Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/0b647f-a6e5-46f3-b99c-b09b9385d727/1/J9BIQ8TzpOdmlNs8-_m-Optnxpk.mft
File: J9BIQ8TzpOdmlNs8-_m-Optnxpk.mft (raw, json)
Hash identifier: fC2NnZK6SJg7MKh/3FYRsNx1RnmKDGHNuc43w4DvY7g=
Subject key identifier: B0:1B:C2:4B:9C:38:1A:78:73:6B:D9:9B:4B:A0:80:64:D2:35:93:59
Authority key identifier: 27:D0:48:43:C4:F3:A4:E7:66:94:DB:3C:FB:F9:BE:3A:9B:67:C6:99
Certificate issuer: /CN=27d04843c4f3a4e76694db3cfbf9be3a9b67c699
Certificate serial: 019659EFD6B7204DFD26F273F60CAB82E479
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J9BIQ8TzpOdmlNs8-_m-Optnxpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/0b647f-a6e5-46f3-b99c-b09b9385d727/1/J9BIQ8TzpOdmlNs8-_m-Optnxpk.mft
Manifest number: 14FF
Signing time: Mon 21 Apr 2025 20:00:12 +0000
Manifest this update: Mon 21 Apr 2025 20:00:12 +0000
Manifest next update: Tue 22 Apr 2025 20:00:12 +0000
Files and hashes: 1: 55uUM8GKQ0QxJrAcXyTGCoblJOs.roa (hash: M6Ue/e2O11bBW2Irb1AfcpExVn7GWeYJRelwWjzoc5U=)
2: J9BIQ8TzpOdmlNs8-_m-Optnxpk.crl (hash: Ot3VfNvvdG45acmHZA7VmiVHErMiH5VaybtvkXlzaBU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/0b647f-a6e5-46f3-b99c-b09b9385d727/1/J9BIQ8TzpOdmlNs8-_m-Optnxpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/0b647f-a6e5-46f3-b99c-b09b9385d727/1/J9BIQ8TzpOdmlNs8-_m-Optnxpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/J9BIQ8TzpOdmlNs8-_m-Optnxpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:ef:d6:b7:20:4d:fd:26:f2:73:f6:0c:ab:82:e4:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27d04843c4f3a4e76694db3cfbf9be3a9b67c699
Validity
Not Before: Apr 21 20:00:12 2025 GMT
Not After : Apr 22 20:00:12 2025 GMT
Subject: CN=b01bc24b9c381a78736bd99b4ba08064d2359359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:cd:fa:25:bb:13:77:24:0c:9f:d3:77:c3:57:
ac:a2:52:c5:f1:e9:a1:ba:92:25:cb:0f:d1:69:99:
ca:4a:ec:ca:2b:3a:5e:c4:93:cf:69:58:6a:51:01:
9d:df:12:b2:1a:bc:3a:fc:18:59:3f:b6:01:5a:95:
4a:e4:0a:7e:f8:64:56:83:5a:e2:83:95:bf:9e:8e:
15:52:83:ea:1e:04:75:90:e2:27:c1:37:95:ff:7e:
78:0e:41:db:a3:3c:a5:c2:bd:27:e4:ed:54:e0:98:
0d:66:6f:12:02:ce:29:9b:53:9a:57:6b:4f:1d:55:
d6:03:03:b2:cd:55:37:7a:b6:4e:0a:7b:eb:1e:81:
45:26:2b:b7:54:9b:78:a3:88:8d:70:fc:d5:83:c6:
37:0c:65:c0:9d:c9:5b:03:18:18:a1:0b:24:61:59:
e0:0f:e0:73:42:46:f7:c8:68:b1:f2:43:4e:f4:ad:
85:15:8a:30:a3:53:f1:cd:5e:e8:42:86:a7:6d:73:
d7:58:46:03:34:d1:4a:e3:cd:ec:52:21:58:7d:16:
44:6d:91:8b:52:7a:88:44:0b:9c:0d:2b:98:26:0a:
2e:ed:02:13:8d:a4:10:28:3a:58:42:4c:52:0c:58:
20:4b:7c:db:3a:b4:6c:dc:41:51:45:a5:e0:a9:72:
57:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:1B:C2:4B:9C:38:1A:78:73:6B:D9:9B:4B:A0:80:64:D2:35:93:59
X509v3 Authority Key Identifier:
keyid:27:D0:48:43:C4:F3:A4:E7:66:94:DB:3C:FB:F9:BE:3A:9B:67:C6:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J9BIQ8TzpOdmlNs8-_m-Optnxpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/0b647f-a6e5-46f3-b99c-b09b9385d727/1/J9BIQ8TzpOdmlNs8-_m-Optnxpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/0b647f-a6e5-46f3-b99c-b09b9385d727/1/J9BIQ8TzpOdmlNs8-_m-Optnxpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:01:d7:66:68:73:a2:00:d0:a9:8d:11:7f:6f:28:98:45:24:
08:78:31:8f:20:e9:35:4e:7c:b7:61:3e:ab:04:de:1e:a7:8c:
2f:a2:64:df:5a:b5:94:0b:fa:33:1b:e5:0b:8c:86:e4:22:6b:
2a:9d:3c:ad:6d:dd:3b:ce:fd:52:17:89:fb:1b:84:46:a7:6f:
fa:a0:8b:24:a7:3d:1a:a3:84:81:f1:33:0f:b1:d6:14:2b:93:
87:50:f7:9f:7e:93:b4:82:67:84:0f:70:9e:68:25:26:d1:f5:
7a:ab:c0:ef:ef:69:5d:62:ca:2f:e0:19:b0:93:c5:8a:66:f1:
2a:c3:81:7d:7b:39:40:91:7e:d3:d1:05:6b:66:62:c1:ce:b6:
1b:b8:63:a3:47:d5:45:5c:cf:95:98:e3:15:67:25:d9:d1:c5:
22:e0:e8:cf:ec:42:79:78:d8:46:70:09:f2:54:c4:52:72:1c:
dc:02:99:69:8b:4a:21:7a:5f:cb:42:35:86:23:9d:70:85:23:
cd:e6:64:97:89:9b:e0:80:32:b2:28:1d:c3:f0:3e:fa:82:a4:
23:69:aa:11:41:b5:3e:f0:89:95:94:7e:a0:81:f7:f5:ee:99:
56:82:14:fe:f8:4f:0f:d6:aa:3d:d7:dc:8b:c8:8a:f7:e2:0e:
eb:2c:dd:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 23:58:50 2025 by rpki-client