Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft
File: pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft (raw, json)
Hash identifier: /97onVN8Ov6aXJIT5Ai6ID8EtpCfWxG9XN9NhTo4Gl0=
Subject key identifier: 47:C6:DA:12:B7:C8:A6:7A:69:E8:A2:5C:42:82:D2:85:8E:09:C5:41
Authority key identifier: A4:08:FC:92:46:04:27:51:11:0D:2E:C5:06:5D:0C:47:D1:D4:3C:D0
Certificate issuer: /CN=a408fc9246042751110d2ec5065d0c47d1d43cd0
Certificate serial: 0196B1455510D99EFF8715D507951149DDC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft
Manifest number: 0AB0
Signing time: Thu 08 May 2025 19:00:33 +0000
Manifest this update: Thu 08 May 2025 19:00:33 +0000
Manifest next update: Fri 09 May 2025 19:00:33 +0000
Files and hashes: 1: E8EItKN2__9iKd7VUUHBehRVQCo.roa (hash: mIn23TrAWNsxopm3nGDSwuz19rtPaaB79Dzo0Qrhuqk=)
2: pAj8kkYEJ1ERDS7FBl0MR9HUPNA.crl (hash: pReWSfN8XvuDRZ4mQ1yMo5K2jgNyZRPp4ffCtSUaUqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 09 May 2025 19:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b1:45:55:10:d9:9e:ff:87:15:d5:07:95:11:49:dd:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a408fc9246042751110d2ec5065d0c47d1d43cd0
Validity
Not Before: May 8 19:00:33 2025 GMT
Not After : May 9 19:00:33 2025 GMT
Subject: CN=47c6da12b7c8a67a69e8a25c4282d2858e09c541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cb:21:85:da:91:28:63:d0:13:cc:77:6a:dc:
4f:ff:a9:85:64:2b:3e:0e:3e:f0:39:6c:b9:08:17:
64:aa:85:34:e5:da:b7:47:e3:61:5c:c7:79:30:77:
9f:e2:7d:a2:37:1f:7b:7a:a3:4c:5e:09:55:23:6a:
17:fa:8f:6b:c2:06:79:77:21:58:1d:eb:9e:a7:02:
dd:eb:c6:16:84:87:6b:e0:ba:92:75:12:8b:a4:4e:
ec:60:8b:72:56:de:2c:10:7b:d8:75:ff:44:68:fc:
9a:8d:e7:47:3a:60:e7:b1:df:89:c2:d0:a3:e9:0f:
be:33:69:91:92:fb:44:91:ff:79:fa:40:96:d0:0e:
42:1d:5e:59:57:3c:9c:77:e2:21:8b:f6:aa:5d:30:
66:5d:1d:0e:2e:df:f9:f2:8a:be:df:71:f4:01:52:
9d:f1:1b:2d:39:ee:b6:49:94:d2:c9:db:46:90:09:
89:5a:4f:c9:71:ea:18:b5:d8:7d:60:c6:ad:d5:e8:
ad:b2:b1:95:7f:d1:93:5f:18:d8:40:62:40:27:70:
ff:14:49:8b:78:e3:5c:4e:9b:dd:71:de:b4:81:38:
0b:58:32:8d:42:1d:ef:9e:65:60:d5:f8:91:f9:c3:
fa:10:92:17:82:4d:71:35:92:58:9f:1f:38:cf:60:
48:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:C6:DA:12:B7:C8:A6:7A:69:E8:A2:5C:42:82:D2:85:8E:09:C5:41
X509v3 Authority Key Identifier:
keyid:A4:08:FC:92:46:04:27:51:11:0D:2E:C5:06:5D:0C:47:D1:D4:3C:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a597c5-3ec4-4b46-8c7b-d92248aabe2d/1/pAj8kkYEJ1ERDS7FBl0MR9HUPNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:a1:c6:a0:4b:7f:48:94:d3:6e:06:cf:0c:20:af:4a:58:98:
57:16:54:78:68:26:b0:30:ce:f2:91:87:d8:c2:3f:4d:1b:6c:
6f:4c:7a:cd:50:a9:82:3d:25:0c:b9:d2:50:03:47:da:69:a4:
44:0a:d1:4d:cd:cf:38:02:9c:ea:18:b8:dd:7d:48:6a:ec:42:
12:41:ac:56:de:6e:96:cc:63:33:b1:06:57:15:e1:1a:37:cc:
f7:b0:61:5d:13:33:43:b9:f7:7b:c3:e8:e7:46:0b:7d:d8:17:
21:42:b7:a2:80:ba:46:ce:41:21:30:55:be:a4:3d:73:64:67:
4f:7c:bc:f1:b4:b7:1c:22:f2:4d:66:fd:2c:c5:48:d1:a6:9b:
5c:84:cf:44:80:7f:55:73:59:64:3d:cf:01:5f:36:ab:12:35:
8c:4e:e0:ac:8c:66:0d:87:d6:59:ee:1c:8f:3e:4f:4b:67:33:
3c:52:fc:09:2b:27:ba:91:02:10:8d:fe:ea:82:96:d4:ae:57:
85:a9:11:4a:11:9a:72:be:a6:76:1f:0b:11:28:33:bc:7f:8b:
12:55:28:80:00:02:5f:2c:26:09:ec:3b:7d:67:ae:c3:6f:d7:
56:a2:fa:35:e4:e1:54:e1:ca:2a:95:11:c8:96:17:01:63:dc:
c1:fd:e1:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 03:24:29 2025 by rpki-client