Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.mft
File: 28sc89PzzcNCb7SfCgwz3ATIaBw.mft (raw, json)
Hash identifier: SItImZRfH5cQ1cdFqCTRK4m/XDzD9DGbuStngbEskF4=
Subject key identifier: E4:28:F6:8C:22:92:11:68:CE:C7:CD:81:EF:B5:CA:02:86:21:55:F8
Authority key identifier: DB:CB:1C:F3:D3:F3:CD:C3:42:6F:B4:9F:0A:0C:33:DC:04:C8:68:1C
Certificate issuer: /CN=dbcb1cf3d3f3cdc3426fb49f0a0c33dc04c8681c
Certificate serial: 0196A31C1C6FBCCAD41003C3458F2AE56CAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28sc89PzzcNCb7SfCgwz3ATIaBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.mft
Manifest number: 0EBC
Signing time: Tue 06 May 2025 01:00:50 +0000
Manifest this update: Tue 06 May 2025 01:00:50 +0000
Manifest next update: Wed 07 May 2025 01:00:50 +0000
Files and hashes: 1: 28sc89PzzcNCb7SfCgwz3ATIaBw.crl (hash: T0savtSNZmcdPVM4K9k+GOpdvlSmtQigcY4FeSi24Wo=)
2: I5ms-9-HDQyJVXC11lx_-uEpynE.roa (hash: +pNOsJjPZEu3zURh4NPSrLLV4Ki6TCXOgrQW5jhS4rs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.mft
rsync://rpki.ripe.net/repository/DEFAULT/28sc89PzzcNCb7SfCgwz3ATIaBw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 18:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a3:1c:1c:6f:bc:ca:d4:10:03:c3:45:8f:2a:e5:6c:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbcb1cf3d3f3cdc3426fb49f0a0c33dc04c8681c
Validity
Not Before: May 6 01:00:50 2025 GMT
Not After : May 7 01:00:50 2025 GMT
Subject: CN=e428f68c22921168cec7cd81efb5ca02862155f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:55:8d:35:53:d4:69:35:a4:e4:09:b4:a2:0f:
18:84:d3:83:f2:7d:eb:b3:c5:24:3b:a8:24:d0:24:
21:f6:41:c3:38:ac:52:6e:5b:5d:9a:3e:77:bd:e4:
3a:86:5b:ad:23:36:ad:11:4b:db:f9:f9:45:2b:cf:
1c:e8:69:33:50:41:c8:c6:be:3b:07:51:df:31:4b:
a7:d1:39:b7:19:69:70:d1:8f:2d:8c:6e:10:00:69:
c7:28:78:f4:88:93:20:47:74:c2:e4:dc:91:73:3e:
51:60:4d:4c:6b:10:87:35:d3:80:58:e6:ec:7b:35:
a8:54:43:57:a1:7c:bc:8f:af:e6:56:8c:d9:12:bb:
1a:a0:b2:5a:e7:72:db:71:50:3e:4d:52:eb:d1:0d:
af:25:b2:59:94:5b:1a:47:a7:54:fa:d4:d5:bc:80:
75:25:94:e9:f7:df:32:76:1d:23:8c:84:18:69:e7:
2b:bb:01:47:50:4a:86:78:60:52:02:64:bd:9b:50:
23:92:4d:19:a8:29:eb:46:00:3f:40:37:dc:e2:31:
27:06:e1:11:70:b7:cf:b7:f6:e9:3d:e9:fc:b6:b2:
87:98:39:9a:d8:a1:f8:5f:bd:a0:8e:f9:8f:5f:9e:
be:2f:f9:1b:d6:97:95:13:dd:19:2e:7b:c8:3e:24:
57:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:28:F6:8C:22:92:11:68:CE:C7:CD:81:EF:B5:CA:02:86:21:55:F8
X509v3 Authority Key Identifier:
keyid:DB:CB:1C:F3:D3:F3:CD:C3:42:6F:B4:9F:0A:0C:33:DC:04:C8:68:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28sc89PzzcNCb7SfCgwz3ATIaBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/a408fb-5c80-4dca-8428-73669ba63f7c/1/28sc89PzzcNCb7SfCgwz3ATIaBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:f7:87:14:2d:1d:48:91:45:e0:d9:c4:a1:64:8d:87:29:9e:
4d:0f:ac:c8:a8:55:ac:6a:e0:a8:b1:c8:0e:e6:46:12:66:ae:
7a:fc:46:6b:ff:84:75:d1:ee:99:37:19:12:5a:fa:61:6f:87:
39:77:dc:c7:7c:79:2a:f4:e3:58:67:55:13:ee:44:10:55:1b:
53:f5:2a:56:e1:c5:98:9a:80:f0:ca:fd:1c:cf:c8:51:c5:19:
59:1e:ff:ba:14:ed:2a:e2:5b:e8:4d:69:6a:42:fa:6a:54:e6:
ef:48:e9:27:1b:dc:88:c4:9e:05:06:e4:69:32:d1:15:10:77:
4e:1c:95:05:0a:34:c2:22:72:cf:d7:93:d5:f5:88:6e:ff:5d:
59:20:73:c3:10:91:37:b0:c5:1a:38:5b:de:3d:87:a4:7b:2c:
85:9c:70:d3:4f:7a:2a:e7:64:51:fc:ae:04:2e:40:79:ab:c4:
e2:4d:9c:3f:7c:f8:a5:41:c0:7d:f8:ed:bf:30:7b:9c:46:56:
cb:be:23:22:82:e3:d7:6d:07:b3:f0:42:15:45:b5:01:7a:60:
7c:24:46:7f:40:08:6b:65:d5:71:87:d6:06:ac:da:1d:49:a6:
60:33:e2:08:9f:c5:a1:a4:4a:ed:d3:9d:85:d2:52:a9:ca:2f:
36:0f:01:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 02:30:32 2025 by rpki-client