Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
File: sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft (raw, json)
Hash identifier: 64giSmVehURbi6YnpEvE8DqER/qsENmeZbTYKyrXAZI=
Subject key identifier: 94:FB:C2:8E:54:05:89:FA:D5:14:85:A7:39:91:3A:EE:14:55:FB:1F
Authority key identifier: B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98
Certificate issuer: /CN=b01a59d0a61aa6174438988cc83598dbfea5a998
Certificate serial: 0196B6A3171874F0388982B9C0D4A82262C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
Manifest number: 10A2
Signing time: Fri 09 May 2025 20:01:03 +0000
Manifest this update: Fri 09 May 2025 20:01:03 +0000
Manifest next update: Sat 10 May 2025 20:01:03 +0000
Files and hashes: 1: HSNefFgXaRWCGcIv1fjoOpFklrI.roa (hash: cKpMHes+RehvKJ31+pA2N64A397k3fGtWACpN0dogjA=)
2: sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl (hash: P/cBfwd4H7rRtLKjXUZhZHYcpE/owN+a6ggvmMf7bcU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 17:53:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b6:a3:17:18:74:f0:38:89:82:b9:c0:d4:a8:22:62:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b01a59d0a61aa6174438988cc83598dbfea5a998
Validity
Not Before: May 9 20:01:03 2025 GMT
Not After : May 10 20:01:03 2025 GMT
Subject: CN=94fbc28e540589fad51485a739913aee1455fb1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7a:12:bd:7f:64:a4:25:8c:53:09:6f:c4:0d:
57:e2:97:7e:ea:5d:99:9f:e6:a8:a3:d0:7a:22:6d:
b7:8f:be:af:d2:dc:2d:23:0f:70:bf:cd:c1:2e:8c:
0d:dd:7b:6f:2c:4b:62:57:1e:21:a9:d7:b4:26:4f:
4d:9d:57:cc:4d:48:91:c4:78:0c:09:9b:97:28:08:
33:71:62:a5:7a:af:71:2d:fb:0d:c2:18:2f:0c:d7:
43:0b:1f:ac:4a:02:82:3e:5f:9d:ef:09:1f:07:fb:
44:85:7d:6f:87:cb:73:f7:2d:38:40:4d:2e:4b:53:
ad:d7:0c:1e:2d:5e:b9:21:25:d3:88:84:a0:1a:ad:
02:03:80:07:35:16:87:76:23:49:cd:60:4a:7c:4d:
31:fc:cb:8e:cb:ef:f3:b2:76:29:60:65:ca:04:5f:
58:11:b6:20:83:4f:7d:6d:22:04:8f:af:76:3f:10:
3b:85:e7:6c:b3:c4:6c:61:b9:00:e7:9f:67:85:c5:
46:9d:c6:be:cf:bb:69:ec:b2:47:1e:08:0d:81:0f:
ef:7d:18:78:c4:6f:8c:b7:42:ba:ab:5e:01:17:f3:
26:bd:f6:65:55:47:e2:2e:dc:65:24:60:b6:09:59:
da:6c:c2:50:90:84:fc:d2:0a:d3:89:8d:f3:ab:9b:
7a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:FB:C2:8E:54:05:89:FA:D5:14:85:A7:39:91:3A:EE:14:55:FB:1F
X509v3 Authority Key Identifier:
keyid:B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:b9:46:c8:26:12:ac:75:61:f5:45:1e:8f:42:66:c0:4c:06:
e4:be:9a:f6:68:e7:05:a8:99:58:ed:f9:65:7c:24:76:99:82:
d8:f4:9e:6b:52:e8:58:a5:5d:0a:7b:d7:b3:ff:ff:fa:20:cf:
f6:94:c4:19:24:0f:a0:6f:38:77:4b:59:bd:f6:14:39:af:b5:
8b:29:57:6f:98:84:09:af:6b:71:e9:d0:f1:33:fb:74:02:14:
3f:0f:bb:91:cf:21:73:11:26:f0:17:65:9e:71:b8:33:47:4f:
c7:93:57:a5:4b:01:41:7c:26:fd:16:5d:f1:9d:8c:50:96:d9:
89:ee:86:d5:3e:1d:6a:32:78:f4:19:60:17:f3:13:c7:2e:40:
78:ea:37:e8:d2:11:22:a9:56:ba:05:06:3e:1a:25:67:c2:e4:
fe:a5:8f:b6:54:7d:cc:37:de:ef:2c:95:5a:b0:d0:c9:d1:5e:
6f:82:62:8f:a2:88:81:5b:eb:b4:6f:11:4f:2a:c4:a9:0f:24:
1c:94:38:9b:32:0f:71:d0:a5:3f:2c:d1:79:9b:5d:97:6d:d6:
ae:5b:d2:b5:dd:ea:c3:05:90:94:00:75:f3:75:e9:5d:e8:ce:
b3:d7:c1:2d:19:81:92:55:55:dd:07:dd:93:30:64:4a:70:1f:
64:f0:30:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 22:05:18 2025 by rpki-client