31:a3:31:6c:db:a5:37:
b4:0b:c5:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 07:11:37 2025 by rpki-client