Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft
File: sK3wWv729l-hmmHDCuT7EcfPJbY.mft (raw, json)
Hash identifier: E/hy5lESR17h0GGqPJLz2TtYJSyzGjBedv6DLuQ359E=
Subject key identifier: 70:4C:DD:30:AA:7E:B6:5E:E3:B3:2F:EE:85:87:26:92:63:09:33:77
Authority key identifier: B0:AD:F0:5A:FE:F6:F6:5F:A1:9A:61:C3:0A:E4:FB:11:C7:CF:25:B6
Certificate issuer: /CN=b0adf05afef6f65fa19a61c30ae4fb11c7cf25b6
Certificate serial: 0196C2701E178943EDC72399F9745C08A923
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sK3wWv729l-hmmHDCuT7EcfPJbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft
Manifest number: 1538
Signing time: Mon 12 May 2025 03:00:49 +0000
Manifest this update: Mon 12 May 2025 03:00:49 +0000
Manifest next update: Tue 13 May 2025 03:00:49 +0000
Files and hashes: 1: IO0LvnAOcWauTMBpIRocATcgbnc.roa (hash: X7MgkZkBpVtr92LvTB/v/8FDDjBqTMenme65NutXS6Q=)
2: sK3wWv729l-hmmHDCuT7EcfPJbY.crl (hash: TnkFsk6A/SQmcYQoneJeS/ug0YvCA5DFXV4xp6JBeuw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sK3wWv729l-hmmHDCuT7EcfPJbY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:70:1e:17:89:43:ed:c7:23:99:f9:74:5c:08:a9:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0adf05afef6f65fa19a61c30ae4fb11c7cf25b6
Validity
Not Before: May 12 03:00:49 2025 GMT
Not After : May 13 03:00:49 2025 GMT
Subject: CN=704cdd30aa7eb65ee3b32fee8587269263093377
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d1:dc:5e:41:b0:16:15:3c:69:21:9a:80:23:
72:38:ad:5c:25:22:93:ee:d4:be:cf:a0:18:8f:7a:
27:f0:9c:4a:48:43:6d:4f:51:48:db:83:78:c8:17:
d6:f2:2c:f3:d4:1e:a2:ea:6f:cd:9b:0f:bb:04:60:
c5:57:a1:34:91:09:4b:5e:7c:c5:79:2b:8b:df:60:
ec:f5:80:9d:b3:a8:1f:be:0b:24:9f:42:94:9a:ba:
8c:30:ce:73:24:ba:c4:12:a6:c5:1c:e9:b8:ec:3e:
35:f3:c0:cf:c5:f8:44:16:96:21:6d:fa:cf:da:12:
47:1d:67:20:9a:5d:04:5b:f6:76:3a:d1:a0:be:fa:
0b:8c:e0:a9:c5:70:8f:0b:d4:c2:93:24:79:85:5f:
0b:7a:27:e3:3e:41:fe:09:9e:fb:b2:63:de:a5:b7:
92:5c:5d:80:d3:6f:db:dd:cb:fa:26:4f:e1:2a:d0:
1d:eb:f3:cd:26:26:e7:2d:3a:66:31:f2:3a:02:1e:
c3:f7:c7:44:eb:3b:0b:9b:5b:92:8d:f2:57:f5:d3:
18:01:a7:14:7a:3f:d1:29:7d:a2:9c:99:ac:aa:8a:
07:9d:3f:aa:ff:22:05:e3:eb:c7:4b:85:05:6b:0a:
07:22:c0:a8:fb:00:8d:8a:0c:b2:c5:ca:91:7f:19:
5c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:4C:DD:30:AA:7E:B6:5E:E3:B3:2F:EE:85:87:26:92:63:09:33:77
X509v3 Authority Key Identifier:
keyid:B0:AD:F0:5A:FE:F6:F6:5F:A1:9A:61:C3:0A:E4:FB:11:C7:CF:25:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sK3wWv729l-hmmHDCuT7EcfPJbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:fa:48:68:50:d8:e8:a8:91:ec:cb:a3:6d:4b:4e:ed:1a:c1:
38:ac:68:21:ed:9d:7b:a8:cc:44:57:57:3b:9f:a9:9a:de:1e:
71:b5:da:13:d2:17:3d:d0:ed:a6:a1:5e:b4:b8:8c:8a:6b:c7:
90:c7:23:21:78:1a:ab:22:30:bb:7b:89:97:a3:58:dc:0a:40:
83:5c:6b:37:50:77:0c:bb:c4:f6:fc:c3:ad:fd:65:ea:5d:d2:
47:cc:bc:93:4d:95:9c:94:2e:f6:67:d9:63:3a:8c:45:e5:c5:
90:c8:c6:fc:30:a7:a4:10:28:5d:60:8f:35:9a:f5:b6:f2:19:
9e:00:27:ff:72:83:1c:d8:f7:03:59:fc:71:fb:00:c3:5a:46:
1f:f6:ec:6d:0e:26:76:30:66:10:27:9f:19:9d:04:bc:cd:4e:
e0:81:cf:a5:8e:a9:4c:aa:5c:35:bc:d8:87:a4:09:00:8d:e8:
4e:b9:b3:27:7c:56:65:fe:a2:10:86:c7:d0:9b:c0:13:35:58:
d2:b5:6f:fc:a2:f1:d6:fe:70:5c:5c:38:10:de:ac:5b:a0:25:
da:06:c0:7c:62:b4:21:fe:c2:10:31:06:44:ec:aa:40:99:70:
fe:84:1d:5f:b6:44:9e:f0:6e:ea:5c:f6:98:63:e4:25:dc:21:
3e:6e:ab:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 08:18:44 2025 by rpki-client